ARGH!
Is
vendor/plugins/ssl_requirement/lib/ssl_requirement.rb
private
def ensure_proper_protocol
return true if SslRequirement.disable_ssl_check?
return true if ssl_allowed?
if ssl_required? && !request.ssl?
redirect_to "https://"; + (ssl_host || request.host) +
request.request_uri
flash.keep
return false
elsif request.ssl? && !ssl_required?
redirect_to "http://"; + request.host + request.request_uri
flash.keep
return false
end
end
doing what I think it does?
i.e. exactly what is driving me nuts, redirecting everything to http _unless
it's explicitly required_? Is there any rationale for this? I understand the
first part of the branch, but the elsif seems very, very - erm - evil to me
and I cannot figure out what the idea behind it might be.
Am I on the right track here? Can I remove that safely? Is this intended
behavior for someone with some ruby/rails experience (i.e. wiser than me)?
--
To post to this group, send email to gitorious@googlegroups.com
To unsubscribe from this group, send email to
gitorious+unsubscr...@googlegroups.com
