From ebc5016cbbb344e1d84807b749e250bf4fafcbcb Mon Sep 17 00:00:00 2001
From: Edward <Edward@web>
Date: Fri, 27 Oct 2017 04:16:33 -0400
Subject: file bug

---
 doc/bugs/Login_should_redirect_to_secure_version_of_site.mdwn | 9 +++++++++
 1 file changed, 9 insertions(+)
 create mode 100644 doc/bugs/Login_should_redirect_to_secure_version_of_site.mdwn

(limited to 'doc/bugs/Login_should_redirect_to_secure_version_of_site.mdwn')

diff --git a/doc/bugs/Login_should_redirect_to_secure_version_of_site.mdwn b/doc/bugs/Login_should_redirect_to_secure_version_of_site.mdwn
new file mode 100644
index 000000000..7c2c501b7
--- /dev/null
+++ b/doc/bugs/Login_should_redirect_to_secure_version_of_site.mdwn
@@ -0,0 +1,9 @@
+Steps to reproduce:
+
+1. visit an ikiwki site like <http://ikiwiki.info/> or <http://git-annex.branchable.com/>
+2. trigger the login page by accessing preferences or trying to edit something
+3. login page is served without encryption
+
+Firefox gives all kinds of warnings for unencrypted login pages.
+
+The fix is for the login page to redirect to the https version of the wiki before showing the login form.
-- 
cgit v1.2.3