Menu links and insecure areas
Posted: Thu Oct 24, 2024 3:01 pm
Hello,
I went to access the dev.cmsmadesimple.org site to report an issue I've discovered with a module and I found that it apparently doesn't have an SSL cert associated with it?
On further investigation, the forum.cmsmadesimple.org link in the menu is not specified as https:// even though it has a valid cert. I can see it has a Let's encrpt cert. The menus seem to reflect the current state of the browser rather than defaulting to the secure links.
Surely for any modern site the links should be automatically rewritten to use https?
I can see that the primary site SSL cert has wildcard entries for a number of country domains and the primary *.cmsmadesimple.org
Can this be applied to the dev area as well? The forum should probably also use that cert as it's covered anyway.
All the best,
Mark.
I went to access the dev.cmsmadesimple.org site to report an issue I've discovered with a module and I found that it apparently doesn't have an SSL cert associated with it?
On further investigation, the forum.cmsmadesimple.org link in the menu is not specified as https:// even though it has a valid cert. I can see it has a Let's encrpt cert. The menus seem to reflect the current state of the browser rather than defaulting to the secure links.
Surely for any modern site the links should be automatically rewritten to use https?
I can see that the primary site SSL cert has wildcard entries for a number of country domains and the primary *.cmsmadesimple.org
Can this be applied to the dev area as well? The forum should probably also use that cert as it's covered anyway.
All the best,
Mark.