Uploaded image for project: 'Magnolia DX Core'
  1. Magnolia DX Core
  2. MGNLEE-708

Initial license page uses incorrect URL for form

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Neutral
    • 6.3.0, 6.2.35
    • 6.2.20
    • None
    • None

    Description

      Steps to reproduce

      1. Create a new install of Magnolia and deploy it to some location using SSL
      2. Start tomcat up and wait for it to finish loading
      3. Navigate to the URL of Magnolia using https
      4. Chrome alerts the page is insecure and won't let you enter license info since the form is trying to post to HTTP not HTTPS.

      .. Logs, screenshots, gifs...

      Expected results

      .. Justify non-trivial expectations with a link to a doc or a relevant discussion.

      Form should correctly post to current URL, either specifying the right absolute path or not specifying it and letting the default form behavior post as expected.

      Actual results

      Form attempts to post to HTTP instead of HTTPS.

      Workaround

      Either edit form action using DevTools or load Magnolia using a non-HTTPS URL (if possible).

      Development notes

      https://git.magnolia-cms.com/projects/PLATFORM/repos/dx-core/browse/magnolia-module-enterprise/src/main/resources/info/magnolia/enterprise/registration/not-registered.html#46

      We need to use relative URL in case of X-Forwarded-Proto is https

      https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Forwarded-Proto

      Resolution

      In the end removal of action attribute was chosen as most bulletproof solution. Its HTTP5 compliant. 

      Checklists

        Acceptance criteria

        Attachments

          Issue Links

            Activity

              People

                efochr Evzen Fochr
                bduffey Brian Duffey
                AdminX
                Votes:
                1 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved:
                  Work Started:

                  Checklists

                    Bug DoR
                    Task DoD