Add [FE][lockSSL] option in TYPO3_CONF_VARS (as in [BE][lockSSL])
Proposal to add an option to enforce HTTPS if currently logged in as FE user. Could be implemented as in already existing [BE][lockSSL] option.
This would make Extensions like https_enforcer more or less redundant, because TYPO3 core would handle this functionality:
1) already existing in core: Force HTTPS for specific page (pages.url_scheme)
2) already existing in core: Force HTTPS if logged in as BE-User: [BE][lockSSL]
2) not exisiting? : Force HTTPS if logged in as FE-User
Updated by Sybille Peters over 4 years ago
thanks for the hints. Currently we are using the ext. https_enforder to redirect to HTTPS if logged in FE or sending userdata. However, this is no longer necessary. Will redirect all to HTTPS in the future as this will simplify configuration and there is no longer a reason not to redirect all to HTTPS.