Modify

Opened 19 years ago

Closed 16 years ago

#118 closed defect (wontfix)

SecSession doesn't lock other plugins to https

Reported by: John Hampton Owned by: John Hampton
Priority: normal Component: SecSessionPlugin
Severity: normal Keywords:
Cc: Trac Release: 0.8

Description

If an authenticated user is viewing a plugin page and cahnges the URL to http instead of https, secsession doesn't catch it.

Attachments (0)

Change History (1)

comment:1 Changed 16 years ago by John Hampton

Resolution: wontfix
Status: newclosed
Trac Release: 0.8

plugin is dead and gone for now. Besides, this is non-trivial to fix for 0.9 as there is no plugin loading order, nor any pre-request hooks.

Modify Ticket

Change Properties
Set your email in Preferences
Action
as closed The owner will remain John Hampton.
The resolution will be deleted. Next status will be 'reopened'.

Add Comment

E-mail address and name can be saved in the Preferences.

AttachmentsDescription
 
Note: See TracTickets for help on using tickets.