https://bugzilla.wikimedia.org/show_bug.cgi?id=39380
Platonides <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |[email protected] --- Comment #38 from Platonides <[email protected]> --- (In reply to comment #24) > So basically here is what needs to be fixed with $wgSecureLogin: > * Actual functionality is fixed > * Links on the HTTPS login page should be set to the protocol of where the > user is coming from (I forget where, but there is a bug filed for this). > * HTTP cookie is set so user will be auto-redirected to HTTPS when logged in > there. This could be done by simply enabling Strict transport security. -- You are receiving this mail because: You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
