[OpenID] Selectively Redirecting OpenID Traffic To HTTPS
Eddy Nigg (StartCom Ltd.)
eddy_nigg at startcom.org
Fri Jan 11 12:40:02 UTC 2008
Trevor Johns wrote:
> According to the OpenID spec, HTTPS identifiers are recommended over
> HTTP. Since the default scheme for a URL identifier is HTTP, the spec
> also recommends creating a redirect from the HTTP version of a URL to
> the HTTPS version of a URL when possible.
>
> While creating this redirect isn't itself a problem, I don't want to
> send visitors to the HTTPS version of my site unless necessary. Is
> there any way to selectively redirect OpenID traffic to HTTPS without
> affecting normal traffic?
>
>
This can be done from within the scripting pages (assuming PHP or
similar) or with some redirect rule which depends on your server
software somewhat. Which server software and scripting language are you
using?
--
Regards
Signer: Eddy Nigg, StartCom Ltd. <http://www.startcom.org>
Jabber: startcom at startcom.org <xmpp:startcom at startcom.org>
Blog: Join the Revolution! <http://blog.startcom.org>
Phone: +1.213.341.0390
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20080111/7567d0a4/attachment-0002.htm>
More information about the general
mailing list