Ryan Lane wrote:
There's a bunch of things that we should likely do in the future as
well. We should likely set a non-secure cookie for HTTPS logged in
users that indicates the user requests HTTPS only (via a preference,
enabled by default), that will redirect them to HTTPS if they somehow
On Sun, Jun 19, 2011 at 2:35 AM, MZMcBride z...@mzmcbride.com wrote:
These all sound like good ideas to investigate. Just make sure they're in
Bugzilla at some point so they don't get lost in a mailman archive. :-) I
think there's a tracking bug for https or secure login somewhere.
MZMcBride
In anticipation for proper HTTPS support on Wikimedia sites, we will
be enabling protocol relative URLs. This means that things like logos,
references to resources, and interwiki links will use links like:
//en.wikipedia.org/wiki/Main_Page
instead of links like:
On Fri, Jun 17, 2011 at 2:41 PM, Ryan Lane rlan...@gmail.com wrote:
In anticipation for proper HTTPS support on Wikimedia sites, we will
be enabling protocol relative URLs. This means that things like logos,
references to resources, and interwiki links will use links like:
On Fri, Jun 17, 2011 at 11:41 PM, Ryan Lane rlan...@gmail.com wrote:
We'll enable this for test.wikipedia.org some time before enabling it
globally, so that there will be at least a short time to test
beforehand.
For completeness: this, both enabling it on testwiki and enabling it
sitewide,
On Fri, Jun 17, 2011 at 3:29 PM, Roan Kattouw roan.katt...@gmail.comwrote:
On Fri, Jun 17, 2011 at 11:41 PM, Ryan Lane rlan...@gmail.com wrote:
We'll enable this for test.wikipedia.org some time before enabling it
globally, so that there will be at least a short time to test
beforehand.
On Sat, Jun 18, 2011 at 12:32 AM, Brion Vibber br...@wikimedia.org wrote:
Is there a handy config snippet people can use to test things against their
local installs in the meantime?
Afraid not. We have to change hardcoded http:// prefixes in a million
different places, see
On Fri, Jun 17, 2011 at 3:42 PM, Roan Kattouw roan.katt...@gmail.comwrote:
On Sat, Jun 18, 2011 at 12:32 AM, Brion Vibber br...@wikimedia.org
wrote:
Is there a handy config snippet people can use to test things against
their
local installs in the meantime?
Afraid not. We have to change
On Sat, Jun 18, 2011 at 12:56 AM, Brion Vibber br...@pobox.com wrote:
Great that we have a list! :D
Do make sure that all of those individual settings get tested before
touching the production cluster;
Well that's what the testwiki thing is for :)
I'd be particularly worried about the
On Fri, Jun 17, 2011 at 4:02 PM, Roan Kattouw roan.katt...@gmail.comwrote:
On Sat, Jun 18, 2011 at 12:56 AM, Brion Vibber br...@pobox.com wrote:
Great that we have a list! :D
Do make sure that all of those individual settings get tested before
touching the production cluster;
Well
On Sat, Jun 18, 2011 at 3:11 AM, Brion Vibber br...@pobox.com wrote:
* email
What about user preference for cases like this? With four options:
Prefer HTTP, Prefer HTTPS, Force HTTP, Force HTTPS.
--vvv
___
Wikitech-l mailing list
On Fri, Jun 17, 2011 at 4:15 PM, Victor Vasiliev vasi...@gmail.com wrote:
On Sat, Jun 18, 2011 at 3:11 AM, Brion Vibber br...@pobox.com wrote:
* email
What about user preference for cases like this? With four options:
Prefer HTTP, Prefer HTTPS, Force HTTP, Force HTTPS.
The current case is
On Fri, Jun 17, 2011 at 4:20 PM, Brion Vibber br...@pobox.com wrote:
[snip] or it defaults to HTTP for something formatted from default.
s/default/background job running on CLI/
:P
-- brion
___
Wikitech-l mailing list
Wikitech-l@lists.wikimedia.org
My personal preference would be to run *all* logged-in activity over HTTPS,
so every mail link etc should be on SSL. But I think that's still a ways out
yet and will need better SSL acceleration; poor Ryan Lane will kill me if I
keep pushing on that too soon! ;)
Actually, this is exactly
14 matches
Mail list logo
