When the user is on HTTP, he can successfully be redirected to a HTTPS (SSL) URL. However, when I want to **do the reverse**, it creates an **infinite redirection loop**. Here is the redirection code from the application_controller's `before_action`: def debug_toggle_ssl if params[:x].eql?('yes') redirect_to "http://NONSSL.tld#{request.fullpath}" end end With that, the issue may be reproduce like so: 1. Direct browser to https://SSL.tld 2. Try to open https://SSL.tld/?x=yes 3. Notice how a loop to https://SSL.tld is caused (http://NONSSL.tld is never even requested) Actual results: Redirect to SSL URL (thus causing a loop) Expected results: Redirect to non-SSL URL Additional info: See also http://stackoverflow.com/q/36781860/569825
Please inform if there is intention to solve this bug and when resolution is expected. Our app and thus the further use of OpenShift Online as customers strongly depends on it's resolution.
This comment was flagged a spam, view the edit history to see the original text if required.
Thanks for your patience. I previously was unable to reproduce the issue, but I'll be trying again shortly. I'll let you know what I find.
As I'm continuing to look into this, can you go over your use case? It seems odd to be intentionally redirecting to the less secure http. If I know your use case I may be able to find an alternative solution.
We apologize, however, we do not plan to address this report at this time. The majority of our active development is for the v3 version of OpenShift. If you would like for Red Hat to reconsider this decision, please reach out to your support representative. We are very sorry for any inconvenience this may cause.
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 1000 days