Title: https rewriting is breaking external forms in admin
Last modified: September 1, 2016

---

# https rewriting is breaking external forms in admin

 *  Resolved [Aaron Edwards](https://wordpress.org/support/users/uglyrobot/)
 * (@uglyrobot)
 * [9 years, 9 months ago](https://wordpress.org/support/topic/https-rewriting-is-breaking-external-forms-in-admin/)
 * We have a form in admin, and the form action is getting rewritten to be // instead
   of [https://](https://wordpress.org/support/topic/https-rewriting-is-breaking-external-forms-in-admin/?output_format=md).
   This breaks the form and in Chrome and FF browsers strangely changes the form
   behavior to make a GET request with no parameters. I don’t think protocol relative
   urls work in form action attributes.
    1. You should not be overriding form actions
    2. You probably shouldn’t be overriding urls in admin side at all
    3. **You are changing https:// to // which is a security issue, you are lowering
       security on sites that don’t use ssl**. If the goal is to avoid mixed content
       errors, you should only be filtering [http://](https://wordpress.org/support/topic/https-rewriting-is-breaking-external-forms-in-admin/?output_format=md).
 * [https://wordpress.org/plugins/cloudflare/](https://wordpress.org/plugins/cloudflare/)

Viewing 2 replies - 1 through 2 (of 2 total)

 *  Thread Starter [Aaron Edwards](https://wordpress.org/support/users/uglyrobot/)
 * (@uglyrobot)
 * [9 years, 9 months ago](https://wordpress.org/support/topic/https-rewriting-is-breaking-external-forms-in-admin/#post-7654020)
 * Update: the problem is not point #1, it’s that for security our site only allows
   https connections and redirects insecure requests. So the problem is in #3 that
   the plugin is downgrading secure forms to be insecure.
 *  [jwineman](https://wordpress.org/support/users/jwineman/)
 * (@jwineman)
 * [9 years, 9 months ago](https://wordpress.org/support/topic/https-rewriting-is-breaking-external-forms-in-admin/#post-7654022)
 * Hi,
 * We’re in the process of redesigning the plugin and in the new version the protocol
   rewrite functionality will be removed.
 * Thanks,
    John

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘https rewriting is breaking external forms in admin’ is closed to new
replies.

 * ![](https://ps.w.org/cloudflare/assets/icon-256x256.png?rev=2471183)
 * [Cloudflare](https://wordpress.org/plugins/cloudflare/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/cloudflare/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/cloudflare/)
 * [Active Topics](https://wordpress.org/support/plugin/cloudflare/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/cloudflare/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/cloudflare/reviews/)

 * 2 replies
 * 2 participants
 * Last reply from: [jwineman](https://wordpress.org/support/users/jwineman/)
 * Last activity: [9 years, 9 months ago](https://wordpress.org/support/topic/https-rewriting-is-breaking-external-forms-in-admin/#post-7654022)
 * Status: resolved