Version Description
- Fixed a bug that would prevent stylesheets from being fixed if the rel attribute came after the href attribute. Bug could have also caused errors with other tags.
Download this release
Release Info
| Developer | Mvied |
| Plugin |  WordPress HTTPS (SSL) |
| Version | 1.5.2 |
| Comparing to | |
| See all releases | |
Code changes from version 1.5.1 to 1.5.2
- readme.txt +7 -3
- wordpress-https.php +3 -3
readme.txt
CHANGED
|
@@ -4,19 +4,19 @@ Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_i
|
|
| 4 |
Tags: encrypted, ssl, http, https
|
| 5 |
Requires at least: 2.7.0
|
| 6 |
Tested up to: 3.0.1
|
| 7 |
-
Stable tag: 1.5.
|
| 8 |
|
| 9 |
Features: Force HTTPS on only certain pages. Fix partially encrypted errors. Disable WordPress from changing links to HTTPS. And more!
|
| 10 |
|
| 11 |
== Description ==
|
| 12 |
|
| 13 |
-
This plugin
|
| 14 |
|
| 15 |
<ul>
|
| 16 |
<li>Change all internal scripts, stylesheets and images to HTTPS if the page is being viewed via HTTPS to prevent partially encrypted errors.</li>
|
| 17 |
<li>Force HTTPS on only the pages you need to be HTTPS.</li>
|
| 18 |
<li>Force pages to HTTP that have not been forced to HTTPS.</li>
|
| 19 |
-
<li>Change external elements to HTTPS. The plugin will check for the existence of external elements over
|
| 20 |
<li>Override the external element HTTPS check. If you know that all external elements can be loaded over HTTPS, this option will save some load time on your pages.</li>
|
| 21 |
<li>Disable WordPress 3.0+ from changing all of your page, category and post links to HTTPS.</li>
|
| 22 |
</ul>
|
|
@@ -24,6 +24,7 @@ This plugin in intended to be an all-in-one solution to using SSL on WordPress s
|
|
| 24 |
There are a few things that can cause a page to still be loaded insecurely after enabling this plugin.
|
| 25 |
<ul>
|
| 26 |
<li>YouTube videos - YouTube does not allow videos to be streamed over HTTPS.</li>
|
|
|
|
| 27 |
<li>External elements that can not be delivered over HTTPS - I would suggest removing these or hosting them on your own server.</li>
|
| 28 |
</ul>
|
| 29 |
|
|
@@ -53,6 +54,7 @@ As of version 1.5, this plugin grants that ability. Within the Publish box on th
|
|
| 53 |
In most cases, yes. There are limitations to what this plugin can fix. Here are a few that I've run into:
|
| 54 |
<ul>
|
| 55 |
<li>YouTube videos - YouTube does not allow videos to be streamed over HTTPS.</li>
|
|
|
|
| 56 |
<li>External elements that can not be delivered over HTTPS - I would suggest removing these or hosting them on your own server.</li>
|
| 57 |
</ul>
|
| 58 |
|
|
@@ -62,6 +64,8 @@ In most cases, yes. There are limitations to what this plugin can fix. Here are
|
|
| 62 |
|
| 63 |
== Changelog ==
|
| 64 |
|
|
|
|
|
|
|
| 65 |
= 1.5.1 =
|
| 66 |
* Added input elements with the type of 'image' to be filtered for insecure content.
|
| 67 |
= 1.5 =
|
| 4 |
Tags: encrypted, ssl, http, https
|
| 5 |
Requires at least: 2.7.0
|
| 6 |
Tested up to: 3.0.1
|
| 7 |
+
Stable tag: 1.5.2
|
| 8 |
|
| 9 |
Features: Force HTTPS on only certain pages. Fix partially encrypted errors. Disable WordPress from changing links to HTTPS. And more!
|
| 10 |
|
| 11 |
== Description ==
|
| 12 |
|
| 13 |
+
This plugin is intended to be an all-in-one solution to using SSL on WordPress sites. Here are the currently available features:
|
| 14 |
|
| 15 |
<ul>
|
| 16 |
<li>Change all internal scripts, stylesheets and images to HTTPS if the page is being viewed via HTTPS to prevent partially encrypted errors.</li>
|
| 17 |
<li>Force HTTPS on only the pages you need to be HTTPS.</li>
|
| 18 |
<li>Force pages to HTTP that have not been forced to HTTPS.</li>
|
| 19 |
+
<li>Change external elements to HTTPS. The plugin will check for the existence of external elements over HTTPS and, if available, will change them to HTTPS.</li>
|
| 20 |
<li>Override the external element HTTPS check. If you know that all external elements can be loaded over HTTPS, this option will save some load time on your pages.</li>
|
| 21 |
<li>Disable WordPress 3.0+ from changing all of your page, category and post links to HTTPS.</li>
|
| 22 |
</ul>
|
| 24 |
There are a few things that can cause a page to still be loaded insecurely after enabling this plugin.
|
| 25 |
<ul>
|
| 26 |
<li>YouTube videos - YouTube does not allow videos to be streamed over HTTPS.</li>
|
| 27 |
+
<li>Google Maps - Loading Google maps over HTTPS requires a Google Maps API Premiere account. (<a href="http://code.google.com/apis/maps/faq.html#ssl">source</a>)</li>
|
| 28 |
<li>External elements that can not be delivered over HTTPS - I would suggest removing these or hosting them on your own server.</li>
|
| 29 |
</ul>
|
| 30 |
|
| 54 |
In most cases, yes. There are limitations to what this plugin can fix. Here are a few that I've run into:
|
| 55 |
<ul>
|
| 56 |
<li>YouTube videos - YouTube does not allow videos to be streamed over HTTPS.</li>
|
| 57 |
+
<li>Google Maps - Loading Google maps over HTTPS requires a Google Maps API Premiere account. (<a href="http://code.google.com/apis/maps/faq.html#ssl">source</a>)</li>
|
| 58 |
<li>External elements that can not be delivered over HTTPS - I would suggest removing these or hosting them on your own server.</li>
|
| 59 |
</ul>
|
| 60 |
|
| 64 |
|
| 65 |
== Changelog ==
|
| 66 |
|
| 67 |
+
= 1.5.2 =
|
| 68 |
+
* Fixed a bug that would prevent stylesheets from being fixed if the rel attribute came after the href attribute. Bug could have also caused errors with other tags.
|
| 69 |
= 1.5.1 =
|
| 70 |
* Added input elements with the type of 'image' to be filtered for insecure content.
|
| 71 |
= 1.5 =
|
wordpress-https.php
CHANGED
|
@@ -4,7 +4,7 @@ Plugin Name: WordPress HTTPS
|
|
| 4 |
Plugin URI: http://mvied.com/projects/wordpress-https/
|
| 5 |
Description: Prevents HTTPS pages from loading non-HTTPS elements. Also gives the option to disable WordPress 3.0+ from changing links to HTTPS.
|
| 6 |
Author: Mike Ems
|
| 7 |
-
Version: 1.5.
|
| 8 |
Author URI: http://mvied.com/
|
| 9 |
*/
|
| 10 |
|
|
@@ -273,7 +273,7 @@ if ( !class_exists('WordPressHTTPS') ) {
|
|
| 273 |
*/
|
| 274 |
function redirect() {
|
| 275 |
global $post;
|
| 276 |
-
if (is_single() || is_page()
|
| 277 |
if ( $_SERVER['SERVER_PORT'] != 443 ) {
|
| 278 |
$forceSSL = get_post_meta($post->ID, 'force_ssl');
|
| 279 |
if ($forceSSL) {
|
|
@@ -305,7 +305,7 @@ if ( !class_exists('WordPressHTTPS') ) {
|
|
| 305 |
}
|
| 306 |
$httpUrl = $this->replace_https($httpsUrl);
|
| 307 |
|
| 308 |
-
preg_match_all('/\<(script|link|img|input)
|
| 309 |
for ($i = 0; $i<=sizeof($matches[0]); $i++) {
|
| 310 |
$html = $matches[0][$i];
|
| 311 |
$type = $matches[1][$i];
|
| 4 |
Plugin URI: http://mvied.com/projects/wordpress-https/
|
| 5 |
Description: Prevents HTTPS pages from loading non-HTTPS elements. Also gives the option to disable WordPress 3.0+ from changing links to HTTPS.
|
| 6 |
Author: Mike Ems
|
| 7 |
+
Version: 1.5.2
|
| 8 |
Author URI: http://mvied.com/
|
| 9 |
*/
|
| 10 |
|
| 273 |
*/
|
| 274 |
function redirect() {
|
| 275 |
global $post;
|
| 276 |
+
if ( is_single() || is_page() ) {
|
| 277 |
if ( $_SERVER['SERVER_PORT'] != 443 ) {
|
| 278 |
$forceSSL = get_post_meta($post->ID, 'force_ssl');
|
| 279 |
if ($forceSSL) {
|
| 305 |
}
|
| 306 |
$httpUrl = $this->replace_https($httpsUrl);
|
| 307 |
|
| 308 |
+
preg_match_all('/\<(script|link|img|input)[^>]+(http:\/\/[\/-\w\.]+)[^>]+>/im',$buffer,$matches);
|
| 309 |
for ($i = 0; $i<=sizeof($matches[0]); $i++) {
|
| 310 |
$html = $matches[0][$i];
|
| 311 |
$type = $matches[1][$i];
|
