audit all uses of "http:" #1246
Comments
|
Otherwise we get into hilarious cases like trying to access /profile doing an infinite redirect loop. |
|
ahahahaha that sounds like the tiny despairing voice of "....but why is that HAPPENING?" speaking |
afuna
added a commit
to afuna/dw-free
that referenced
this issue
Feb 26, 2015
afuna
added a commit
to afuna/dw-free
that referenced
this issue
Feb 26, 2015
|
Noting here that I've also looked at the $*font_sources (which have as values external stylesheet urls) and these are all fine because they go through the cssproxy. |
afuna
added a commit
to afuna/dw-free
that referenced
this issue
Feb 26, 2015
afuna
added a commit
to afuna/dw-free
that referenced
this issue
Feb 26, 2015
zorkian
added a commit
that referenced
this issue
Feb 26, 2015
[#1246] Check for https as well as http; use https for generated urls
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Example: redirecting to another page if the URL does not check out (where we mistakenly redirect because we're only checking for "http://" instead of "https?://"
The text was updated successfully, but these errors were encountered: