Defect #40490: login page back_url always use http not https - Redmine

Actions

Copy link

Defect #40490

open

login page back_url always use http not https

Added by Bill Hsu 8 months ago. Updated 10 days ago.

Status:

Needs feedback

Priority:

Normal

Assignee:

Bill Hsu

Category:

Target version:

Start date:

Due date:

% Done:

Estimated time:

Resolution:

Affected version:

Description

I hava a Redmine 5.1.2.stable executed in container, and I use Apache HTTPD to proxy https to http port 3000. Evertyhing is working perfect, but my webpage is scaned by system and get a "Site does not enforce HTTPS" issue.
It says my login URL's back_url is http, not https. But all my service is running in https URL. How can I solve this issue to be

https://redmine.XXX.com/login?back_url=https%3A%2F%2Fredmine.XXX.com%2F

not

https://redmine.XXX.com/login?back_url=http%3A%2F%2Fredmine.XXX.com%2F