I have a page which requires SSL, so I tick "Secure post".
The problem is that when a user goes to another page on the same site, the protocol is not switched back.
"Force SSL Exclusively" seems to be the solution and indeed, the user now only uses SSL for that one page.
The problem is that now, if a theme tries to load assets, these are loaded using the insecure protocol, because of that setting.
Is this a bug or something difficult to resolve?