As I noted in my issue on securepages: http://drupal.org/node/964322

I had to edit the _securepages_prevent_hijack_cookie() to check for '1' and then it worked.

Thanks.

Comments

damienmckenna’s picture

Status: Active » Needs review
StatusFileSize
new886 bytes

Here's a quick patch.

Status: Needs review » Needs work

The last submitted patch, securepages_prevent_hijack-n964324.patch, failed testing.

grendzy’s picture

Status: Needs work » Closed (duplicate)

Hi, I've opened a new issue to centralize this discussion:
#1096744: Document support for proxies and non-standard web server configurations

In the meantime, details on how to configure non-standard servers for securepages can be found here:
http://www.metaltoad.com/blog/running-drupal-secure-pages-behind-proxy

BTW $_SERVER['HTTPS'] is set by Apache. If you know what specific conditions cause it to be "1" instead of "on" please let me know so I can add it to the docs.