Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

🔥 Removed support for http/https mixed mode #14783

Merged
merged 1 commit into from May 11, 2022
Merged

🔥 Removed support for http/https mixed mode #14783

merged 1 commit into from May 11, 2022

Conversation

ErisDS
Copy link
Member

@ErisDS ErisDS commented May 11, 2022
edited

refs: #14446

  • Ghost will serve https content when configured to, or else https, but won't upgrade http to https anymore

Note: this requires package updates to work

@codecov
Copy link

codecov bot commented May 11, 2022
edited

Codecov Report

Merging #14783 (4d0e8c1) into main (84a10da) will increase coverage by 0.00%.
The diff coverage is 83.33%.

@@           Coverage Diff           @@
##             main   #14783   +/-   ##
=======================================
  Coverage   61.14%   61.15%           
=======================================
  Files         572      570    -2     
  Lines       46839    46771   -68     
  Branches     4208     4206    -2     
=======================================
- Hits        28640    28601   -39     
+ Misses      18155    18128   -27     
+ Partials       44       42    -2
Impacted Files Coverage Δ
core/frontend/helpers/navigation.js 92.22% <ø> (-0.17%) ⬇️
core/frontend/meta/rss-url.js 100.00% <ø> (ø)
core/frontend/services/rendering/index.js 75.86% <ø> (+0.10%) ⬆️
core/frontend/services/routing/CollectionRouter.js 91.25% <0.00%> (ø)
core/frontend/services/routing/ParentRouter.js 88.68% <0.00%> (ø)
...e/frontend/services/routing/controllers/channel.js 100.00% <ø> (ø)
...rontend/services/routing/controllers/collection.js 100.00% <ø> (ø)
...rontend/services/routing/controllers/email-post.js 0.00% <ø> (ø)
...ore/frontend/services/routing/controllers/entry.js 98.88% <ø> (-0.03%) ⬇️
.../frontend/services/routing/controllers/previews.js 60.65% <ø> (-1.85%) ⬇️
... and 10 more

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 84a10da...4d0e8c1. Read the comment docs.

@ErisDS ErisDS force-pushed the rip-secure branch 3 times, most recently from f87fc88 to e1d4f02 Compare May 11, 2022 13:01
@ErisDS
🔥 Removed support for http/https mixed mode
4d0e8c1 
TryGhost#14446

- Currently, if url is configured to http but a request is marked secure, Ghost will handle upgrading all internal URLs to https so that there are no mixed content warnings
- From 5.0 that feature is going away, in favour of stictly honouring the configured URL
- Ghost will serve URLs exactly as configured and won't upgrade http to https anymore
- This use case was common when Ghost was first built, but in 2022 the web is mostly https.
- The code needed to support the feature creates a lot of additional complexity & maintenance overhead, so removing this gives us space to do more cool and useful stuff in 2022
@ErisDS ErisDS marked this pull request as ready for review May 11, 2022 13:40
@ErisDS ErisDS merged commit b29852b into TryGhost:main May 11, 2022
@ErisDS ErisDS deleted the rip-secure branch May 11, 2022 13:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@ErisDS