Closed (won't fix)
Project:
Secure Login
Version:
7.x-1.x-dev
Component:
Code
Priority:
Normal
Category:
Feature request
Assigned:
Unassigned
Reporter:
Created:
23 Aug 2011 at 12:11 UTC
Updated:
8 Jan 2016 at 22:14 UTC
Jump to comment: Most recent, Most recent file
Comments
Comment #0.0
Web Assistant commentedspelling mistake
Comment #1
mfbThis would require you to create a small module, maybe called something like Insecure Logout :)
There's a number of different ways you could do this... you could implement implement hook_drupal_goto_alter() and set $options['https'] = FALSE when path == '' and user is anonymous, or implement hook_user_logout() and destroy the session and then redirect where ever you want, or implement hook_menu_alter() and override user_logout with your own custom page callback function for user/logout.
Comment #2
Web Assistant commentedBrilliant, thanks for the reply. I'll give them all a try, but using hook_user_logout() sounds good to me.
Comment #3
bancarddata commentedWeb Assistant, if you don't mind posting what you come up with, I wouldn't mind hearing about it!
Comment #5
starbucksguy commentedI would like the same functionality, logging out to http. I don't know if I have the technical capabilities to write a module. Any further guidance on this issue would be great.
Comment #6
Web Assistant commentedI completely forgot about this. I've just created a module with the advice from mfb and it seems to work just fine. Please find the module attached.
Comment #7
bancarddata commentedThanks Web Assistant - that little solution works great.
Comment #8
Mreffie commentedSorry if this is a silly question but i am not familiar with this extension of file - how will i go about installing this module
Thanks
Comment #9
bancarddata commentedgz is gzip compression and tar is an archiving program. The 2 combined is similar to a zip file (many files to one file, then compressed to smaller size). This is the standard for linux, but zip is typically used on the Windows side. Many zip file handlers for Windows will also support tar and gzip. 7-zip is a free one.
Comment #10
wxman commentedI just tried this and it worked perfectly. Thanks. I was trying to get the same results using rules.
Comment #11
mfbMarking this as fixed as there is a simple module attached which apparently works well. I personally think it's good to encourage ubiquitous use of HTTPS so don't see a strong need to add the functionality to Secure Login module :)
Comment #13
SilviuChingaru commentedThe functionality of attached module should be implemented in core as option, maybe not enabled by default but should be there. There is no need for another module with 2 function to make this option available.
For example we want our users to be redirected back on insecure to get a cached version of the page trough our varnish server and not to stress apache or nginx.
As a note we have the following setup:
- Varnish that checks for SESS|AUTHSSL cookie and if found redirects to nginx on https. Nginx is configured to serve any static content like images, css and so on from drupal root and pass php request to apache. Also if an image is not found nginx passes the request for that file to apache. Nginx is also configured to redirect back to insecure if there is no session cookie found in request.
Comment #13.0
SilviuChingaru commentedgrammer mistake this time
Comment #14
mfbI'd like to keep this module as simple as possible, so I'd suggest putting this functionality in a module that you contribute.
Comment #15
Adon Irani commentedThis is exactly what I wanted too -- logout to http for caching/load balancing
I quickly tried the contrib module Secure Login Logout, but it didn't actually work as planned (upon logout I was still https).
It's certainly not a major need, but it would be nice and clean to have.
Either way, THANK-YOU for this module. It's very helpful to me.