Hi all,
I know it’s a tough one to test, but could someone check out https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=25360? When using HTTPS, it sets the secure flag on the CGISESSID, so that the cookie can’t be sent over an unencrypted HTTP request.
It won’t break HTTP, but it will make use of HTTPS more secure.
David Cook
Systems Librarian
Prosentient Systems
72/330 Wattle St
Ultimo, NSW 2007
Australia
Office: 02 9212 0899
Online: 02 8005 0595