[wpmu-trac] Re: [WordPress MU Trac] #452: Ability to require https
for admin interface and user login
WordPress MU Trac
wpmu-trac at lists.automattic.com
Tue Nov 13 16:59:43 GMT 2007
#452: Ability to require https for admin interface and user login
------------------------+---------------------------------------------------
Reporter: axelseaa | Owner: somebody
Type: defect | Status: new
Priority: normal | Milestone:
Component: component1 | Version:
Severity: major | Resolution:
Keywords: |
------------------------+---------------------------------------------------
Changes (by axelseaa):
* type: enhancement => defect
* severity: normal => major
Comment:
My simplest proposed solution is as follows:
Move this line out of the if( defined('RELOCATE")) check:
$schema = ( isset($_SERVER['HTTPS']) && strtolower($_SERVER['HTTPS']) ==
'on' ) ? 'https://' : 'http://';
And then update the form action as follows:
action="<?php echo $schema . $current_blog->domain . $current_blog->path
?>wp-login.php"
Is this something that could be implemented? At least this way, if the
page is requested over https, the form will update accordingly.
I looked at the regular wordpress code, and they get around this by just
specifying a page in the action, but since there are the possibilities of
multiple domains with MU, thats not possible.
--
Ticket URL: <http://trac.mu.wordpress.org/ticket/452#comment:5>
WordPress MU Trac <http://mu.wordpress.org/>
WordPress Multiuser
More information about the wpmu-trac
mailing list