The function: request.requires_https()
might be what you're looking for. On Wednesday, January 30, 2013 2:46:08 PM UTC, Annet wrote: > > I the past I hosted a web2py application at Webfaction. I had a dedicated > IP address, and added: > > domains: mydomain.com, www.mydomain.com and admin.mydomain.com > application: web2py > websites: a normal and an encrypted website. > > and added domains mydomain.com and www.domain.com and application web2py > to the normal website > and domain admin.mydomain.com and application web2py to the encrypted > website. > > For some reason this was sufficient to access my application and access > appadmin, I didn't have to add > any additional code. > > Today I posted the following question: > > > I am developing a web application in web2py, the controllers follow the > pattern: > addressbook/cmsaddressbook > about/cms/about > calendar/cmscalendar > I know I can create a secure website, however, I don't want the entire > site to be secure, > just cmsaddressbook, cmsabout and cmscalendar. Is that possible? > > > I got the following reply: > > > Yes, this can be done by redirecting to HTTPS in your application for the > needed URLs. > To do so, your application must still have an HTTPS version with an HTTPS > website record, > and you'll need an SSL certificate installed. > > Once that's done, you can redirect to HTTPS for certain URLs based on > context. This would > be similar to the following: > http://community.webfaction.com/questions/3211/apache-conf-http-and-https > In short, your application can use the value of the > %{HTTP:X-Forwarded-SSL} HTTP variable to > determine if the user arrived via HTTP or HTTPS, and then redirect to > HTTPS for only the pages you > want to use HTTPS for. > > > I think I do understand the first part of this reply, but I have no idea > how the second part is related to > web2py's features. How does appadmin make me arrive via https? > > > Kind regards, > > Annet. > > -- --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to web2py+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.