How is pushing users into and out of SSL traditionally handled in cakephp 1.1? I'm working on someone else's codebase (thus, 1.1) -- a shop with no provision for SSL routing written in. I found, modified, and used a component to force actions into and out of SSL. It seems a slightly imperfect in my mind because, currently, a link that will land you on an SSL encrypted page from an unencrypted one doesn't indicate SSL (so the link is '/login/', and if you're on 80, you get pushed into 433 -- this would happen to break a post submission, but that shouldn't be an issue, because who'd want to submit from 80 to 433 anyway?). Anyway, I was considering something like a wrapper around the HTML helper so that $html->link() could be told to write as SSLon or somesuch. My thinking is that handling this with both accurately written links and server-side enforcement would be the best way to go, but I haven't actually seen something like that done, so I thought I'd solicit some feedback...
thoughts? Matt --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---
