Defect #20556: Redirect to HTTPS - Redmine

Defect #20556

Redirect to HTTPS

Added by Dennis Olsson over 4 years ago. Updated over 1 year ago.

Status:

New

Start date:

Priority:

Normal

Due date:

Assignee:

Jean-Philippe Lang

% Done:

Category:

Website (redmine.org)

Target version:

Resolution:

Affected version:

Description

http://www.redmine.org/account/register and other sensitive pages should (IMHO) redirect to HTTPS when passwords are involved. Even better would be to redirect all traffic, since session cookies are involved and impersonation is trivial if you are in the right/wrong position/place.

Adding as a defect since HTTPS is configured on the server.

Related issues

History

#2 Updated by Fernando Hartmann over 2 years ago

#3 Updated by Toshi MARUYAMA over 2 years ago

Related to Feature #25764: Redmine site shoud send emails with HTTPS links added

#4 Updated by Fernando Hartmann over 1 year ago

It become more important, because now Chrome is showing HTTP sites as Not Secure

#5 Updated by Bernhard Rohloff about 1 month ago

Related to Defect #32434: Serve redmine.org over https added

Also available in: Atom PDF

	Related to Redmine - Feature #25764: Redmine site shoud send emails with HTTPS links	Closed
	Related to Redmine - Defect #32434: Serve redmine.org over https	Closed

Redmine

Issues

Custom queries