If a user visits ?q=user and then tries to authenticate using form id=user-login, the url is not rewritten to https

I simply added another line to securelogin.module so that it looks like this:

function securelogin_form_alter($form_id, &$form) {

  if(   ($form_id == 'user_login_block' && variable_get('securelogin_loginform',    TRUE) == TRUE)
     || ($form_id == 'user_login'       && variable_get('securelogin_loginform',    TRUE) == TRUE)
     || ($form_id == 'user_edit'        && variable_get('securelogin_editform',     TRUE) == TRUE)
     || ($form_id == 'user_register'    && variable_get('securelogin_registerform', TRUE) == TRUE)
    )

It seems to work fine, but it could be improved.

Comments

avf’s picture

Status: Needs work » Closed (fixed)

You have an old version. This is fixed in the latest version.