Version Description
- Changed the way in which HTTPS was detected to be more reliable.
=
Download this release
Release Info
| Developer | Mvied |
| Plugin |  WordPress HTTPS (SSL) |
| Version | 0.2 |
| Comparing to | |
| See all releases | |
Code changes from version 0.1 to 0.2
- readme.txt +30 -1
- wordpress-https.php +2 -2
readme.txt
CHANGED
|
@@ -11,6 +11,8 @@ This plugin ensures that all elements on a page are accessed through HTTPS if th
|
|
| 11 |
|
| 12 |
This plugin ensures that all elements on a page are accessed through HTTPS if the page is being accessed via HTTPS.
|
| 13 |
|
|
|
|
|
|
|
| 14 |
Unlike the [HTTPS for Wordpress](http://wordpress.org/extend/plugins/https-for-wordpress/ "HTTPS for Wordpress") plugin, elements will be loaded with HTTPS regardless of how the plugin author added the elements to the page.
|
| 15 |
|
| 16 |
== Installation ==
|
|
@@ -18,7 +20,34 @@ Unlike the [HTTPS for Wordpress](http://wordpress.org/extend/plugins/https-for-w
|
|
| 18 |
1. Upload `wordpress-https.php` to the `/wp-content/plugins/` directory
|
| 19 |
1. Activate the plugin through the 'Plugins' menu in WordPress.
|
| 20 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 21 |
== Changelog ==
|
| 22 |
|
| 23 |
= 0.1 =
|
| 24 |
-
* Initial Release
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 11 |
|
| 12 |
This plugin ensures that all elements on a page are accessed through HTTPS if the page is being accessed via HTTPS.
|
| 13 |
|
| 14 |
+
Sometimes when a page is loaded via HTTPS, the elements on that page (images, scripts, and stylesheets) may not also be loaded via HTTPS. Some, but not all, plugins check for HTTPS when adding the extra scripts and stylesheets to your pages. The ones that do not will cause the page to be loaded insecurely. This is due to the way in which the plugin developer adds the elements to your pages.
|
| 15 |
+
|
| 16 |
Unlike the [HTTPS for Wordpress](http://wordpress.org/extend/plugins/https-for-wordpress/ "HTTPS for Wordpress") plugin, elements will be loaded with HTTPS regardless of how the plugin author added the elements to the page.
|
| 17 |
|
| 18 |
== Installation ==
|
| 20 |
1. Upload `wordpress-https.php` to the `/wp-content/plugins/` directory
|
| 21 |
1. Activate the plugin through the 'Plugins' menu in WordPress.
|
| 22 |
|
| 23 |
+
== Frequently Asked Questions ==
|
| 24 |
+
|
| 25 |
+
= What exactly does this plugin do? =
|
| 26 |
+
|
| 27 |
+
Sometimes when a page is loaded via HTTPS, the elements on that page (images, scripts, and stylesheets) may not also be loaded via HTTPS. This plugin ensures that that happens.
|
| 28 |
+
|
| 29 |
+
= Why does this happen anyways? =
|
| 30 |
+
|
| 31 |
+
Some, but not all, plugins check for HTTPS when adding the extra scripts and stylesheets to your pages. The ones that do not will cause the page to be loaded insecurely. This is due to the way in which the plugin developer adds the elements to your pages.
|
| 32 |
+
|
| 33 |
+
= Shouldn't the developer fix this issue? =
|
| 34 |
+
|
| 35 |
+
Yes, but some are not aware of this bug, and far too many plugin developers make this mistake.
|
| 36 |
+
|
| 37 |
+
= Does the plugin do anything else? =
|
| 38 |
+
|
| 39 |
+
Yes, actually! When WordPress loads a page via HTTPS, it does not go back through posts and pages to ensure that images within are loaded via HTTPS. This is mostly due to images being hard-coded with the full non-HTTPS path to your WordPress installation. This plugin will take care of all insecure images and change them to be loaded over HTTPS.
|
| 40 |
+
|
| 41 |
+
An answer to that question.
|
| 42 |
+
|
| 43 |
== Changelog ==
|
| 44 |
|
| 45 |
= 0.1 =
|
| 46 |
+
* Initial Release.
|
| 47 |
+
= 0.2 =
|
| 48 |
+
* Changed the way in which HTTPS was detected to be more reliable.
|
| 49 |
+
|
| 50 |
+
== Upgrade Notice ==
|
| 51 |
+
|
| 52 |
+
= 0.2 =
|
| 53 |
+
Version 0.1 did not correctly detect HTTPS on IIS and possibly other servers. Please update to version 0.2 to fix this issue.
|
wordpress-https.php
CHANGED
|
@@ -4,7 +4,7 @@ Plugin Name: WordPress HTTPS
|
|
| 4 |
Plugin URI: http://mvied.com/projects/wordpress-https/
|
| 5 |
Description: This plugin ensures that all elements on a page are accessed through HTTPS if the page is being accessed via HTTPS. Inspired by <a href="http://wordpress.org/extend/plugins/https-for-wordpress/">HTTPS for Wordpress</a>.
|
| 6 |
Author: Mike Ems
|
| 7 |
-
Version: 0.
|
| 8 |
Author URI: http://mvied.com/
|
| 9 |
*/
|
| 10 |
|
|
@@ -27,7 +27,7 @@ Author URI: http://mvied.com/
|
|
| 27 |
|
| 28 |
function wphttps_process($buffer) {
|
| 29 |
// Only rewrite URLs if the page is currently HTTPS.
|
| 30 |
-
if($_SERVER[
|
| 31 |
// If HTTPS is active on a page, siteurl will return a https URL.
|
| 32 |
// We need the url without https so that we can find it and replace
|
| 33 |
// it within the source of the page.
|
| 4 |
Plugin URI: http://mvied.com/projects/wordpress-https/
|
| 5 |
Description: This plugin ensures that all elements on a page are accessed through HTTPS if the page is being accessed via HTTPS. Inspired by <a href="http://wordpress.org/extend/plugins/https-for-wordpress/">HTTPS for Wordpress</a>.
|
| 6 |
Author: Mike Ems
|
| 7 |
+
Version: 0.2
|
| 8 |
Author URI: http://mvied.com/
|
| 9 |
*/
|
| 10 |
|
| 27 |
|
| 28 |
function wphttps_process($buffer) {
|
| 29 |
// Only rewrite URLs if the page is currently HTTPS.
|
| 30 |
+
if(!empty($_SERVER['HTTPS']) || $_SERVER['SERVER_PORT'] == 443) {
|
| 31 |
// If HTTPS is active on a page, siteurl will return a https URL.
|
| 32 |
// We need the url without https so that we can find it and replace
|
| 33 |
// it within the source of the page.
|
