Hi,
Can OFBiz be configured to render the security protocol by page instead
of by request? I'm referring to the control flow managed by the
controller.xml file in an OFBiz web application. For example.... I
have an insecure page that has a link to a page that requires the user
to be authenticated. Because the authentication request is coming from
an insecure page, the login page, which should always be presented as a
secure (https) page, is presented insecurely (http). The login page
should *always* be secure. Yet, the way OFBiz handles requests and
resulting pages, it isn't. How can I configure OFBiz to set the
security protocol by page instead of request? I look forward to any
suggestions or comments anyone might have. Thanks.
Sincerely,
Eric
- Page security protocol Eric Kingston
-
