This repository has been archived by the owner on Jul 24, 2021. It is now read-only.
editing with p2 or iD should not switch to a unsecured connection without asking #5128
Assignees
Comments
|
Author: TomH There's no way I'm going to waste time implementing this when we will get rid of the redirect as soon as the next release of iD happens - the current situation is just a temporary measure for a few weeks. |
|
Author: aseerel4c26 Thanks for your comment, Tom! Okay, fine then. If it would be quick, a simple mitigation would be not to show https links for the edit button links. Then it would be clear (at least the user has a chance) that the editing will not he via https. Currently the shown link is https. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Reporter: aseerel4c26
[Submitted to the original trac issue database at 10.10pm, Friday, 21st February 2014]
currently when clicking to edit with p2 or iD it is switched to a unsecure connection without asking. This potentially leaks information which was intended to be protected.
Should be: stay on secure. If that is not possible ask the user what to do.
The text was updated successfully, but these errors were encountered: