Add-on Require SSL for account operations

naia

naia

Well-known member
There should be an addon that requires and redirects users to a secure (https) connection when performing the following actions:
  • Creating An Account
  • Logging Into An Account
  • Changing An Account Password
  • Resetting An Account Password
 
In truth I think it's a bit silly these days to use partial SSL. Might as well go full SSL, you can take advantage of spdy and it's really not as taxing computationally as it used to be back when partial SSL was common practice.

.. but this is definitely something to do in .htaccess and not really an addon.
 
There is absolutely no point in using HTTPs for only certain things, as the session id is always transferred anyway.
 
You must log in or register to reply here.

Similar threads

alternadiv
Add-on What are the available add-ons for account upgrade improvements, donations, paid memberships?
Replies
4
Views
1K
Frode789
Frode789
Steffen
  • Suggestion Suggestion
Ask users to confirm their email address once per year (for account recovery)
Replies
15
Views
2K
AndrewSimm
AndrewSimm
DragonByte Tech
XF 2.0 Should I be using \XF::fs() for all file operations?
Replies
6
Views
680
DragonByte Tech
DragonByte Tech
Surf3rDud3
Add-on Require STEAM ID for Account Upgrades
Replies
1
Views
1K
Surf3rDud3
Surf3rDud3
Surf3rDud3
  • Question Question
XF 1.3 Require Steam ID for Account Upgrades
Replies
1
Views
1K
Surf3rDud3
Surf3rDud3
Back
Top Bottom