WordPress.org

Support

Support » Plugins and Hacks » [Resolved] [Plugin: WordPress HTTPS (SSL)] making form action insecure

[Resolved] [Plugin: WordPress HTTPS (SSL)] making form action insecure

Viewing 15 replies - 1 through 15 (of 17 total)
  • jadenblack
    Member

    @jadenblack

    I’m getting the same behavior, I’m using site_url(”,’https’) to create actions for forms and redirects. When WP-HTTPS is activated, it converts everything to http, which breaks most of the forms. Then when I deactivate WP-HTTPS, all the links go back to https and work as intended, but then I get insecure errors.

    Using latest releases of WP 3.4 and WP-HTTPS 3.0.4, on PHP 5.2.17

    Please help!

    Daniel Watrous
    Participant

    @dwatrous

    I’ve found that the issue comes from a normalization function the plugin performs. There are a couple of ways around this.

    1) The easiest way to get around it is to change your Site Address value on your main settings page in WordPress so that it is https. That will circumvent the part of the plugin that is changing them back to http.

    2) The other way is to open the file “/lib/WordPressHTTPS/Module/Parser.php” and comment out the second conditional in the function normalizeElements(). That will prevent the normalization from happening at all.

    I’ve emailed the plugin author, but no response, so I’m not sure when a fix might make it into the plugin.

    sorry that I’m writing in this post
    I have the same problem:
    http://wordpress.org/support/topic/logged-in-cookies-expire-1-year-ago?replies=1
    this post is closed for replies, so I’m writing here.
    dwatrous, did You resolved that problem? If yes – how?
    Thanks

    Daniel Watrous
    Participant

    @dwatrous

    I did resolve it using either of the two methods you read in this post.

    I have marked the post as not resolved to hopefully get some attention from the plugin developer.

    Plugin Author Mike Ems
    Member

    @mvied

    This was a bug in 3.0.4 that was fixed already. If it doesn’t work in the current version, I’m releasing my development version soon, so test that. If the problem persists in the development version, I’ll look into it.

    Daniel Watrous
    Participant

    @dwatrous

    I just verified that it works as expected in 3.1.2.

    Thanks Mike

    I use 3.4.1
    which methods?

    Daniel Watrous
    Participant

    @dwatrous

    Just read above in this thread.

    You can also download the latest version and I have confirmed that it works for me.

    Plugin Author Mike Ems
    Member

    @mvied

    Hey Daniel, could you test the development version and confirm that it also works as intended? I’d hate to push it out and have this issue reappear. I only mention it because I’ve specifically worked on that part of the code.

    Daniel can You share jmx that you use for login? May be I made something wrong in my jmx…

    Daniel Watrous
    Participant

    @dwatrous

    I have just confirmed that this is working as expected in 3.2rc1

    I am running version 3.3 and I am having the same issues as other people above my actual form post submissions are being set back to http from https….it would be great if the plugin author could correct this…

    Daniel Watrous
    Participant

    @dwatrous

    Hi Matthew, I found that this plugin was getting too complicated. I coded up a replacement that is simple and works great. I’ve been using it on my own sites and will probably release it through the wordpress directory soon.

    If you want to give it a try, you can get it here:
    http://www.danielwatrous.com/https-0.0.1.zip

    Ok Daniel. I will give it a whirl…thanks.

    Holy crap it works now! Thanks so much for that Daniel! Hope your plugin gets released soon….because it actually works, what a concept! Nice work sir.

Viewing 15 replies - 1 through 15 (of 17 total)
  • The topic ‘[Resolved] [Plugin: WordPress HTTPS (SSL)] making form action insecure’ is closed to new replies.