Support Request Template
What version of phpBB are you using?
What is your board's URL?
Who do you host your board with?
How did you install your board?
I used the download package from phpBB.com
What is the most recent action performed on your board?
Update from a previous version of phpBB3
Is registration required to reproduce this issue?
Do you have any MODs installed?
Do you have any extensions installed?
What version of phpBB3 did you update from?
What extensions do you have installed?
24 hour activity stats 1.0.3, Advanced Polls 1.2.1-b1, Avatar Upload - Resize & Crop 1.0.0, Ban Hammer 1.0.0, Board Rules 1.0.4, Custom User Title 1.0.0, External Links Open in New Window 1.0.5, First post on every page 2.0.2, Genders 1.1.1, Google Analytics 1.0.1, Individual posts per page 1.0.1, Mark forums read 0.1.0, Medals System 1.0.0, phpBB Gallery 1.2.0, Post Numbers 1.1.0, Profile side switcher 1.0.0, QuickReply Reloaded 1.1.0-beta1, s9e/mediaembed 20170116, Scroll To Up and Bottom 1.0.1, Social Sharing w/Dyanmic Opengraph Tags 0.9.1, Stop Forum Spam 1.0.6, Thanks for posts 2.0.2, Mchat 2.0.0
What styles do you currently have installed?
What language(s) is your board currently using?
Which database type/version are you using?
What is your level of experience?
Comfortable with PHP and phpBB
What username can be used to view this issue?
What password can be used to view this issue?
What actions did you take (updating your board; installing a MOD, style or extension; etc.) prior to this problem becoming noticeable?
Please describe your problem.
1. I have set up the board to be accessible both over http and https (using a self-signed sertificate). HTTPS works fine, however, after logging in through log in form (https://www.fighting.ru/forum/ucp.php?mode=login
) users are still implicitly redirected to a http version, and have to manually change the link to get back to https.
Is there any way to redirect users after the login preserving the chosen protocol?
2. (This one is regardless of the protocol.) Currently, if the "remember me" checkbox is not checked during the login, the user still receives a cookie for 30 days (which is the amount set for those who have checked the checkbox). Moreover, their session does not expire when the browser window is closed, and users expect the session to expire (based on other web sites behaviour), which leads to potential security problems for them.
If this behavior intended by phpbb devs or is this a bug?
Generated by SRT Generator