Hi all,
I have just got SSL working with a test server just for user logins.
When a user goes to the main login page, the padlock appears, and part of the address goes blue, indicating that the SSL connection is working. All good so far!
However, is this still the case if a login box is used on the home page? In this case it appears that users can login without their credentials being encrypted - ie. no blue address bar and no padlock.
Could someone clarify the situation please?
Many thanks
Richard Williamson
Hi, the moodle admin page allows you to check off SSL for the login page. But, it fails to mentioned that the entire 'login' directory seems to be protected also. You might noticed the account creation page and the lost password page is also protected when it is checked off. Also, to finally answer your question; if you hover over the login button, the link is actually pointing to https... IE doesn't show this; the OPERA browser does. Also, the Firebug add-on for Firefox also shows https; the add-on reveals the html and css codes. These points led me to believe is SSL protected, although I like to see someone else confirmed this as well 