Forum
Users able to log in via HTTP
Hi,
As the title of my post states, users can log in via HTTP, when my site is supposedly HTTPS so I was wondering if there may be any general security tips available at all.
Cheers
Hi,
As the title of my post states, users can log in via HTTP, when my site is supposedly HTTPS so I was wondering if there may be any general security tips available at all.
Cheers
That's something you'd configure on your web server, not really anything to do with the CMS.
Best step would be to talk to your host.
General tip would be to force rerouting from http to https on all requests. Can usually be done either at settings at your domain host, or by htaccess rules.