Closed (won't fix)
Project:
Secure Pages
Version:
5.x-1.7
Component:
Code
Priority:
Normal
Category:
Bug report
Assigned:
Unassigned
Reporter:
Created:
11 Sep 2007 at 20:22 UTC
Updated:
22 Aug 2011 at 21:20 UTC
Jump to comment: Most recent file
Comments
Comment #1
charliem commentedI am experiencing the same problem. As a work around I deselect "Switch back to http pages when there are no matches".
Comment #2
william haller commentedFor what it is worth, this is causing problems for other modules in doing the 5.2 to 5.3 upgrade. They hit this module upgrade after doing a mass enable and subsequent modules never get their updates run properly causing operational problems.
Comment #3
charliem commentedI've upgraded to 5.3 today and the problem still persist. I've tried to remove the module and install it again but to no avail. I am not sure if the problem is with the module or after the upgrade to 5.2.
Comment #4
william haller commentedThe module was working fine for us in 5.2. Everything else that we use - taken one at a time - made the 5.2 to 5.3 upgrade OK. The update to the latest Secure Pages is what caused the problems here. We had the switch back if no https page enabled in 5.2 and it was OK. It isn't a real deal breaker for us to lose that because our https mirrors our http so we never should have a page that is in one but not the other, but it could be an issue for some people.
Comment #5
jonli447 commentedOk, I fixed this issue, though I did not create a patch, sorry (because I actually modified the patch in other ways as well). Anyhow, this is what I did, and hopefully other's can follow.
First, find the line within function securepages_goto() that is:
header('Location: '. $url);Modify the if bound above, so that the code is:
Then, in function securepages_match(), modify the code within if ($ignore) { such that it reads:
Then, add this to your .htaccess file:
Again, sorry that it's not a patch. It's not a perfect fix, but what this effectively does is adds update.php to the ignore list (which cannot be done correctly through the modules administrative options), and allows update.php to be skipped when checking if the home page should be redirected.
If someone has a better method, or would like to put this together in a patch, that would great.
Comment #6
jonli447 commentedOh, I have not checked if my modifications will actually break the module if "return to http if match not found" is not selected. Also, it probably won't hurt to leave the update.php rewrite in your .htaccess file if "return to http ..." is not selected, but I have not checked for sure.
Comment #7
gordon commentedSecure Pages doesn't secure pages other than what is servered by index.php
Comment #8
agentrickardGranted, but it's implementation of hook_form_alter() seems to break update.php by failing to find a match and returning the user to the homepage.
Patch for simply checking we are using the right script.
Comment #9
grendzy commentedThe 5.x branch is no longer supported. If this issue is still present in a current version of Secure Pages, please update the issue summary, change the version field, and re-open the issue.