Version 2 (modified by 12 years ago) (diff) | ,
---|
Secure Session Plugin
Notice: This plugin is unmaintained and available for adoption.
Description
Trac plugin to lock an authenticated user into using https://
Bugs/Feature Requests
Existing bugs and feature requests for SecSessionPlugin are here.
If you have any issues, create a new ticket.
Download
Download the zipped source from [download:secsessionplugin here].
Source
You can check out SecSessionPlugin from here using Subversion, or browse the source with Trac.
Example
Requires setup in trac.ini
[components] secsession.* = enabled
The web server must also be configured to only allow access to the login url via https. An example rewrite rule for apache might look like the following:
RewriteEngine On RewriteRule ^/login https://%{SERVER_NAME}/login [L]
Author/Contributors
Author: pacopablo
Contributors: