Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
- Log in or register to create an issue
- Advanced search
Title | Status | Priority | Category | Version | Component | Replies | Last updated | Assigned to | Created |
---|---|---|---|---|---|---|---|---|---|
Get webform support working on 8.x-1.x branch | Closed (fixed) | Normal | Bug report | 8.x-1.x-dev | Code | 4 | 2 years 4 months | 2 years 4 months | |
Fix Secure Login configuration migration from Drupal 7 | Closed (fixed) | Normal | Bug report | 8.x-1.x-dev | Code | 7 | 2 years 4 months | 2 years 4 months | |
Use Secure Base URL consistently for form action URLs | Closed (fixed) | Normal | Bug report | 8.x-1.x-dev | Code | 17 | 2 years 5 months | 8 years 2 months | |
Allow specifying different port for HTTPS | Closed (fixed) | Major | Bug report | 8.x-1.x-dev | Code | 6 | 7 years 8 months | 7 years 8 months | |
securelogin.info.yml should not contain "version: VERSION" | Closed (fixed) | Normal | Bug report | 8.x-1.x-dev | Code | 6 | 7 years 9 months | 7 years 10 months | |
Work around core bugs re: base URLs in render caches and aggregated CSS | Closed (fixed) | Critical | Bug report | 8.x-1.x-dev | Code | 5 | 8 years 4 months | 8 years 5 months | |
Login links with "destination" parameter do not redirect to login page | Closed (fixed) | Major | Bug report | 8.x-1.x-dev | Code | 4 | 8 years 4 months | 8 years 5 months | |
user login block is not properly secured (again) | Closed (fixed) | Critical | Bug report | 8.x-1.x-dev | Code | 4 | 8 years 5 months | 8 years 6 months | |
403 and 404 pages with login block are served by page cache | Closed (fixed) | Critical | Bug report | 8.x-1.x-dev | Code | 4 | 8 years 5 months | 8 years 6 months | |
Site Contact form (other language than default) doesn't redirect to https | Closed (cannot reproduce) | Major | Bug report | 7.x-1.4 | Code | 2 | 9 years 1 month | 10 years 5 months | |
figure out how to inject redirect into the page response | Closed (fixed) | Normal | Bug report | 8.x-1.x-dev | Code | 5 | 9 years 4 months | 9 years 5 months | |
Login forms insecure unless "Secure form pages" checkbox is checked | Closed (works as designed) | Normal | Bug report | 6.x-1.x-dev | Code | 7 | 9 years 7 months | 11 years 7 months | |
Secure Login redirects during cron | Closed (fixed) | Normal | Bug report | 7.x-1.x-dev | Code | 5 | 9 years 8 months | 9 years 11 months | |
Drush 301 Moved Permanently | Closed (fixed) | Normal | Bug report | 7.x-1.4 | Code | 6 | 9 years 8 months | 10 years 1 month | |
Use 302 Found instead of 301 Moved Permanently | Closed (works as designed) | Critical | Bug report | 7.x-1.x-dev | Code | 2 | 10 years 5 months | ximo | 10 years 5 months |
Front page diverts to example.com/chosenpage rather than example.com | Closed (fixed) | Normal | Bug report | 7.x-1.4 | Code | 2 | 10 years 5 months | 10 years 7 months | |
"Cache anonymous pages" interferes with https redirect | Closed (fixed) | Critical | Bug report | 7.x-1.3 | Code | 8 | 10 years 9 months | 11 years 8 months | |
All urls switched to "https://" | Closed (works as designed) | Normal | Bug report | 7.x-1.2 | Code | 2 | 11 years 4 months | 12 years 10 months | |
Can't not secure User login form | Closed (fixed) | Minor | Bug report | 7.x-1.3 | Code | 6 | 11 years 6 months | 11 years 8 months | |
Access denied on https pages | Closed (works as designed) | Major | Bug report | 7.x-1.2 | Code | 2 | 11 years 8 months | 12 years 4 months | |
Security issue: Open Redirect | Closed (fixed) | Major | Bug report | 7.x-1.2 | Code | 3 | 11 years 9 months | 11 years 9 months | |
Users not redirected from links. | Closed (fixed) | Normal | Bug report | 7.x-1.2 | Code | 3 | 12 years 2 months | 12 years 3 months | |
Securelogin prevents creation of users and destroys user-data field in database and saves password in clear | Closed (cannot reproduce) | Critical | Bug report | 6.x-1.x-dev | Code | 4 | 12 years 11 months | 14 years 8 months | |
When $base_url is set to http://example.com, the https is rewriten to http. | Closed (fixed) | Normal | Bug report | 5.x-1.x-dev | Code | 5 | 13 years 6 days | 16 years 6 months | |
Cross-Site Scripting | Closed (fixed) | Normal | Bug report | 6.x-1.x-dev | Code | 5 | 13 years 1 month | 13 years 3 months | |
Error: Undefined variable: path in securepages_can_alter_url() (line 281 ... | Closed (won't fix) | Major | Bug report | 7.x-1.x-dev | Code | 1 | 13 years 3 months | 13 years 3 months | |
Unsuccessful login leads to https | Closed (won't fix) | Normal | Bug report | 5.x-1.x-dev | Code | 2 | 13 years 6 months | 16 years 7 months | |
Logins don't work | Closed (fixed) | Normal | Bug report | 6.x-1.x-dev | Code | 7 | 14 years 2 months | 15 years 9 months | |
"form action =" broken on unsuccessful login | Closed (fixed) | Critical | Bug report | 5.x-1.x-dev | Code | 1 | 15 years 1 month | 15 years 1 month | |
Does it work with Drupal 6? | Closed (fixed) | Normal | Bug report | 5.x-1.x-dev | Code | 3 | 15 years 10 months | 16 years 3 months | |
File downloads over SSL do not work with the cache control headers | Closed (fixed) | Critical | Bug report | 5.x-1.x-dev | Code | 2 | 16 years 11 hours | 16 years 2 months | |
better separation of secure and insecure login modes | Closed (fixed) | Normal | Bug report | 5.x-1.x-dev | Code | 6 | 16 years 1 week | 16 years 2 months | |
Doesn't rewrite when form_id is user_login | Closed (fixed) | Normal | Bug report | 5.x-1.x-dev | Code | 1 | 16 years 4 months | 16 years 4 months | |
No HTTPS | Closed (fixed) | Critical | Bug report | 5.x-1.x-dev | Code | 1 | 16 years 6 months | 16 years 6 months | |
Does it work for /user ? | Closed (fixed) | Normal | Bug report | 5.x-1.x-dev | Code | 9 | 16 years 6 months | avf | 16 years 10 months |