[wp-trac] [WordPress Trac] #37454: get_avatar_data() delivers different url for scheme=https and is_ssl()

WordPress Trac noreply at wordpress.org
Wed Feb 15 07:56:47 UTC 2017


#37454: get_avatar_data() delivers different url for scheme=https and is_ssl()
----------------------------------------+------------------------------
 Reporter:  neoxx                       |       Owner:
     Type:  defect (bug)                |      Status:  new
 Priority:  normal                      |   Milestone:  Awaiting Review
Component:  Users                       |     Version:  4.3
 Severity:  normal                      |  Resolution:
 Keywords:  has-patch needs-unit-tests  |     Focuses:
----------------------------------------+------------------------------

Comment (by sippis):

 This is a quite small change but really important from my point of view.
 Just noticed that Freedome (privacy VPN from f-secure) blocks requests to
 gravatar when using http. Haven't tested other privacy products like
 privacy badger, but I can image that some other tools are also blocking
 unsecure gravatar.

 I think there's really no reason why we shouldn't use always
 secure.gravatar.com.

--
Ticket URL: <https://core.trac.wordpress.org/ticket/37454#comment:5>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list