Ok, in the app_controller, I've included my Security component and also added this little snippet of code for admin pages: if(isset($this->params['admin'])) : $this->Security->blackHoleCallback = 'forceSSL'; $this->Security->requireSecure(); endif;
That one's straight outta the book and as far as i can tell, working fine. I just add that here on the off chance I'm missing something. In my "carts" controller (for shopping carts) I want to be able to secure the checkout action, only. Hence I've set up this beforeFilter: function beforeFilter() { parent::beforeFilter(); $this->Security->requireSecure('checkout'); $this->Security->blackHoleCallback = 'forceSSL'; } The problem is that, when I do this, my add action (as in adding an item to the cart) is getting redirected per the forceSSL function (which also comes from the book, for reference). More confusing, when I simply strip the bottom two lines of my beforeFilter away (thus, I presume, eliminating the effects of the Security component), I get a 404 error on the action. Thanks for your time! -- Our newest site for the community: CakePHP Video Tutorials http://tv.cakephp.org Check out the new CakePHP Questions site http://ask.cakephp.org and help others with their CakePHP related questions. To unsubscribe from this group, send email to cake-php+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/cake-php