Opened 6 years ago
Closed 4 years ago
#241 closed enhancement (duplicate)
Make sensitive pages https
| Reported by: | dmartinc | Owned by: | |
|---|---|---|---|
| Priority: | normal | Milestone: | |
| Component: | General | Version: | 0.97.0 |
| Keywords: | https | Cc: |
Description
Pages where the user inputs a password (such a introducing a modification key, or a manager setting up the modification key of an event) should be https.
This can be done by setting the RH class' _tohttps flag to True; and the https URLS can be generated with the SecureURLHandler / OptionallySecureURLHandler classes.
Remember to verify that after a page is turned into https, everything (the JS imports, the images, the AJAX calls, the JS-added images) have to be https :) Normally _tohttps should take care of that but try to check it anyway.
Change History (1)
comment:1 Changed 4 years ago by pferreir
- Resolution set to duplicate
- Status changed from new to closed
Note: See
TracTickets for help on using
tickets.
This has already been fixed by an earlier ticket.