JDownloader Community - Appwork GmbH
 

Reply
 
Thread Tools Display Modes
  #1  
Old 04.06.2018, 18:57
netgearjd netgearjd is offline
Giga Loader
  
Join Date: Aug 2014
Posts: 92
Lightbulb App-wide automatic https support
As you know all the major browser makers have over the last few years become increasingly aggressive about the use of https links for security and have started flagging plain http URLs (especially login pages or those with forms) as unsafe.

Additionally it has come to my notice that certain http URLs have been blocked by my ISP whereas the https URLs for the same file hosts are unblocked. Whether this is deliberate or an oversight, I do not know.

Thus my suggestion is that JD should internally switch to prioritizing https everywhere, and try the http version for any link only as an automatic fallback measure. So for example if I add a bunch of http links to the LinkGrabber, it would be great if JD automatically tried their https versions before declaring failure.

Same goes for all decrypter plugins, login plugins and what not. Even code for operations such as loading favicons for file hosts should try https first. Keeping in mind the transition to https everywhere this is obviously the sensible thing to do.

**External links are only visible to Support Staff****External links are only visible to Support Staff**
**External links are only visible to Support Staff****External links are only visible to Support Staff**
**External links are only visible to Support Staff****External links are only visible to Support Staff**
Reply With Quote
  #2  
Old 04.06.2018, 19:05
Jiaz's Avatar
Jiaz Jiaz is offline
JD Manager
  
Join Date: Mar 2009
Location: Germany
Posts: 79,532
Default
Plugins either provide options to switch between https or http and newer plugins often use https as default but older plugins may still use http and then auto switch to https (depending on server settings). There is no generic *all to https* solutions as for example many sites have websites with https but downloads still with http or depending on user settings and changing those may result in redirect loops (user settings wants https but server wants http...or other way).

It also highly depends on links. Those with plugins must be updated to support this. Those with generic plugins (for example normal http) auto upgrade must be wisely done to avoid DDOS or high server load.
__________________
JD-Dev & Server-Admin
Reply With Quote
  #3  
Old 04.06.2018, 19:06
Jiaz's Avatar
Jiaz Jiaz is offline
JD Manager
  
Join Date: Mar 2009
Location: Germany
Posts: 79,532
Default
__________________
JD-Dev & Server-Admin
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

All times are GMT +2. The time now is 08:26.
JDownloader Community Board - Archive - Top
Provided By AppWork GmbH | Privacy | Imprint
Parts of the Design are used from Kirsch designed by Andrew & Austin
Powered by vBulletin® Version 3.8.10 Beta 1
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.