[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 Matthew Flaschen mflasc...@wikimedia.org changed: What|Removed |Added See Also|

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #79 from chmark...@hotmail.com --- See Also: https://bugzilla.wikimedia.org/show_bug.cgi?id=68554 -- You are receiving this mail because: You are on the CC list for the bug. ___

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 Mark A. Hershberger m...@everybody.org changed: What|Removed |Added Status|RESOLVED|VERIFIED --

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #78 from Sumana Harihareswara suma...@wikimedia.org --- Thanks to everyone who raised or worked on this issue - you have helped keep our users safer. -- You are receiving this mail because: You are on the CC list for the bug.

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 Matthew Flaschen mflasc...@wikimedia.org changed: What|Removed |Added Status|PATCH_TO_REVIEW |RESOLVED

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #77 from Matthew Flaschen mflasc...@wikimedia.org --- (In reply to Matthew Flaschen from comment #76) aa.wikipedia.com still doesn't work, but that's really bug 40998. I meant to say aa.wikiversity.com (the one mentioned earlier),

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #75 from Gerrit Notification Bot gerritad...@wikimedia.org --- Change 106109 merged by Tim Starling: final (I hope!) fix for protorel redirects https://gerrit.wikimedia.org/r/106109 -- You are receiving this mail because: You are

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #73 from Andre Klapper aklap...@wikimedia.org --- (In reply to Gerrit Notification Bot from comment #64) https://gerrit.wikimedia.org/r/106109 jeremyb: Patch should be split into several patches - anybody willing to do this?

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 Greg Grossmeier g...@wikimedia.org changed: What|Removed |Added Priority|Highest |High --- Comment

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 Tim Landscheidt t...@tim-landscheidt.de changed: What|Removed |Added CC|

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #70 from jeremyb bugzilla+org.wikime...@tuxmachine.com --- (In reply to comment #69) Shouldn't the response header for a HEAD request be identical to that for a GET request? Probably the same most of the time. Not saying HEAD

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #71 from MZMcBride b...@mzmcbride.com --- As I suggested on IRC, I think this is an area where defined test cases would be very helpful, arguably essential. -- You are receiving this mail because: You are on the CC list for the

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #64 from Gerrit Notification Bot gerritad...@wikimedia.org --- Change 106109 had a related patch set uploaded by Jeremyb: final (I hope!) fix for protorel redirects https://gerrit.wikimedia.org/r/106109 -- You are receiving this

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 Gerrit Notification Bot gerritad...@wikimedia.org changed: What|Removed |Added Status|REOPENED

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 jeremyb bugzilla+org.wikime...@tuxmachine.com changed: What|Removed |Added Assignee|tstarl...@wikimedia.org

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #66 from jeremyb bugzilla+org.wikime...@tuxmachine.com --- (In reply to comment #65) (In reply to comment #63) Please use curl -vs | grep rather than curl -Is (make that curl -vs 21 /dev/null | grep) -- You are receiving this

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #67 from MZMcBride b...@mzmcbride.com --- (In reply to comment #66) (In reply to comment #65) (In reply to comment #63) Please use curl -vs | grep rather than curl -Is (make that curl -vs 21 /dev/null | grep) Why? -- You

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #68 from jeremyb bugzilla+org.wikime...@tuxmachine.com --- (In reply to comment #67) Why? Most UAs encountering these redirects will be sending GETs. Your tests used HEAD. Why not use what most UAs will be using? -- You are

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 chmark...@hotmail.com changed: What|Removed |Added CC||chmark...@hotmail.com ---

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 MZMcBride b...@mzmcbride.com changed: What|Removed |Added Status|RESOLVED|REOPENED

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 Tim Starling tstarl...@wikimedia.org changed: What|Removed |Added Status|PATCH_TO_REVIEW |RESOLVED

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #62 from Gerrit Notification Bot gerritad...@wikimedia.org --- Change 96438 merged by Tim Starling: Generate redirects.conf https://gerrit.wikimedia.org/r/96438 -- You are receiving this mail because: You are on the CC list for

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #61 from Gerrit Notification Bot gerritad...@wikimedia.org --- Change 96438 had a related patch set uploaded by Tim Starling: Generate redirects.conf https://gerrit.wikimedia.org/r/96438 -- You are receiving this mail because:

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 Gerrit Notification Bot gerritad...@wikimedia.org changed: What|Removed |Added Status|NEW

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 Tim Starling tstarl...@wikimedia.org changed: What|Removed |Added CC|

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #60 from Antoine hashar Musso has...@free.fr --- Bug 51700 was an issue we had with http or https redirect being cached, i.e. not varying on X-Forward-Protocol. Squid did not cache the redirect so that wasn't an issue. The related

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #58 from Andre Klapper aklap...@wikimedia.org --- Greg set this ticket to highest priority three months ago, so I wonder if that still reflects priorities. -- You are receiving this mail because: You are the assignee for the bug.

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #59 from Greg Grossmeier g...@wikimedia.org --- (In reply to comment #58) Greg set this ticket to highest priority three months ago, so I wonder if that still reflects priorities. It obviously hasn't been Platform's Highest

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #57 from MZMcBride b...@mzmcbride.com --- (In reply to comment #56) It looks like Rob is proposing to fix it on the Apache/ops side. That Gerrit is in operations/apache-config. In the short-term, yes. But Ryan L, Ken S., and Rob

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #55 from Andre Klapper aklap...@wikimedia.org --- (In reply to comment #54 by Rob Lanphier) We had a brief in-office discussion, and the workaround we would like to propose for this is to change the 301 redirect to a 302 redirect

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #56 from Matthew Flaschen mflasc...@wikimedia.org --- (In reply to comment #55) Does any specific MW core developer plan to work on this? It looks like Rob is proposing to fix it on the Apache/ops side. That Gerrit is in

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #53 from Ken Snider ksni...@wikimedia.org --- I agree with Ryan here. Fixing this in Mediawiki should be the focus, otherwise we have to mangle the redirect in apache/varnish. Better if the wiki could return the HTTPS redirect

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #54 from Rob Lanphier ro...@wikimedia.org --- We had a brief in-office discussion, and the workaround we would like to propose for this is to change the 301 redirect to a 302 redirect in Gerrit change #13293, and remove the 'Header

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 Donald Lancon dc...@obkb.com changed: What|Removed |Added CC||dc...@obkb.com ---

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 MZMcBride b...@mzmcbride.com changed: What|Removed |Added CC||ksni...@wikimedia.org,

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #47 from Andre Klapper aklap...@wikimedia.org --- Quick info: Investigating this problem is on the to-do list for this week. -- You are receiving this mail because: You are the assignee for the bug. You are on the CC list for the

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #49 from Greg Grossmeier g...@wikimedia.org --- Oops, I forgot about/missed MZ's comment from way up there ^^ (In reply to comment #22) Test cases * https://mediawiki.org * https://wikimedia.org * https://wikipedia.org *

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #50 from Ryan Lane rlan...@gmail.com --- Apache doesn't handle this well, and we don't really want to do it in varnish. It's likely best for MediaWiki to handle this instead... -- You are receiving this mail because: You are the

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #48 from Greg Grossmeier g...@wikimedia.org --- Daniel/Asher/Ryan: Is there an RT ticket for this? *seems* mostly in Ops/apache domain vs Platform, right? -- You are receiving this mail because: You are the assignee for the bug.

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 Maarten Dammers maar...@mdammers.nl changed: What|Removed |Added CC|

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 jeremyb bugzilla+org.wikime...@tuxmachine.com changed: What|Removed |Added CC|

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 Matthew Flaschen mflasc...@wikimedia.org changed: What|Removed |Added Blocks||27946 --

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 Greg Grossmeier g...@wikimedia.org changed: What|Removed |Added Priority|High|Highest

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 jeremyb bugzilla+org.wikime...@tuxmachine.com changed: What|Removed |Added Status|REOPENED|NEW

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 MZMcBride b...@mzmcbride.com changed: What|Removed |Added Summary|redirects.conf should not |Non-canonical HTTPS URLs

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #41 from jeremyb bugzilla+org.wikime...@tuxmachine.com --- (In reply to comment #40) Gerrit change #13293 indicates that these redirects should be moved to Varnish. Is this possible now? If so, do you have any pointers about which

[Bug 31369] Non-canonical HTTPS URLs quietly redirect to HTTP

https://bugzilla.wikimedia.org/show_bug.cgi?id=31369 --- Comment #42 from Faidon Liambotis fai...@wikimedia.org --- MZMcBride, no, text hasn't moved to Varnish yet. It's being worked on but we're not there yet. When that happens, operations/puppet, templates/varnish/text* would be the place to