Ticket #13293 (reopened Bug)

Opened 3 years ago

Last modified 3 years ago

Login process wonky on plone.org

Reported by: neaj Owned by: plone-website@…
Priority: minor Milestone:
Component: Website Version:
Keywords: Cc:

Description (last modified by eleddy) (diff)

  1. Go to  http://plone.org/documentation/faq/suppress-byline as anonymous.
  2. Click on "Log in", this goes to  http://plone.org/login <-- no HTTPS
  3. Fill in credentials and submit. This goes to  https://plone.org/login_form

Change History

comment:1 Changed 3 years ago by neaj

  • Owner set to plone-website@…
  • Component changed from Unknown to Website

comment:2 Changed 3 years ago by kleist

  • Status changed from new to confirmed
  • Version 4.2 deleted
  • Milestone 4.x deleted

comment:3 Changed 3 years ago by eleddy

the issue of not getting back to original content will likely not get fixed because its a core plone issue and could potentially go away with the CMF migration- removing from the description.

comment:4 Changed 3 years ago by eleddy

  • Description modified (diff)

comment:5 Changed 3 years ago by neaj

  • Status changed from confirmed to closed
  • Resolution set to fixed

All is working now!

comment:6 Changed 3 years ago by neaj

  • Status changed from closed to reopened
  • Resolution fixed deleted

It's back!

Going to a non-public URL shows a login form. Fill in username & password, submit. This shows another login form, this time at  https://plone.org/login_form Fill in username & password, submit again, see a "logged in" page that links to the homepage. To get to the original URL, start again from the original URL.

comment:7 Changed 3 years ago by aclark

Maybe you can fix it with a redirect here and send a pull request:  https://github.com/plone/plone-org-nginx

I.e. don't allow any non-https logins ever

Note: See TracTickets for help on using tickets.