This is an archived snapshot of W3C's public bugzilla bug tracker, decommissioned in April 2019. Please see the home page for more details.

Bug 19534 - SSL Certificate wanted for signup/login
Summary: SSL Certificate wanted for signup/login
Status: RESOLVED WONTFIX
Alias: None
Product: webplatform.org
Classification: Unclassified
Component: infrastructure (show other bugs)
Version: unspecified
Hardware: All All
: P2 enhancement
Target Milestone: ---
Assignee: Doug Schepers
QA Contact: public-webplatform-bugs list
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2012-10-14 23:15 UTC by Jonathan Garbee
Modified: 2012-10-31 20:47 UTC (History)
2 users (show)

See Also:

Attachments

Description Jonathan Garbee 2012-10-14 23:15:05 UTC 
Some interest has been made to want an SSL certificate on the Signup page.  This would most likely also be wanted for logins as well.


REF:  http://talk.webplatform.org/forums/index.php/31/ssl-on-signup
Comment 1 Ryan Lane 2012-10-15 17:16:11 UTC 
Realistically, we need to be https only if we want this to work. It's really difficult supporting both http and https. All applications would need protocol-relative urls, etc. If we pass everything through fastly we can have them add the certificate. We'll also need a cert for https://webplatform.org/.
Comment 2 Jonathan Garbee 2012-10-31 20:39:51 UTC 
So is it worth moving to HTTPS only?  I personally don't think so.
Comment 3 Jonathan Garbee 2012-10-31 20:40:20 UTC 
Sorry, switched status and forgot to switch back to new.
Comment 4 Ryan Lane 2012-10-31 20:45:26 UTC 
Either we do https only or we don't support https. It's incredibly difficult supporting both modes properly. MediaWiki can handle it thanks to Roan and I's work last year for implementing it on wikipedia, but wordpress definitely can't handle it. I'm betting most of our other software can't either.
Comment 5 Jonathan Garbee 2012-10-31 20:47:47 UTC 
Then I will mark as WONTFIX due to technical issues.  If HTTPS support is *really* an issue then we can re-assess later.