Tweet
Hi, did some searches but nothing of the current state of affairs (vB 4.1.3).
I would like to give the possibility to my vB users to choose between regular and SSL/TLS encrypted connection. Meaning, having a full forum always under HTTPS is somewhat overkill for a regular forum, but some people do need it (for example, when they're using Wifi).
Which is, by the way, the regular way of doing things. Most (serious) sites do it this way.
My issue is that vB is forcing absolute links, and needs a proper base URL (with prefix) to have everything works (i.e. if I remove the protocol prefix from the options, for example the editor doesn't work anymore). So even if part of the connection is encrypted, some isn't (javascript calls, yui calls, some internal links, etc.) which still allow nasty things (and remove the secure icon on some browser, starting with Firefox).
Any idea how to have vB not output absolute prefixed links, or detect if we are currently under SSL/TLS and output appropriate protocol prefix?
I would like to give the possibility to my vB users to choose between regular and SSL/TLS encrypted connection. Meaning, having a full forum always under HTTPS is somewhat overkill for a regular forum, but some people do need it (for example, when they're using Wifi).
Which is, by the way, the regular way of doing things. Most (serious) sites do it this way.
My issue is that vB is forcing absolute links, and needs a proper base URL (with prefix) to have everything works (i.e. if I remove the protocol prefix from the options, for example the editor doesn't work anymore). So even if part of the connection is encrypted, some isn't (javascript calls, yui calls, some internal links, etc.) which still allow nasty things (and remove the secure icon on some browser, starting with Firefox).
Any idea how to have vB not output absolute prefixed links, or detect if we are currently under SSL/TLS and output appropriate protocol prefix?
Comment