FUDforum: How To » Secure the 2.3.7 version? deadend.

Home » FUDforum » How To » Secure the 2.3.7 version? deadend. (

) 1 Vote

Show: Today's Messages :: Polls :: Message Navigator

Secure the 2.3.7 version? deadend. [message #17603]

Tue, 06 April 2004 16:30

StarLight{PL}

Messages: 22
Registered: March 2003

Karma:

Junior Member

At first, I must say I cannot upgrade because of heavy modifications made to the forum and its templates (lack of time). Ok, that aside, here's the problem.

I've tried implementing https:// support in 2.3.7. Did so by starting output buffering in GLOBALS.php and writing a callback function which converts all occurences of http://forum.url/ to https://forum.url/. if $GLOBALS['HTTP_SERVER_VARS']['HTTPS'] is on. So far so good, BUT!

When I try to post a form, let's say it's quicklogin form (but others also, like pm, post a message), I'm being bounced back to http://. This is regardless of form having an "action" attribute pointing to https://.

Well, okay, I thought. There must be some kind of header('Location: command which keeps me bouncing back. So I went and redefined all instances of header('Location: to point to https:// (the ones with the double quotes around "location: also) [joe + macros + good search&replace = not too much work Smile

]. In the include _and_ in the forum directory.

NO AVAIL. STILL KEEPS ME BOUNCED BACK.

Now I'm puzzled.

Any clues why this thing stil bounces me back to http? Has it perhaps something to do with $GLOBALS['returnto']? If yes, then where I can redefine it to sense https over http?

Ilia - any insights appreciated much. For example what's going on when the form (any form) is posted (in the forum ofcourse, not in http Wink

)? I found out that the login & password are sent on a secure connection - but that's it Sad

. There has to be something with the processing of the form. HELP Very Happy

EDIT: I forgot. This also happens when going to 'last post in thread' via the little arrow. Confused

[Updated on: Tue, 06 April 2004 16:37]

Report message to a moderator

[Message index]

		Secure the 2.3.7 version? deadend. By: StarLight{PL} on Tue, 06 April 2004 16:30
		Re: Secure the 2.3.7 version? deadend. By: Ilia on Tue, 06 April 2004 16:54
		Odp: Secure the 2.3.7 version? deadend. By: StarLight{PL} on Wed, 07 April 2004 07:57
		Re: Odp: Secure the 2.3.7 version? deadend. By: Ilia on Wed, 07 April 2004 12:36
		Odp: Secure the 2.3.7 version? deadend. By: StarLight{PL} on Wed, 07 April 2004 14:33
		Odp: Secure the 2.3.7 version? deadend. - SOLVED By: StarLight{PL} on Wed, 07 April 2004 16:09

Previous Topic:	Display answer of a special member
Next Topic:	probleme with ID in egroupware / FUD

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

]

Current Time: Fri Nov 22 07:59:54 GMT 2024

Total time taken to generate the page: 0.04366 seconds