[Zagro]

Hi, can you made the forum redirect http access to https?

Currently I can access http://forums.duke4.net/ and login with http. It is advisable that every page be redirect to https version by the web server.

This to improve security and avoid accesses (and especially users logins) with plain http. Also improve Google Ranking.

Thanks.

[TerminX]

Once you visit the site over HTTPS your browser will automatically redirect you to that version instead of the HTTP version via HSTS. We have no intention of turning off HTTP access to the forum.

[Zagro]

Thanks for the reply! HSTS is a very welcome addition indeed! But actually no need to turn off http, but, as I said, just add a http -> https redirect on the web server so that even the first access uses https. Here is how to do it on your web server (apache): https://wiki.apache....tpd/RedirectSSL

[TerminX]

You're missing the point that we want the forum to be accessible over HTTP, for users who cannot browse over HTTPS for some reason or another.

[Zagro]

Not sure which usercase is requiring http and not https, the Internet is moving to https and some features are disabled on http at every new browser release. But my point was also related to saving password in the browser, I didn't access the forum since awhile, and then noticed my password was not remembered. This is because I accessed in the past with a different protocol. This may also confuse some other users.
Thanks