Loading...

XML

Word

Printable

Type: Suggestion
Resolution: Answered
Fix Version/s: None
Component/s: None
Labels:
None

Feedback Policy:

We collect Jira feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

Often one wants some pages (eg. login page) to be protected via HTTPS, but then revert to plain HTTP for most pages, to avoid killing the server. The process of requiring HTTPS for some pages is described at:

http://confluence.atlassian.com/display/JIRA/Running+JIRA+over+SSL+or+HTTPS

however there doesn't seem to be a clean declarative way to force access of non-protected pages to revert to HTTP.

is related to

JRASERVER-15122 Encrypt passwords sent from login portlet/page to server.

Closed

CONFSERVER-4116 Support SSL for login and optional SSL for remainder of application

Closed

JRASERVER-8974 Restrict cookie-based login to SSL users

Closed

Assignee:: Unassigned

Reporter:: Jeff Turner

Votes:: 4 Vote for this issue

Watchers:: 11 Start watching this issue

Created:: 07/Jul/2005 8:07 AM

Updated:: 19/Sep/2019 6:03 AM

Resolved:: 24/May/2006 6:09 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates