Hi,
is there a way in Matrix to force logging in (into simple edit, admin interface, intranet page) through https ?
Cheers.
I used Apache mod_rewrite rules for this, to automatically rewrite any HTTP URL that has _edit or _admin in it to HTTPS. Works like a charm.
[quote]I used Apache mod_rewrite rules for this, to automatically rewrite any HTTP URL that has _edit or _admin in it to HTTPS. Works like a charm.
[right][post=“9319”]<{POST_SNAPBACK}>[/post][/right][/quote]
We’re trying to do things in a slightly different way now.
We have Squid in front of Matrix and Squid redirects any _admin and _edit to https.
Squid also terminates the https which means Matrix deals only in terms of http.
This is at the testing stage still. It seems to work ok, except for the fact that now the Asset map fails to load with a java.lang.NullPointerException. Did that ever occur with the Apache rewrite?
Any ideas?
Cheers.
Just in case someone is interested in this:
- Our Squid redirector was redirecting _admin when it was POSTed as well as when it was GETed.
We now changed it so that it would redirect only for GET.
Seems to work well now.
In all these solutions (https _admin) is there a way to avoid all those "Parts of this page are not encrypted, do you still want to continue…"?