I the past I hosted a web2py application at Webfaction. I had a dedicated IP address, and added:
domains: mydomain.com, www.mydomain.com and admin.mydomain.com application: web2py websites: a normal and an encrypted website. and added domains mydomain.com and www.domain.com and application web2py to the normal website and domain admin.mydomain.com and application web2py to the encrypted website. For some reason this was sufficient to access my application and access appadmin, I didn't have to add any additional code. Today I posted the following question: I am developing a web application in web2py, the controllers follow the pattern: addressbook/cmsaddressbook about/cms/about calendar/cmscalendar I know I can create a secure website, however, I don't want the entire site to be secure, just cmsaddressbook, cmsabout and cmscalendar. Is that possible? I got the following reply: Yes, this can be done by redirecting to HTTPS in your application for the needed URLs. To do so, your application must still have an HTTPS version with an HTTPS website record, and you'll need an SSL certificate installed. Once that's done, you can redirect to HTTPS for certain URLs based on context. This would be similar to the following: http://community.webfaction.com/questions/3211/apache-conf-http-and-https In short, your application can use the value of the %{HTTP:X-Forwarded-SSL} HTTP variable to determine if the user arrived via HTTP or HTTPS, and then redirect to HTTPS for only the pages you want to use HTTPS for. I think I do understand the first part of this reply, but I have no idea how the second part is related to web2py's features. How does appadmin make me arrive via https? Kind regards, Annet. -- --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
