SSL

Really Simple SSL 2.5.14, minor update

2.5.14 was released today, with two adjustments:

  • A bug was discovered in the mixed content fixer, where a match was found on http links across html elements when newlines were removed by optimization plugins. If a link element was found, but the href was https, it would match the first href=”http, which could be an external hyperlink.
    It didn’t come up before, as it only causes an issue in a very specific set of conditions.
  • The wp_rest_api was not forced over SSL yet with PHP. Although the .htaccess redirect should redirect any requests to https, NGINX servers won’t be able to use this. This has now been adjusted.

 

Related Articles

  • Easy Digital Downloads Moneybird integration

    Moneybird is a great accounting tool. Originally started as a simple invoice sending tool, it has now turned itself into a pretty allround accounting tool. And I think it’s pretty...
  • Secure cookies with HttpOnly, secure and use_only_cookies

    Since version 2.0.2, Really Simple SSL pro and Really Simple SSL pro multisite contain a new feature which enables setting secure cookies by default. It uses the HttpOnly, secure and...
  • Really Simple SSL and GDPR

    As a consequence of the upcoming new privacy regulations, the GDPR, some users have been asking if Really Simple SSL is compliant, or if the plugin or add-ons do any...
  • Really Simple SSL 2.5.26

    In Really Simple SSL 2.5.26 a few minor multisite issues were fixed. When a multisite environment has a main site without SSL, the network SSL menu didn’t show. This is...

2 Comments

  • ao

    It was redirecting my homepage to the login page. I hope this update will take care of that issue. Nice plugin by the way. Thanks

    • Rogier Lankhorst

      Yes, the wp_safe_redirect had me confused: it can’t be used on the front-end, as it redirects to the login page instead of a similar but safe url. It also kicks in when the www version of the site is used for example. This is fixed as of 2.5.15. Sorry for any problems this might have caused. Somehow this didn’t pop up in the tests. Tests are being improved to prevent this in the future.