Title: [Plugin: WordPress HTTPS (SSL)] making form action insecure Last modified: August 20, 2016 --- # [Plugin: WordPress HTTPS (SSL)] making form action insecure * Resolved [Daniel Watrous](https://wordpress.org/support/users/dwatrous/) * (@dwatrous) * [13 years, 9 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/) * I just noticed that this plugin is changing the URL for my form action from https to http. * Why is that? I need to post to a secure page… * [http://wordpress.org/extend/plugins/wordpress-https/](http://wordpress.org/extend/plugins/wordpress-https/) Viewing 15 replies - 1 through 15 (of 17 total) 1 [2](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/page/2/?output_format=md) [→](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/page/2/?output_format=md) * [jadenblack](https://wordpress.org/support/users/jadenblack/) * (@jadenblack) * [13 years, 9 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842029) * I’m getting the same behavior, I’m using site_url(”,’https’) to create actions for forms and redirects. When WP-HTTPS is activated, it converts everything to http, which breaks most of the forms. Then when I deactivate WP-HTTPS, all the links go back to https and work as intended, but then I get insecure errors. * Using latest releases of WP 3.4 and WP-HTTPS 3.0.4, on PHP 5.2.17 * Please help! * Thread Starter [Daniel Watrous](https://wordpress.org/support/users/dwatrous/) * (@dwatrous) * [13 years, 9 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842038) * I’ve found that the issue comes from a normalization function the plugin performs. There are a couple of ways around this. * 1) The easiest way to get around it is to change your Site Address value on your main settings page in WordPress so that it is https. That will circumvent the part of the plugin that is changing them back to http. * 2) The other way is to open the file “/lib/WordPressHTTPS/Module/Parser.php” and comment out the second conditional in the function normalizeElements(). That will prevent the normalization from happening at all. * I’ve emailed the plugin author, but no response, so I’m not sure when a fix might make it into the plugin. * [tedam](https://wordpress.org/support/users/tedam/) * (@tedam) * [13 years, 8 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842039) * sorry that I’m writing in this post I have the same problem: [http://wordpress.org/support/topic/logged-in-cookies-expire-1-year-ago?replies=1](http://wordpress.org/support/topic/logged-in-cookies-expire-1-year-ago?replies=1) this post is closed for replies, so I’m writing here. dwatrous, did You resolved that problem? If yes – how? Thanks * Thread Starter [Daniel Watrous](https://wordpress.org/support/users/dwatrous/) * (@dwatrous) * [13 years, 8 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842040) * I did resolve it using either of the two methods you read in this post. * I have marked the post as not resolved to hopefully get some attention from the plugin developer. * Plugin Author [mvied](https://wordpress.org/support/users/mvied/) * (@mvied) * [13 years, 8 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842041) * This was a bug in 3.0.4 that was fixed already. If it doesn’t work in the [current version](http://downloads.wordpress.org/plugin/wordpress-https.3.1.2.zip), I’m releasing my [development version](http://downloads.wordpress.org/plugin/wordpress-https.zip) soon, so test that. If the problem persists in the development version, I’ll look into it. * Thread Starter [Daniel Watrous](https://wordpress.org/support/users/dwatrous/) * (@dwatrous) * [13 years, 8 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842042) * I just verified that it works as expected in 3.1.2. * Thanks Mike * [tedam](https://wordpress.org/support/users/tedam/) * (@tedam) * [13 years, 8 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842043) * I use 3.4.1 which methods? * Thread Starter [Daniel Watrous](https://wordpress.org/support/users/dwatrous/) * (@dwatrous) * [13 years, 8 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842044) * Just read above in this thread. * You can also download the latest version and I have confirmed that it works for me. * Plugin Author [mvied](https://wordpress.org/support/users/mvied/) * (@mvied) * [13 years, 8 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842045) * Hey Daniel, could you test the development version and confirm that it also works as intended? I’d hate to push it out and have this issue reappear. I only mention it because I’ve specifically worked on that part of the code. * [tedam](https://wordpress.org/support/users/tedam/) * (@tedam) * [13 years, 8 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842046) * Daniel can You share jmx that you use for login? May be I made something wrong in my jmx… * Thread Starter [Daniel Watrous](https://wordpress.org/support/users/dwatrous/) * (@dwatrous) * [13 years, 8 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842048) * I have just confirmed that this is working as expected in 3.2rc1 * [Matthew Nelson](https://wordpress.org/support/users/mtn282002/) * (@mtn282002) * [13 years, 3 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842052) * I am running version 3.3 and I am having the same issues as other people above my actual form post submissions are being set back to http from https….it would be great if the plugin author could correct this… * Thread Starter [Daniel Watrous](https://wordpress.org/support/users/dwatrous/) * (@dwatrous) * [13 years, 3 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842053) * Hi Matthew, I found that this plugin was getting too complicated. I coded up a replacement that is simple and works great. I’ve been using it on my own sites and will probably release it through the wordpress directory soon. * If you want to give it a try, you can get it here: [http://www.danielwatrous.com/https-0.0.1.zip](http://www.danielwatrous.com/https-0.0.1.zip) * [Matthew Nelson](https://wordpress.org/support/users/mtn282002/) * (@mtn282002) * [13 years, 3 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842054) * Ok Daniel. I will give it a whirl…thanks. * [Matthew Nelson](https://wordpress.org/support/users/mtn282002/) * (@mtn282002) * [13 years, 3 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/#post-2842055) * Holy crap it works now! Thanks so much for that Daniel! Hope your plugin gets released soon….because it actually works, what a concept! Nice work sir. Viewing 15 replies - 1 through 15 (of 17 total) 1 [2](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/page/2/?output_format=md) [→](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/page/2/?output_format=md) The topic ‘[Plugin: WordPress HTTPS (SSL)] making form action insecure’ is closed to new replies. * ![](https://s.w.org/plugins/geopattern-icon/wordpress-https_bec2c9.svg) * [WordPress HTTPS (SSL)](https://wordpress.org/plugins/wordpress-https/) * [Frequently Asked Questions](https://wordpress.org/plugins/wordpress-https/#faq) * [Support Threads](https://wordpress.org/support/plugin/wordpress-https/) * [Active Topics](https://wordpress.org/support/plugin/wordpress-https/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/wordpress-https/unresolved/) * [Reviews](https://wordpress.org/support/plugin/wordpress-https/reviews/) ## Tags * [form](https://wordpress.org/support/topic-tag/form/) * 17 replies * 6 participants * Last reply from: [greatkingrat](https://wordpress.org/support/users/greatkingrat/) * Last activity: [13 years, 2 months ago](https://wordpress.org/support/topic/plugin-wordpress-https-ssl-making-form-action-insecure/page/2/#post-2842057) * Status: resolved