You can put the entire site on HTTPS if you want. Review Board doesn't limit
you to HTTP or HTTPS. Set the correct URL in your admin settings, and if
necessary set up Apache to redirect automatically to the HTTPS URL.

Christian

-- 
Christian Hammond - chip...@chipx86.com
Review Board - http://www.reviewboard.org
VMware, Inc. - http://www.vmware.com


On Tue, Jan 26, 2010 at 9:56 AM, Kunjal <kunjal.par...@gmail.com> wrote:

> Hello,
>
> We have enabled RB with Active Directory.
>
> I can see that ReviewBoard uses http to login, and not https. I am no
> expert in these matters, but according to my old knowledge this means
> that the username and password is being sent in clear text on Broadcom
> intranet.
>
> This seems a bit unsafe to me, especially considering that we now use
> windows passwords.
>
> Is this how RB works? Is there a work around?
>
> Kunjal
>
> --
> Want to help the Review Board project? Donate today at
> http://www.reviewboard.org/donate/
> Happy user? Let us know at http://www.reviewboard.org/users/
> -~----------~----~----~----~------~----~------~--~---
> To unsubscribe from this group, send email to
> reviewboard+unsubscr...@googlegroups.com<reviewboard%2bunsubscr...@googlegroups.com>
> For more options, visit this group at
> http://groups.google.com/group/reviewboard?hl=en

-- 
Want to help the Review Board project? Donate today at 
http://www.reviewboard.org/donate/
Happy user? Let us know at http://www.reviewboard.org/users/
-~----------~----~----~----~------~----~------~--~---
To unsubscribe from this group, send email to 
reviewboard+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/reviewboard?hl=en

Reply via email to