A lot of areas direct users to https requests which I do not want.
edit profile
add user
add course
I guess there are more also.
How can I fix this?
I think there is no way to do that. You need an SSL certificate. If you dont want to purchase a certificate you can use a so called "self signed certificate". The only disadvantage: your users will get here and there a popup message: "this is not a trusted site". Hope this can help you.
YOU DO NOT NEED AN HTTPS CERTIFICATE TO RUN MOODLE
Sorry to shout, but this has been discussed several times. Please don't spread misinformation.
There does seem to be something very weird going on with some people's systems that means that it keeps sending you to an HTTPS URL. This is a bug. However, no one has yet provided us with enough specific information that we can work out what is going wrong. Until someone can work out what is going wrong for the people who have this problem, we can't fix it.
The current moodle.org website does not use HTTPS in the same areas. I just updated my profile, changed password, and non of the form acctions contain https.
Unless Moodle.org is not running the same version. I have 2.0.1 installed at the moment.
Moodle.org (no https)
<form action="http://moodle.org/user/edit.php" method="post" accept-charset="utf-8" id="mform1" class="mform" onsubmit="try { var myValidator = validate_user_edit_form; } catch(e) { return true; } return myValidator(this);">
Mine (yes https)
<form Xonsubmit="try { var myValidator = validate_user_editadvanced_form; } catch(e) { return true; } return myValidator(this);" class="mform" id="mform1" accept-charset="utf-8" method="post" action="https://domain.com/user/editadvanced.php">
Grant,
Tim is most likely right and this looks like a some kind of bug on certain server environments (Zeus?) - see for example http://moodle.org/mod/forum/discuss.php?d=165589
There might be a 1% probability that some browser setting could explain such behaviour too - settings like http://windows.microsoft.com/en-US/windows-vista/Security-zones-adding-or-removing-websites - does it happen with different browsers?
Mauno, definitely not the browsers causing the problem. Tested in Chrome, IE, and Firefox. All show https...
I have access to a Enterprise LiteSpeed™ Web Server. I read the entire post about server issues and read this comment. The problem. It seems to be an issues for a lot of people.
Server
LiteSpeed V5.4
PHP Version 5.2.14
This program makes use of the Zend Scripting Language Engine:
Zend Engine v2.2.0, Copyright (c) 1998-2010 Zend Technologies
with XCache v1.3.0, Copyright (c) 2005-2009, by mOo
with the ionCube PHP Loader v3.1.33, Copyright (c) 2002-2007, by ionCube Ltd., and
with Zend Extension Manager v1.2.2, Copyright (c) 2003-2007, by Zend Technologies
with Zend Optimizer v3.3.3, Copyright (c) 1998-2007, by Zend Technologies
If you want more specifics regard the server let me know!
Thanks,
Grant
So obviously it happens only on some server environments - comment by Evaristo Martínez Belchí in http://moodle.org/mod/forum/discuss.php?d=164805#p734154 is interesting...
Anyway - I am sure that someone finds a good solution to this bug either on host side or moodle side...
Would this work
$CFG->loginhttps = false;