[wp-trac] [WordPress Trac] #42833: Wordpress forces non-ssl login in described circumstance even though FORCE_SSL_ADMIN is set in wp-config
WordPress Trac
noreply at wordpress.org
Thu Dec 7 19:32:41 UTC 2017
#42833: Wordpress forces non-ssl login in described circumstance even though
FORCE_SSL_ADMIN is set in wp-config
----------------------------+-----------------------------
Reporter: geomouchet | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Administration | Version: 4.9.1
Severity: normal | Keywords:
Focuses: |
----------------------------+-----------------------------
Wordpress provides an http login page in this circumstance:
1. Put the following in wp-config.php: define('FORCE_SSL_ADMIN', true);
2. Log into your Wordpress site via wp-login.php with an admin login.
3. Click Visit Site (home icon) at the top of the page.
4. Open a new brower tab.
5. Log into your Wordpress site in the new tab via wp-login.php.
6. Go back to previous tab.
7. Click on Edit Page.
It then displays the login box with http instead of https. (Ideally it
would not require a new login at all, but instead would use the session
from the new tab.)
--
Ticket URL: <https://core.trac.wordpress.org/ticket/42833>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list