[Date Prev][Date Next][Thread Prev][Thread Next][Interchange by date ][Interchange by thread ]

[ic] AlwaysSecure is not working

Subject: [ic] AlwaysSecure is not working
From: interchange-users@interchange.redhat.com (Andrew McBeath)
Date: Mon Feb 25 18:20:01 2002
References: <000601c1be30$530f3de0$020110ac@majestic.cursor-software.co.uk> <3C7A956B.EBFFD251@blackpoint.de> <3C7AB20A.9090502@zeald.com> <3C7ABE72.99D59AAE@blackpoint.de>

> 
> 
>>> 
>> Check out the ExtraSecure config directive...it allows only secure
>> access to pages marked by AlwaysSecure...
> 
> 
> Sure????
> 
> I'm logged in as an user, who is allowed to access the checkout page.
> After adding ExtraSecure into catalog.cfg, I get the violation page. Is
> that the right result?
> 
> Thanks!
> 
> Joachim
> 
[doco]
http://interchange.redhat.com/cgi-bin/ic/docfly.html?mv_arg=icconfig05.26

ExtraSecure
Disallows access to pages which are marked with AlwaysSecure unless the 
browser is in HTTPS mode.
A Yes/No directive, the default is 'No.'
  ExtraSecure  Yes
*** icconfig, ExtraSecure
[/doco]

I guess this implies a 404 as opposed to a 403? + redirect to 
https...wouldnt be too hard to hack up to redirect though... ;)

cheers,

Andrew

Follow-Ups:
- [ic] AlwaysSecure is not working
  - From: interchange-users@interchange.redhat.com (Joachim Leidinger)

References:
- [ic] AlwaysSecure is not working
  - From: interchange-users@interchange.redhat.com (Kevin Walsh)
- [ic] AlwaysSecure is not working
  - From: interchange-users@interchange.redhat.com (Joachim Leidinger)
- [ic] AlwaysSecure is not working
  - From: interchange-users@interchange.redhat.com (Andrew McBeath)
- [ic] AlwaysSecure is not working
  - From: interchange-users@interchange.redhat.com (Joachim Leidinger)

Prev by Date: [ic] AlwaysSecure is not working
Next by Date: [ic] AlwaysSecure is not working
Previous by thread: [ic] AlwaysSecure is not working
Next by thread: [ic] AlwaysSecure is not working
Index(es):
- Date
- Thread