[wp-trac] [WordPress Trac] #34783: SSL detection not reliable, as such mixed content and thus trouble
WordPress Trac
noreply at wordpress.org
Tue Nov 24 22:24:25 UTC 2015
#34783: SSL detection not reliable, as such mixed content and thus trouble
--------------------------+-----------------------------
Reporter: xSWATx | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version: 4.3.1
Severity: normal | Keywords:
Focuses: |
--------------------------+-----------------------------
Scenario: Wordpress server is located on a HTTP server, SSL is added on
the edge servers of the network. This means HTTP is being used internally
and HTTPS is being used externally.
Result: As such the SSL detection (is_ssl) fails horribly and in turn,
when SSL is enabled, you get mixed content webpages. These look broken
since they're missing a lot of content (HTTP vs HTTPS).
My terrible workaround: force is_ssl to always return true AND regular
expressions to forcefully rewrite remaining URLs from http to https, since
my site is HTTPS only (no HTTP). Of course this is not upgrade safe.
Possible fixes: fix SSL detection in all of Wordpress and/or have a
general "force SSL" configuration option.
This issue has been in Wordpress a while (at least since 4.1) and I want
to get it properly fixed.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/34783>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list