This is indirectly related to https://issues.apache.org/jira/browse/TAP5-167 I notice. Another problem when switching between secure & non-secure is that if the server set a cookie marked as secure, you'll lose your session when going from https to http, since the browser wont send the same cookie to the insecure site.
On Thu, Oct 30, 2008 at 4:26 PM, Ryan Mitchell <[EMAIL PROTECTED]> wrote: > In my app that can be accessed either via http or https, I can access > pages via https just fine but the redirects to render pages always end > up back on the non-ssl http site. I know I can configure tapestry to > force all access to ssl, but I want the option for both. Is this > normal behavior? > > In other words, if the client starts a session with ssl, I want them > to stay there; if they start w/o then stay there too. > > thanks, > > -- > Ryan Mitchell <[EMAIL PROTECTED]> > Telecom Logic, LLC > -- Ryan Mitchell <[EMAIL PROTECTED]> Telecom Logic, LLC --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
