Forum

Thread tagged as: Question

Users able to log in via HTTP

Hi,

As the title of my post states, users can log in via HTTP, when my site is supposedly HTTPS so I was wondering if there may be any general security tips available at all.

Cheers

Garth Holmes

Garth Holmes 0 points

  • 3 years ago
Drew McLellan

Drew McLellan 2638 points
Perch Support

That's something you'd configure on your web server, not really anything to do with the CMS.

Best step would be to talk to your host.

General tip would be to force rerouting from http to https on all requests. Can usually be done either at settings at your domain host, or by htaccess rules.