#20137 closed defect (bug) (fixed)
Security Warning when customizing a theme
Reported by: | mattrude | Owned by: | koopersmith |
---|---|---|---|
Milestone: | 3.4 | Priority: | normal |
Severity: | normal | Version: | 3.4 |
Component: | General | Keywords: | has-patch |
Focuses: | Cc: |
Description
When a site using https, when a user chooses 'customize theme' on the themes page (version 3.4-alpha-20032) a security warning is displayed stating that some content will not be display via a secure connection.
Looking deeper, the previewed theme dose not honor "define('FORCE_SSL_ADMIN', true);" and is out put via an insecure connection.
Attachments (1)
Change History (10)
#3
@
13 years ago
- Keywords has-patch added
20137.patch should work for links from get_permalink or wp_enqueue_script but not for hardcoded links.
Just a s/http/https/ could break things.
#4
in reply to:
↑ 2
@
13 years ago
- Cc matt@… added
Replying to ocean90:
And the current preview doesn't have a warning?
Correct, in 3.3.1, no error is displayed when previewing a theme under the same setup.
Note: See
TracTickets for help on using
tickets.
And the current preview doesn't have a warning?