Actions
Defect #40490
openlogin page back_url always use http not https
Start date:
Due date:
% Done:
0%
Estimated time:
Resolution:
Affected version:
Description
I hava a Redmine 5.1.2.stable executed in container, and I use Apache HTTPD to proxy https to http port 3000. Evertyhing is working perfect, but my webpage is scaned by system and get a "Site does not enforce HTTPS" issue.
It says my login URL's back_url is http, not https. But all my service is running in https URL. How can I solve this issue to be
https://redmine.XXX.com/login?back_url=https%3A%2F%2Fredmine.XXX.com%2F
not
https://redmine.XXX.com/login?back_url=http%3A%2F%2Fredmine.XXX.com%2F
Updated by Marius BÄ‚LTEANU about 1 month ago
- Status changed from New to Needs feedback
- Assignee set to Bill Hsu
Actions