SSL for login
Hi
I'm using a blackbox login service which queries a web service over SSL - that's working fine. I'd like to now add SSL support for the login pages in HelpSpot to prevent authentication taking place in plain text, but I want the rest of the site to be delivered over regular (non-secure) http for performance.
Any pointers?
James
I'm using a blackbox login service which queries a web service over SSL - that's working fine. I'd like to now add SSL support for the login pages in HelpSpot to prevent authentication taking place in plain text, but I want the rest of the site to be delivered over regular (non-secure) http for performance.
Any pointers?
James
James
| 
Hi James,
There's not a built in way to do that, generally it's all or nothing on SSL. However, I suppose it may be possible to add some logic in config.php where the cHOST variable is set to an HTTPS URL for certain GET parameters (pg=login) and not for any others.
You should not attempt to run the entire admin over SSL but not the portal as that will not work properly, emails will have the wrong URL, etc. However, for just login I think that would work.
There's not a built in way to do that, generally it's all or nothing on SSL. However, I suppose it may be possible to add some logic in config.php where the cHOST variable is set to an HTTPS URL for certain GET parameters (pg=login) and not for any others.
You should not attempt to run the entire admin over SSL but not the portal as that will not work properly, emails will have the wrong URL, etc. However, for just login I think that would work.
Ian Landsman
|
And I suppose you could hack it up with redirect rules in Apache if you were feeling frisky too. :-)
John P. Speno
|