Add-on Require SSL for account operations

naia

naia

Well-known member
There should be an addon that requires and redirects users to a secure (https) connection when performing the following actions:
  • Creating An Account
  • Logging Into An Account
  • Changing An Account Password
  • Resetting An Account Password
 
In truth I think it's a bit silly these days to use partial SSL. Might as well go full SSL, you can take advantage of spdy and it's really not as taxing computationally as it used to be back when partial SSL was common practice.

.. but this is definitely something to do in .htaccess and not really an addon.
 
There is absolutely no point in using HTTPs for only certain things, as the session id is always transferred anyway.
 
You must log in or register to reply here.

Similar threads

GameNet
  • Suggestion Suggestion
Manage API Access Tokens section in account settings
Replies
7
Views
836
GameNet
GameNet
ActorMike
SMTP Session is closed after each recipient over SSL
Replies
0
Views
420
ActorMike
ActorMike
K
Fixed E-Mail TFA leaks email address
Replies
5
Views
1K
Ludachris
Ludachris
Rengobli
Add-on Custom Login Add-On
Replies
0
Views
640
Rengobli
Rengobli
K
Fixed Add support for One-Click E-Mail Unsubscribe Header
2 3
Replies
57
Views
4K
Fred.
Fred.
Top Bottom