New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Setting force_ssl_login breaks overlay on non SSL Sites #3691
Comments
force_ssl_login should only redirect the login screen. are you sure you are using this config only? pls post your config.ini.php |
Attachment: Configuration file |
Matt, thank you for taking time to respond to this ticket. I've created an attachment with my config.ini.php |
I've got the same behavior. My proposal is to save the compelete "URLs" like "http://myside.com" or when used HTTPS then "https://myside.com" in the "configuration -> websides" configuration page. The "OverlayPage" should use precise this URL. So it is possible to use HTTP or HTTPS in the OverlayPage URL in the way the web side is accessable without dependence of accessing the PIWIK web side. Best regards! |
I dont actually see as a bug that we stay on SSL... |
well, then I would characterize the force_ssl_login option at least as "unclear" in what it does. I would expect that it just forces the login screen to be in a ssl connection, whereas
This should be worth at least a comment or explanation in the documentation |
Actually there is already a bug report which I just found: #4001 |
I'm using the force_ssl_login option to force the login screen to use SSL. Now I want to use the new overlay feature and am confronted with a message that "The Page Overlay session couldn't be launched yet."
From the faq I see that this happens because piwik uses SSL and the overlayed site does not support it. I tried to change the URL in my browser from https://mypiwikhost/xxxx to simple http, but this redirects again to the https version because of this force_ssl_login option. When I disable the force_ssl_login option, I see the overlay with no problems.
So the issue is that with the force_ssl_login option I can't use the overlay function on non SSL Sites. It seems that not only the login screen but all the piwik actions are redirected to SSL.
Keywords: overlay force_ssl_login
The text was updated successfully, but these errors were encountered: