Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Newer
Older
100644 284 lines (262 sloc) 21.142 kb
10685d9 @mvied Version 2.0.3
authored
1 === WordPress HTTPS (SSL) ===
2 Contributors: Mvied
3 Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=N9NFVADLVUR7A
4 Tags: security, encryption, ssl, shared ssl, private ssl, public ssl, private ssl, http, https
1b224d3 @mvied Fixed typos in readme.
authored
5 Requires at least: 3.0
785d121 @mvied Cleaned up readme.txt for 3.2.4.
authored
6 Tested up to: 3.5
7 Stable tag: 3.2.4
10e588b @mvied Readme.txt update.
authored
8 License: GPLv3
10685d9 @mvied Version 2.0.3
authored
9
10 WordPress HTTPS is intended to be an all-in-one solution to using SSL on WordPress sites.
11
12 == Description ==
785d121 @mvied Cleaned up readme.txt for 3.2.4.
authored
13 Read the <a href="http://wordpress.org/extend/plugins/wordpress-https/installation/">Installation Guide</a>.
7621a75 @mvied Updated version to 3.2.4. Added a tiny installation guide. Will expand o...
authored
14 If after setting up the plugin you are experiencing issues, please check the <a href="http://wordpress.org/extend/plugins/wordpress-https/faq/">FAQ</a>. If you are still unable to resolve your issue, <a href="http://wordpress.org/support/plugin/wordpress-https">start a support topic</a> and I will do my best to assist you.
10685d9 @mvied Version 2.0.3
authored
15
a650c80 @cfoellmann gettext support + German translation
cfoellmann authored
16 = Development =
17 Contribute Code at [https://github.com/Mvied/wordpress-https](https://github.com/Mvied/wordpress-https)
18 Contribute Translations at [https://translate.foe-services.de/projects/wordpress-https](https://translate.foe-services.de/projects/wordpress-https)
19
10685d9 @mvied Version 2.0.3
authored
20 == Installation ==
21 1. Upload the `wordpress-https` folder to the `/wp-content/plugins/` directory.
22 1. Activate the plugin through the 'Plugins' menu in WordPress.
7621a75 @mvied Updated version to 3.2.4. Added a tiny installation guide. Will expand o...
authored
23 1. Navigate to the HTTPS settings page in the admin sidebar in the dashboard.
785d121 @mvied Cleaned up readme.txt for 3.2.4.
authored
24 1. If you are using a non-default SSL Host for your HTTPS connection (e.g., a subdomain or shared SSL host) enter the entire secure URL into SSL Host. If your installation is located in a folder, you can choose to include it in the URL or not. If you set this to a domain that is not currently serving your WordPress installation over HTTPS and enable Force SSL Admin, you will lock yourself out of your dashboard. Follow instructions in the FAQ to reset the plugin.
7621a75 @mvied Updated version to 3.2.4. Added a tiny installation guide. Will expand o...
authored
25 1. If you would like connections to your admin panel to be secure, enable Force SSL Admin. If you are using a non-default SSL Host, do not use WordPress' built-in FORCE_SSL_ADMIN or FORCE_SSL_LOGIN.
26 1. If you are looking to secure only your admin panel and/or posts and pages you specify, enable Force SSL Exclusively. This will ensure that any content not specified to be secure is always served over HTTP.
27 1. You can individually secure post and pages when editing them by updating the settings located in the HTTPS box on the right sidebar.
28 1. You can use simple text match or regular expressions to specify URL's that should be secure using URL Filters in the WordPress HTTPS settings. Each filter should be on one line.
10685d9 @mvied Version 2.0.3
authored
29
30 == Frequently Asked Questions ==
31 = How do I fix partially encrypted/mixed content errors? =
32 To identify what is causing your page(s) to be insecure, please follow the instructions below.
33 <ol>
34 <li>Download <a href="http://www.google.com/chrome" target="_blank">Google Chrome</a>.</li>
35 <li>Open the page you're having trouble with in Google Chrome.</li>
36 <li>Open the Developer Tools. <a href="http://code.google.com/chrome/devtools/docs/overview.html#access" target="_blank">How to access the Developer Tools.</a></li>
37 <li>Click on the Console tab.</li>
38 </ol>
39 For each item that is making your page partially encrypted, you should see an entry in the console similar to "The page at https://www.example.com/ displayed insecure content from http://www.example.com/." Note that the URL that is loading insecure content is HTTP and not HTTPS.
40
10e588b @mvied Readme.txt update.
authored
41 Once you have identified the insecure elements, you need to figure out what theme or plugin is causing these elements to be loaded. Although WordPress HTTPS does its best to fix all insecure content, there are a few cases that are impossible to fix. Here are some typical examples.
10685d9 @mvied Version 2.0.3
authored
42 <ul>
10e588b @mvied Readme.txt update.
authored
43 <li>The element is external (not hosted on your server) and is not available over HTTPS. These elements will have to be removed from the page by disabling or modifying the theme or plugin that is adding the element.</li>
44 <li>The element is internal (hosted on your server) but does not get changed to HTTPS. This is often due to a background image in CSS or an image or file path in JavaScript being hard-coded to HTTP inside of a CSS file. The plugin can not fix these. The image paths must be changed to relative links. For example `http://www.example.com/wp-content/themes/mytheme/images/background.jpg` to simply `/wp-content/themes/mytheme/images/background.jpg`. Ensure you copy the entire path, including the prepended slash (very important).</li>
10685d9 @mvied Version 2.0.3
authored
45 </ul>
46
10e588b @mvied Readme.txt update.
authored
47 = I can't get into my admin panel. How do I fix it? =
785d121 @mvied Cleaned up readme.txt for 3.2.4.
authored
48 Since it is possible to lock yourself out of the dasboard, WordPress HTTPS comes with a way to reset the plugin's settings. The plugin makes no permanent changes to WordPress, so this will restore all settings to their defaults. Follow directions under "How do I reset the plugin's settings?"
49
50 = How do I reset the plugin's settings? =
10e588b @mvied Readme.txt update.
authored
51 Go to /wp-content/plugins/wordpress-https/wordpress-https.php and uncomment (remove the two forward slashes before) the line below, or go to your wp-config.php file and add this line. Hit any page on your site, and then remove it or comment it out again.
52 `define('WPHTTPS_RESET', true);`
53
ebc8db1 @mvied Added FAQ.
authored
54 = The settings won't save! =
785d121 @mvied Cleaned up readme.txt for 3.2.4.
authored
55 Did you reset the plugin following the steps above and forget to comment the line back out or remove it from wp-config.php?
ebc8db1 @mvied Added FAQ.
authored
56
10e588b @mvied Readme.txt update.
authored
57 = How do I make my whole website secure? =
58 To make your entire website secure, you simply need to change your site url to use HTTPS instead of HTTP. Please read <a href="http://codex.wordpress.org/Changing_The_Site_URL" target="_blank">how to change the site url</a>.
926521b @mvied Updated to readme.txt.
authored
59 Alternatively, you can use URL Filters in the WordPress HTTPS Settings to secure your entire site by putting just '/' as a filter. This will cause any URL with a forward slash to be secure (all of them).
10e588b @mvied Readme.txt update.
authored
60
61 = How do I make only certain pages secure? =
62 The plugin adds a meta box to the add/edit post screen entitled HTTPS. In that meta box, a checkbox for 'Secure Post' has been added to make this process easy. See Screenshots if you're having a hard time finding it.
926521b @mvied Updated to readme.txt.
authored
63 Alternatively, you can use URL Filters to secure post and pages by their permalink.
10e588b @mvied Readme.txt update.
authored
64
5d11d52 @mvied Re-organized modules.
authored
65 = I'm using Force SSL Administration and all of the links to the front-end of my site are HTTPS. Why? =
66 For many users this behavior is desirable. If you would like links the the front-end of your site to be HTTP, enable Force SSL Exclusively and do not secure your front-end pages.
67
10e588b @mvied Readme.txt update.
authored
68 = I'm getting 404 errors on all of my pages. Why? =
69 If you're using a public/shared SSL, try disabling your custom permalink structure. Some public/shared SSL's have issues with WordPress' permalinks because of the way they are configured. If you continue to recieve 404 errors, there may be no way to use WordPress with that particular public/shared SSL.
70
5d11d52 @mvied Re-organized modules.
authored
71 = I'm receiving a blank page with no error. What gives? =
72 This is most commonly due to PHP's memory limit being too low. Check your Apache error logs just to be sure. Talk to your hosting provider about increading PHP's memory limit.
73
10685d9 @mvied Version 2.0.3
authored
74 = Is there a hook or filter to force pages to be secure? =
a488612 @mvied Moved core re-usable classes into their own library.
authored
75 Yes! Here is an example of how to use the 'force_ssl' filter to force a page to be secure.
db33f3e @mvied Updated to version 3.1. Added URL to the force_ssl filter. Moved most pl...
authored
76 `function custom_force_ssl( $force_ssl, $post_id = 0, $url = '' ) {
10685d9 @mvied Version 2.0.3
authored
77 if ( $post_id == 5 ) {
56814f9 @mvied And another.
authored
78 $force_ssl = true;
10685d9 @mvied Version 2.0.3
authored
79 }
80 return $force_ssl;
81 }
82
db33f3e @mvied Updated to version 3.1. Added URL to the force_ssl filter. Moved most pl...
authored
83 add_filter('force_ssl' , 'custom_force_ssl', 10, 3);`
10685d9 @mvied Version 2.0.3
authored
84
777ab75 @mvied Updated to readme.txt.
authored
85 You can also use this filter to filter pages based on their URL. Let's say you have an E-commerce site and all of your E-commerce URL's contain 'store'.
db33f3e @mvied Updated to version 3.1. Added URL to the force_ssl filter. Moved most pl...
authored
86 `function store_force_ssl( $force_ssl, $post_id = 0, $url = '' ) {
87 if ( strpos($url, 'store') !== false ) {
777ab75 @mvied Updated to readme.txt.
authored
88 $force_ssl = true;
89 }
90 return $force_ssl;
91 }
92
db33f3e @mvied Updated to version 3.1. Added URL to the force_ssl filter. Moved most pl...
authored
93 add_filter('force_ssl', 'store_force_ssl', 10, 3);`
777ab75 @mvied Updated to readme.txt.
authored
94
10685d9 @mvied Version 2.0.3
authored
95 == Screenshots ==
96 1. WordPress HTTPS Settings screen
97 2. Force SSL checkbox added to add/edit posts screen
98
99 == Changelog ==
7621a75 @mvied Updated version to 3.2.4. Added a tiny installation guide. Will expand o...
authored
100 = 3.2.4 =
785d121 @mvied Cleaned up readme.txt for 3.2.4.
authored
101 * Tested with WordPress v3.5.
7621a75 @mvied Updated version to 3.2.4. Added a tiny installation guide. Will expand o...
authored
102 * Large sites using the default SSL Host (matching the Site URL) should experience a significant performance increase.
103 * Added the Access-Control-Allow-Origin header to AJAX calls to allow local HTTP pages make HTTPS AJAX calls.
540011d @mvied Updated version to 3.2.3rc1.
authored
104 = 3.2.3 =
105 * Bug Fix - Sites prevented from logging into the admin panel after the previous release should now be working again.
2f375c7 @mvied Updated to version 3.2.3.
authored
106 * Bug Fix - Fixed bug in Parser where links and forms could be written incorrectly.
18c90b4 @mvied Updated to version 3.2.2.
authored
107 = 3.2.2 =
68f41de @mvied Updated to readme.txt.
authored
108 * Performance Increase.
18c90b4 @mvied Updated to version 3.2.2.
authored
109 * Bug Fix - Sites prevented from logging into the admin panel after the previous release should now be working again.
19cfe46 @mvied Updated readme.txt.
authored
110 = 3.2.1 =
111 * Added Network settings for multisite installations.
b99ab09 @mvied Updated readme.txt.
authored
112 * Bug Fix - Elements should now be properly secured by the file extension check in the Parser.
2894fc3 @mvied Updated to version 3.2.1.
authored
113 * Bug Fix - Pages being redirected should no longer always redirect to index.php for some server configurations.
19cfe46 @mvied Updated readme.txt.
authored
114 * Bug Fix - FORCE_SSL_ADMIN option should no longer cause redirect loops if the ssl_admin setting is set to false.
cedde53 @mvied Updated readme.txt.
authored
115 = 3.2 =
116 * Added domain mapping. Domain mapping allows you to map external domains that host their HTTPS content on a different domain.
9e0aa04 @mvied Added Remove Unsecure Element option.
authored
117 * Added Remove Unsecure Elements option. If possible, this option removes external elements from the page that can not be loaded over HTTPS, preventing insecure content errors without modifying any code.
32091b2 @mvied Update readme.txt.
authored
118 * ClouldFlare support.
e3065a6 @mvied Updated readme.txt.
authored
119 * Substantial memory optimization.
4bc9a12 @mvied Removed secure front page option. Added Force SSL Login.
authored
120 * Removed Secure Front Page option. This can now be achieved through URL Filters.
220d591 @mvied Typo fixes in readme.txt.
authored
121 * Bug Fix - Visiting the admin panel over HTTP when using Shared SSL should no longer log the user out, but will now redirect accordingly.
122 * Bug Fix - Random 404 errors should be gone.
3301186 @mvied Updated to version 3.1.3.
authored
123 * Bug Fix - Fixed bug where a bad setting for ssl_host would cause the code to fail.
fa01797 @mvied Updated readme.txt.
authored
124 * Bug Fix - CSS backgrounds that do not have quotes should no longer break debug output.
5d078f8 @mvied Fixed bug where URL parameters were being stripped on redirects. Updated...
authored
125 = 3.1.2 =
b708e76 @mvied Updated readme.txt.
authored
126 * Bug Fix - Redirects should no longer remove URL parameters.
5d078f8 @mvied Fixed bug where URL parameters were being stripped on redirects. Updated...
authored
127 * Bug Fix - Removed loginout filter that was changing links to plain text.
b708e76 @mvied Updated readme.txt.
authored
128 * Bug Fix - Plugin should no longer cause JavaScript errors from removing quotes from the end of URL's.
129 * Bug Fix - CSS backgrounds that do not have quotes should no longer break debug output.
52d4a47 @mvied Fixed bug in Parser.
authored
130 = 3.1.1 =
131 * Bug Fix - Fixed bug in Parser.
db33f3e @mvied Updated to version 3.1. Added URL to the force_ssl filter. Moved most pl...
authored
132 = 3.1 =
133 * Memory optimization.
a2c88e5 @mvied Added secure URL filtering.
authored
134 * Added secure URL filtering.
a012562 @mvied Version to 3.0.5b1.
authored
135 * Users receiving 404 errors on every page when using Shared SSL should now be able to use those Shared SSL's that previously did not work.
db33f3e @mvied Updated to version 3.1. Added URL to the force_ssl filter. Moved most pl...
authored
136 * Added support for qTranslate.
137 * Added support for securing custom post types.
df78812 @mvied Updated FAQ.
authored
138 * Added $url to the force_ssl filter as the third arguement. See FAQ for example usage.
71a7604 @mvied Fixed bug where plugin would try to load hidden files as modules.
authored
139 = 3.0.4 =
140 * Fixed multiple bugs for sites using SSL for the entire site.
141 * Bug Fix - plugin should no longer try to load hidden files as modules.
62ee1cc @mvied Version 3.0.3.
authored
142 = 3.0.3 =
143 * Any element on an HTTP page that is set to HTTPS should be auto-corrected.
b23d809 @mvied Updated readme.txt.
authored
144 * Added support for domain mapper plugin.
145 * Bug Fix - SSL Host should now always end in a trailing slash.
62ee1cc @mvied Version 3.0.3.
authored
146 * Bug Fix - Fixed bug in cookie logic that prevented some users from logging in.
147 * Bug Fix - Fixed bug in redirects that would cause login issues and 404 errors.
b355046 @mvied Updated to 3.0.2.
authored
148 = 3.0.2 =
8ce8a4d @mvied Updated changelog.
authored
149 * Added setting to change where HTTPS settings appear in the admin panel.
1d8593f @mvied Updated changelog.
authored
150 * Bug Fix - Plugin should no longer interefere with editing posts and using images from the Media Library.
f276cdf @mvied Updated readme.txt.
authored
151 * Bug Fix - Fixed major bug that occurred when site was installed in the base directory.
67d056e @mvied Ensured that URL objected returns a string.
authored
152 * Bug Fix - File uploader should no longer produce an HTTP Error.
4412fe5 @mvied Updated readme.txt.
authored
153 * Bug Fix - Fixed performance issue that caused the login page to load for a long period of time.
b355046 @mvied Updated to 3.0.2.
authored
154 * Bug Fix - Proxy check should no longer interfere with RSS Feeds, HTML Validators, etc.
155 * Bug Fix - Force SSL and SSL Front Page should no longer conflict.
02a1816 @mvied Updated to 3.0.2 release.
authored
156 * Bug Fix - If Force SSL Exclusively is enabled and Secure Front Page is not (or the front page is not secured), links to the front page will be set to HTTP.
87028d2 @mvied Fixed bug with archive widgets.
authored
157 = 3.0.1 =
40b795b @mvied Updated readme.txt for 3.0.1.
authored
158 * Bug Fix - Fixed major issue when upgrading from previous version of WordPress HTTPS.
e9ead3f @mvied Added is_ssl method for backwards compatibility.
authored
159 * Bug Fix - Added is_ssl method back to main plugin class to avoid errors with Gravity Forms.
1b224d3 @mvied Fixed typos in readme.
authored
160 * Bug Fix - Archive widget links should now appear correctly.
87ef852 @mvied Updated to version 3.0
authored
161 = 3.0 =
162 * The plugin has been completely re-written.
163 * Redirect loops should no longer be an issue.
164 * Bugs are likely to occur.
e30d8fd @mvied Updated with 2.0.4 change log.
authored
165 = 2.0.4 =
166 * Bug Fix - Users using Shared SSL should no longer have broken URL's and redirects.
87ef852 @mvied Updated to version 3.0
authored
167 * Bug Fix - Pages should correctly be identified as HTTPS if PHP returns an IP address for SERVER_ADDR in $_SERVER.
e30d8fd @mvied Updated with 2.0.4 change log.
authored
168 * Bug Fix - Users using the default permalink structure should now have URL's being properly changed to/from HTTPS.
10685d9 @mvied Version 2.0.3
authored
169 = 2.0.3 =
170 * Force SSL Admin will always be enabled when FORCE_SSL_ADMIN is true in wp-config.php.
171 * Bug Fix - Users using Shared SSL should no longer have issues with the SSL Host path duplicating in URL's.
172 * Bug Fix - The plugin should now function properly when using a subdomain as the SSL Host.
173 * Bug Fix - Page and post links will only be forced to HTTPS when using a different SSL Host that is not a subdomain of your Home URL.
174 * Bug Fix - WordPress HTTPS should no longer generate erroneous notices and warnings in apache error logs. (If I missed any, let me know)
175 = 2.0.2 =
176 * Bug Fix - SSL Host option was not being saved correctly upon subsequent saves. This was causing redirect loops for most users.
177 = 2.0.1 =
178 * Ensured that deprected options are removed from a WordPress installation when activating the plugin.
179 * Added a button to the WordPress HTTPS settings page to reset all plugin settings and cache.
180 * Bug Fix - URL's entered for SSL Host were not validing correctly.
181 * Bug Fix - External URL's were not always being identified as valid external elements.
182 * Bug Fix - Slight enhancement to SSL detection.
183 = 2.0 =
184 * Full support for using a custom SSL port has been added. A special thanks to <a href="http://chrisdoingweb.com/">Chris "doingweb" Antes</a> for his feedback and testing of this feature.
185 * Forcing pages to/from HTTPS is now pluggable using the 'force_ssl' filter.
186 * When using Force Shared SSL Admin, links to the admin panel will always be rewritten with the Shared SSL Host.
187 * When using Shared SSL, all links to post and pages from within the admin panel will use the Shared SSL Host to retain administration functionality on those pages.
188 * Redirects to the admin panel now hook into wp_redirect rather than using the auth_redirect pluggable function.
189 * Canonical redirects will now still occur on sites usinga different SSL Host, but not on secure pages.
190 * Cookies are now set with hooks rather than pluggable functions.
191 * Plugin will now delete all options and custom metadata when uninstalled.
192 * Added a HTTP_X_FORWARDED_PROTO check to the is_ssl function.
193 * Internal HTTPS Elements option has been removed. Disabling this option was never a good idea, so it was removed and the plugin will always act as it did when this option was enabled.
194 * External HTTPS Elements option has been removed. The handling of external elements has improved in such a way that this option is no longer required.
195 * Disable Automatic HTTPS option has been removed. This option should have generally been enabled anyway.
196 * Bug Fix - After logging in, the logged_in cookie was not being set properly. This caused the admin bar to not show up in both HTTP and HTTPS.
197 * Bug Fix - When using Shared SSL, the login page would not honor the redirect_to variable after a successful login.
198 = 1.9.2 =
199 * Added External URL caching to the plugin so that external elements will only be checked for once, increasing the speed of sites not using the Bypass External Check option.
200 * Any forms whose action points to page that has the Forced SSL option on will be updated to HTTPS even on HTTP pages.
201 * Bug Fix - When using Shared SSL, permalink structure was being buggy.
202 * Bug Fix - Certain server configurations were causing the plugin to create redirect loops when using the Force SSL Exclusively option.
203 = 1.9.1 =
204 * Bug Fix - Cookies were not being set to the correct paths when logging in, causing logins to fail.
205 * Bug Fix - Links to the front page when using latest posts were not correctly being set to HTTP/HTTPS.
206 * Bug Fix - When using Shared SSL, the HTTPS version of the site_url was not being correctly replaced with the Shared SSL URL for internal elements.
207 * Bug Fix - When using Shared SSL, the admin login page was not always redirecting properly due to output buffering.
208 * Bug Fix - When using Shared SSL, the auth_redirect function was not redirecting to the Shared SSL URL.
209 * Bug Fix - If the home_url contained 'www' but the URL appeared without 'www', the URL would not be fixed.
210 * Standards - Updated redirect method to use https or http as a an argument rather than true or false to better comply with WordPress coding standards.
211 = 1.9 =
212 * Created Updates widget on settings screen to allow for dynamic updates from the plugin developers.
213 * Added support for PHP4.
214 * Converted all spaces to tabs in source.
215 * Force Shared SSL Admin option added to allow those using Shared SSL the ability to use their certificate for their admin dashboard.
216 * Bug fix - Force SSL checkbox will now appear on WordPress versions below 2.9.
217 * Bug fix - Password protected pages forced to SSL will now work properly.
218 * Bug fix - Plugin should no longer break feeds.
219 * Numerous other bug fixes that have since been forgotten due to the length of time this version has been in development.
220 = 1.8.5 =
221 * In version 1.8.5, when a page is forced to HTTPS, any links to that page will always be HTTPS, even when using the 'Disable Automatic HTTPS' option. Likewise, when the 'Force SSL Exclusively' option is enabled, all links to pages not forced to HTTPS will be changed to HTTP on HTTPS pages.
222 * Updated RegEx's for more complicated URL's.
223 * Bug fix - When in the admin panel, only link URL's are changed back to HTTP again.
224 * Added support for using Shared SSL together with the FORCE_SSL_ADMIN and FORCE_SSL_LOGIN options.
225 = 1.8.1 =
226 * Re-enabled the canonical redirect for WordPres sites not using Shared SSL.
227 = 1.8 =
228 * Fixed cross-browser CSS issue on plugin settings page.
229 * Corrected and updated plugin settings validation.
230 * Lengthened the fade out timer on messages from the plugin settings page from 2 to 5 seconds so that the more lengthy error messages could be read before the message faded.
231 * If viewing an admin page via SSL, and your Home URL is not set to HTTPS, links to the front-end of the website will be forced to HTTP. By default, WordPress changes these links to HTTPS.
232 * When using Shared SSL, any anchor that links to the regular HTTPS version of the domain will be changed to use the Shared SSL Host.
233 * Added embed and param tags to the list of tags that are fixed by WordPress HTTPS. This is to fix flash movies.
234 = 1.7.5 =
235 * Bug fix - When using 'Latest Posts' as the front page, the front page would redirect to HTTP when viewed over HTTPS even if the 'Force SSL Exclusively' option was disabled.
236 * Prevented the 'Disable Automatic HTTPS' option from parsing URL's in the admin panel.
237 * General code cleanup and such.
238 = 1.7 =
239 * Bug fix - External URL's were not being forced to HTTPS after the last update.
240 * Added the functionality to correct relative URL's when using Shared SSL.
241 * General code cleanup and such.
242 = 1.6.5 =
243 * Added support for Shared SSL.
244 = 1.6.3 =
245 * Changed the redirection check to use `template_redirect` hook rather than `get_header`.
246 = 1.6.2 =
247 * Tag links were not being set back to HTTP when the 'Disable Automatic HTTPS' option was enabled.
248 = 1.6.1 =
249 * Bug fix - front page redirection was causing issues when a static page was selected for the posts page.
250 = 1.6 =
251 * Added the ability to force the front page to HTTPS.
252 * Multiple enhancements to core functionality of plugin. Mostly just changing code to integrate more smoothely with WordPress.
253 * Enhancements have been made to the plugin's settings page.
254 = 1.5.2 =
255 * Fixed a bug that would prevent stylesheets from being fixed if the rel attribute came after the href attribute. Bug could have also caused errors with other tags.
256 = 1.5.1 =
257 * Added input elements with the type of 'image' to be filtered for insecure content.
258 = 1.5 =
259 * Added the ability to force SSL on certain pages.
260 * Also added the option to exclusively force SSL on certain pages. Pages not forced to HTTPS are forced to HTTP.
261 * Plugin now filters the `bloginfo` and `bloginfo_url` functions for HTTPS URL's when the 'Disable Automatic HTTPS' option is enabled in WordPress 3.0+.
262 = 1.0.1 =
263 * Bug fix.
264 = 1.0 =
265 * Major modifications to plugin structure, efficiency, and documentation.
266 * Added the option to disable WordPress 3.0+ from changing all of your page, category and post links to HTTPS.
267 = 0.5.1 =
268 * Bug fix.
269 = 0.5 =
270 * Due to increasing concerns about plugin performance, the option to bypass the HTTPS check on external elements has been added.
271 = 0.4 =
272 * Plugin functions converted to OOP class.
273 * The plugin will now attempt to set the allow_url_fopen option to true with `ini_set` function if possible.
274 = 0.3 =
275 * Added the option to change external elements to HTTPS if the external server allows the elements to be accessed via HTTPS.
276 = 0.2 =
277 * Changed the way in which HTTPS was detected to be more reliable.
278 = 0.1 =
279 * Initial Release.
280
281 == Upgrade Notice ==
41eee7a @mvied Updated to version 3.2.
authored
282 = 3.2 =
68f41de @mvied Updated to readme.txt.
authored
283 You may lose your SSL Host setting upon upgrading if it is not default (matching your Site URL).
Something went wrong with that request. Please try again.