Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.- Log in or register to create an issue
- Advanced search
| Title | Status | Priority | Category | Version | Component | Replies |
Last updated |
Assigned to | Created |
|---|---|---|---|---|---|---|---|---|---|
| Get webform support working on 8.x-1.x branch | Closed (fixed) | Normal | Bug report | 8.x-1.x-dev | Code | 4 | 2 years 4 months | 2 years 4 months | |
| Fix Secure Login configuration migration from Drupal 7 | Closed (fixed) | Normal | Bug report | 8.x-1.x-dev | Code | 7 | 2 years 4 months | 2 years 4 months | |
| Use Secure Base URL consistently for form action URLs | Closed (fixed) | Normal | Bug report | 8.x-1.x-dev | Code | 17 | 2 years 5 months | 8 years 2 months | |
| Allow specifying different port for HTTPS | Closed (fixed) | Major | Bug report | 8.x-1.x-dev | Code | 6 | 7 years 8 months | 7 years 8 months | |
| securelogin.info.yml should not contain "version: VERSION" | Closed (fixed) | Normal | Bug report | 8.x-1.x-dev | Code | 6 | 7 years 9 months | 7 years 10 months | |
| Work around core bugs re: base URLs in render caches and aggregated CSS | Closed (fixed) | Critical | Bug report | 8.x-1.x-dev | Code | 5 | 8 years 4 months | 8 years 5 months | |
| Login links with "destination" parameter do not redirect to login page | Closed (fixed) | Major | Bug report | 8.x-1.x-dev | Code | 4 | 8 years 4 months | 8 years 5 months | |
| user login block is not properly secured (again) | Closed (fixed) | Critical | Bug report | 8.x-1.x-dev | Code | 4 | 8 years 5 months | 8 years 6 months | |
| 403 and 404 pages with login block are served by page cache | Closed (fixed) | Critical | Bug report | 8.x-1.x-dev | Code | 4 | 8 years 5 months | 8 years 6 months | |
| Site Contact form (other language than default) doesn't redirect to https | Closed (cannot reproduce) | Major | Bug report | 7.x-1.4 | Code | 2 | 9 years 1 month | 10 years 5 months | |
| figure out how to inject redirect into the page response | Closed (fixed) | Normal | Bug report | 8.x-1.x-dev | Code | 5 | 9 years 4 months | 9 years 5 months | |
| Login forms insecure unless "Secure form pages" checkbox is checked | Closed (works as designed) | Normal | Bug report | 6.x-1.x-dev | Code | 7 | 9 years 7 months | 11 years 7 months | |
| Secure Login redirects during cron | Closed (fixed) | Normal | Bug report | 7.x-1.x-dev | Code | 5 | 9 years 8 months | 9 years 11 months | |
| Drush 301 Moved Permanently | Closed (fixed) | Normal | Bug report | 7.x-1.4 | Code | 6 | 9 years 8 months | 10 years 1 month | |
| Use 302 Found instead of 301 Moved Permanently | Closed (works as designed) | Critical | Bug report | 7.x-1.x-dev | Code | 2 | 10 years 5 months | ximo | 10 years 5 months |
| Front page diverts to example.com/chosenpage rather than example.com | Closed (fixed) | Normal | Bug report | 7.x-1.4 | Code | 2 | 10 years 5 months | 10 years 7 months | |
| "Cache anonymous pages" interferes with https redirect | Closed (fixed) | Critical | Bug report | 7.x-1.3 | Code | 8 | 10 years 9 months | 11 years 8 months | |
| All urls switched to "https://" | Closed (works as designed) | Normal | Bug report | 7.x-1.2 | Code | 2 | 11 years 4 months | 12 years 10 months | |
| Can't not secure User login form | Closed (fixed) | Minor | Bug report | 7.x-1.3 | Code | 6 | 11 years 6 months | 11 years 8 months | |
| Access denied on https pages | Closed (works as designed) | Major | Bug report | 7.x-1.2 | Code | 2 | 11 years 8 months | 12 years 4 months | |
| Security issue: Open Redirect | Closed (fixed) | Major | Bug report | 7.x-1.2 | Code | 3 | 11 years 9 months | 11 years 9 months | |
| Users not redirected from links. | Closed (fixed) | Normal | Bug report | 7.x-1.2 | Code | 3 | 12 years 2 months | 12 years 3 months | |
| Securelogin prevents creation of users and destroys user-data field in database and saves password in clear | Closed (cannot reproduce) | Critical | Bug report | 6.x-1.x-dev | Code | 4 | 12 years 11 months | 14 years 8 months | |
| When $base_url is set to http://example.com, the https is rewriten to http. | Closed (fixed) | Normal | Bug report | 5.x-1.x-dev | Code | 5 | 13 years 6 days | 16 years 6 months | |
| Cross-Site Scripting | Closed (fixed) | Normal | Bug report | 6.x-1.x-dev | Code | 5 | 13 years 1 month | 13 years 3 months | |
| Error: Undefined variable: path in securepages_can_alter_url() (line 281 ... | Closed (won't fix) | Major | Bug report | 7.x-1.x-dev | Code | 1 | 13 years 3 months | 13 years 3 months | |
| Unsuccessful login leads to https | Closed (won't fix) | Normal | Bug report | 5.x-1.x-dev | Code | 2 | 13 years 6 months | 16 years 7 months | |
| Logins don't work | Closed (fixed) | Normal | Bug report | 6.x-1.x-dev | Code | 7 | 14 years 2 months | 15 years 9 months | |
| "form action =" broken on unsuccessful login | Closed (fixed) | Critical | Bug report | 5.x-1.x-dev | Code | 1 | 15 years 1 month | 15 years 1 month | |
| Does it work with Drupal 6? | Closed (fixed) | Normal | Bug report | 5.x-1.x-dev | Code | 3 | 15 years 10 months | 16 years 3 months | |
| File downloads over SSL do not work with the cache control headers | Closed (fixed) | Critical | Bug report | 5.x-1.x-dev | Code | 2 | 16 years 11 hours | 16 years 2 months | |
| better separation of secure and insecure login modes | Closed (fixed) | Normal | Bug report | 5.x-1.x-dev | Code | 6 | 16 years 1 week | 16 years 2 months | |
| Doesn't rewrite when form_id is user_login | Closed (fixed) | Normal | Bug report | 5.x-1.x-dev | Code | 1 | 16 years 4 months | 16 years 4 months | |
| No HTTPS | Closed (fixed) | Critical | Bug report | 5.x-1.x-dev | Code | 1 | 16 years 6 months | 16 years 6 months | |
| Does it work for /user ? | Closed (fixed) | Normal | Bug report | 5.x-1.x-dev | Code | 9 | 16 years 6 months | avf | 16 years 10 months |
Subscribe with RSS 
