Original request: https://sourceforge.net/p/forge/feature-requests/426/
May need .ini settings if this is something that some sites would want and not others.
Closed #821. ib/7927
#if not testing and request.scheme != 'https':
#request.environ['pylons.status_code_redirect'] = True
Found two minor issues with the cache setting, and fixed them. Also added another test to assert a tricky attack vector stays closed.
Log in to post a comment.