Hello,
In your security demos, they all use HTTP, not HTTPS...
I am working on getting lds account authenticaion working in https. It seems like an easy thing to do. Just add requires-channel="https"...
I have this tag <sec:intercept-url requires-channel="https" pattern="/spring_security_login" access="permitAll" />
The problem I see is an error returned:
Your login attempt was not successful, try again.
Reason: Authentication method not supported: GET
I can clearly see that the default login html is POST.
Any ideas?
HTTPS?
-
- New Member
- Posts: 4
- Joined: Mon Feb 06, 2012 4:59 pm
Re: HTTPS?
Sorry to have taken so long to reply on this thread.
Just to verify, are you saying that the login form itself is using POST, and that this is the error message response when you click the submit button? Can you verify that the behavior is not the same when the only change is leaving off the requires-channel attribute?
Can you point me to the source control repo where to find your project that is exhibiting this behavior?
Thanks
Just to verify, are you saying that the login form itself is using POST, and that this is the error message response when you click the submit button? Can you verify that the behavior is not the same when the only change is leaving off the requires-channel attribute?
Can you point me to the source control repo where to find your project that is exhibiting this behavior?
Thanks
-
- New Member
- Posts: 1
- Joined: Fri Nov 11, 2016 3:19 am
- Location: 9345 Cemetery Dr. Scarsdale
- Contact:
Re: HTTPS?
Such a nice debate but HTTPS means more secure web page open in browser compare of simply HTTP.