https://bugzilla.wikimedia.org/show_bug.cgi?id=40541
--- Comment #19 from Nemo <[email protected]> --- (In reply to comment #18) > (In reply to comment #17) > > So what's the alternative to $wgSecureLoginDefaultHTTPS now? > > Nothing, because it doesn't make sense anymore. $wgSecureLoginDefaultHTTPS > was > made to decide what the default value of the mStickHTTPS checkbox was. > However, > that checkbox doesn't exist anymore, so there's no purpose in having a > default > value for it. > > Whether you're sent to HTTPS, rather than being decided by a checkbox, is > decided by a combination of what protocol you were previously browsing and > the > user preference prefershttps. What are the combinations? > > > What happens (now > > and in 1.21) if $wgSecureLogin is true but $wgServer is http:// ? > > I forget what release it was in, but having $wgSecureLogin as true and > $wgServer with an HTTP protocol is considered a configuration error, so a > patch > was added that automatically shuts off $wgSecureLogin in Setup.php if that > condition matches. Yes, that's what the configuration suggests. I still don't understand how one is supposed to send logged in users to http after the secure login. -- You are receiving this mail because: You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
