Opened 12 years ago
Closed 12 years ago
#37809 closed defect (fixed)
lists admindb pages broken due to http links
Reported by: | ryandesign (Ryan Carsten Schmidt) | Owned by: | wsiegrist@… |
---|---|---|---|
Priority: | Normal | Milestone: | |
Component: | server/hosting | Version: | |
Keywords: | Cc: | raimue (Rainer Müller) | |
Port: |
Description
I can't use the mailing list admindb pages anymore, e.g. https://lists.macosforge.org/mailman/admindb/macports-dev
The links on that page are back to the http (not https) version of the pages. But the server is configured to redirect those to https (since we want everything https). This is wasteful of server resources; the links on the page should be changed to https, or simpler yet, don't list the protocol or hostname at all; just use an absolute or relative path.
The biggest problem though is with the form action, which is also http (not https). So when I submit the form, the browser asks if I'm sure I want to submit an insecure form. I say sure why not, but then the server as above issues a redirect to the https version. By requirement of the HTTP protocol the browser must interpret the redirect as a GET not a POST, so the form data is not submitted the second time, so the actions I was trying to take to approve or reject a message do not take effect.
This was working fine last time I tried, but I can't say when that was; maybe up to a month ago, though I think it was more recently.
Cc Me!