Home

You are not logged in.
Language: French

#1 2014-12-02 15:58:10

Moonie
Moderator

HTTPS

For anyone who has some reason to use it, you can now access the site using https.

https://www.urtjumpers.com/

Probably wont work on old browsers (no SSL support, only TLS).  Works fine on latest Firefox ESR, so should work fine on anything modern.  Obviously uses our own self signed cert, so make an exception if you want to use it.  If you dont trust us use http (but if you dont trust us why do you even have an account).

Some things dont work.  Mainly downloads and videos.  We probably wont fix either of them, as this was only done for our own amusement, and not because we are paranoid about the NSA knowing about our boring gaming lifes.  if you want to watch videos or download maps, use http.

Things that do mostly work are, the forum and pm. YMMV.

Enjoy.


Will replace with something useful, someday. smile

Offline

  • Top

#2 2014-12-02 17:11:12

astars
Map maker

Re: HTTPS

Great! thanks

PS: after login you are no longer under SSL tongue

Last edited by astars (2014-12-02 17:14:41)

Offline

  • Top

#3 2014-12-02 18:13:45

X-RaY
Moderator

Re: HTTPS

Awesome feature actually
If it was up to me I'd go full HSTS, but with a self signed cert that might not be the smartest idea hmm

As for dl-links and redirects, I'll take a look at that


“Don’t judge everyone else by your limited experience.” - Carl Sagan

Offline

  • Top

#4 2014-12-02 19:14:06

Moonie
Moderator

Re: HTTPS

astars wrote:

Great! thanks

PS: after login you are no longer under SSL tongue

Never considered that.

I never logout, this is one of the odd places i stay permanently logged in.

I dont want to force everything to https until we have the broken areas working, but forcing everyone to use it wouldnt be a problem.  Also if i do this eventually their will be no support for any browser not supporting at least TLS 1.0.


Will replace with something useful, someday. smile

Offline

  • Top

#5 2014-12-23 14:53:53

jmarc
webMaster/noobJumper

Re: HTTPS

astars wrote:

Great! thanks

PS: after login you are no longer under SSL tongue

after posted too

Offline

  • Top

#6 2014-12-23 15:35:54

Moonie
Moderator

Re: HTTPS

Yeah its buggy.


Will replace with something useful, someday. smile

Offline

  • Top

#7 2014-12-23 22:15:24

X-RaY
Moderator

Re: HTTPS

Need to work on that indeed. Its probably a simple fix involving the redirect url. Some holidays coming up, so might just as well fix some of the issues. I estimate it'll cost around 2 hours to fix the most common issues, which is reasonable I suppose smile


“Don’t judge everyone else by your limited experience.” - Carl Sagan

Offline

  • Top

#8 2014-12-25 00:31:54

Clear
Jumper

Re: HTTPS

You guys are probably aware, but it looks like Apache isn't configured to respond to http://urtjumpers.com/ the same way as http://www.urtjumpers.com/, without the www it'll take me to an empty directory listing. It looks to be an Apache issue because both domains resolve to the same IP.

Offline

  • Top

#9 2014-12-25 16:08:33

X-RaY
Moderator

Re: HTTPS

@Clear, thank you for actually checking that!
I thought it was a DNS issue as we had before but didn't bother checking

The config is fixed and urtjumpers.com is working as expected now.
I'll have to check with jmarc to see if anything else broke because of the change, as I had to change another config as well (which was using urtjumpers.com)

Also, just as https://www.urtjumpers.com/forum/login.php urtjumpers.com has the same redirection problem - always redirecting to www.urtjumpers.com.

It'll need to code fiddling to fix that, which we'll get to soon enough, but it's not a big problem just yet.... I think smile

Last edited by X-RaY (2014-12-25 16:08:58)


“Don’t judge everyone else by your limited experience.” - Carl Sagan

Offline

  • Top

Board footer

Powered by FluxBB - Adaptation: jmarc
Design: landouille - Icons: famfamfam