[Mailman-Developers] mailman 3: http vs https
Please help I've got in troubles with http/https schemes of the Postorious/Hyperkitty. Initially I configured Mailman 3 in :443 virtualhost section of subdomain lists.domaint.tld with automatic redirection from :80 by mod_rewrite. I could access pages with https scheme. Then I noticed that my SSL-certificate doesn't allow wildcard-subdomains. I saw two options here: 1) To use a folder on main domain.tld instead of subdomain which does not looks like a great idea because of Hyperkitty somehow control robots.txt file which is domain-wide, not folder-wide. 2) To get rid of https. I choose last option and have moved Mailman 3 config lines to :80 virtualhost, commented redirection too. Now I can see Postorius and Hyperkitty on http connection but I can't login - I've been redirecting to https pages right after login, which are not accessible. The worst thing is that if I move Mailman 3 lines back to :443 virtualhost section, I got unbelievable redirect from https site to http one which was never configured! So I messed up completely. Danil p.s. I use 'Forget about site' feature of Firefox browser and check with Chrome so it's unlikely a cache issue. ___ Mailman-Developers mailing list Mailman-Developers@python.org https://mail.python.org/mailman/listinfo/mailman-developers Mailman FAQ: http://wiki.list.org/x/AgA3 Searchable Archives: http://www.mail-archive.com/mailman-developers%40python.org/ Unsubscribe: https://mail.python.org/mailman/options/mailman-developers/archive%40jab.org Security Policy: http://wiki.list.org/x/QIA9
Re: [Mailman-Developers] mailman 3: http vs https
2) To get rid of https. I choose last option and have moved Mailman 3 config lines to :80 virtualhost, commented redirection too. Now I can see Postorius and Hyperkitty on http connection but I can't login - I've been redirecting to https pages right after login, which are not accessible. If you don't want to use HTTPS, there's a USE_SSL variable in the Django settings file that you need to set to False. Otherwise, HyperKitty and Postorius will try to redirect you to HTTPS on the login page and when you're logged in to prevent credentials and session theft. Aurélien ___ Mailman-Developers mailing list Mailman-Developers@python.org https://mail.python.org/mailman/listinfo/mailman-developers Mailman FAQ: http://wiki.list.org/x/AgA3 Searchable Archives: http://www.mail-archive.com/mailman-developers%40python.org/ Unsubscribe: https://mail.python.org/mailman/options/mailman-developers/archive%40jab.org Security Policy: http://wiki.list.org/x/QIA9
Re: [Mailman-Developers] mailman 3: http vs https
2015-06-01 17:23 GMT+03:00 Aurelien Bompard aurel...@bompard.org: If you don't want to use HTTPS, there's a USE_SSL variable in the Django settings file that you need to set to False. Thanks, this works. ___ Mailman-Developers mailing list Mailman-Developers@python.org https://mail.python.org/mailman/listinfo/mailman-developers Mailman FAQ: http://wiki.list.org/x/AgA3 Searchable Archives: http://www.mail-archive.com/mailman-developers%40python.org/ Unsubscribe: https://mail.python.org/mailman/options/mailman-developers/archive%40jab.org Security Policy: http://wiki.list.org/x/QIA9