Rubin110

I feel like this was working fine a few months ago. Honestly not sure what changed. Was Chrome allowing cross site cookies between http and https?

Additionally I get a 404 on private published posts. I am imagining there’s more of a disconnect between logged in state between HTTP and HTTPS than from a few months ago.

I am unfortunately having this issue too. I have SSL only turned on for admin pages and disabled for everything else. Trying any preview redirects me to a non SSL URL which then either gives me the “You do not have permission to preview drafts.” error or 404s depending on if the post is new or old. If I disable the plugin it all works fine again.

It would be nice if that functionality was left up to the user to choose, as an option.

Actually what else would be great is if it’s activated by default for all users, but a code isn’t generated until the user presses a button. If the user is in an activated state but doesn’t have a code generated, the user should be able to login with just a user/pass but can only access a page that helps them to setup Google Auth. Once the code is generated, the screen goes away and the user should be able to login without this forced setup screen.

At this point only administrators can enable/disable Google Auth, because I’m sure I have a small number of users who simply don’t have a smart phone that supports Google Authenticator yet and I’ll have to make an exception for them to just use a strong password.

Make sense? Thanks!

This is awesome thank you so much. I was just mulling about for the past hour trying to figure out a solution to this since I’ve got so many authors who suck at remembering to swap out https for http when spitting out URLs to their blogs.

One issue I’m running into is short link URL still default to https, but everything else seems to work fine.

Also will the development version upgrade itself to whatever is available through www.remarpro.com when it gets updated? Thanks again!