ROS Resources: Documentation | Support | Discussion Forum | Service Status | Q&A answers.ros.org

Enforce HTTPS on ROS Wiki

wiki

#1

You should enforce http://wiki.ros.org to HTTPS with a SSL certificate, I have seen a similar discussion for the discourse, HTTPS for discourse.ros.org?

Credentials are used to login/contribute to the wiki, Firefox is warning users that is website is not safe for credentials, which is not going to encourage people contributing :slight_smile:


#2

You can give a try to https://wiki.ros.org.

Do you mean that you would like the http url to redirect to the https one ?


#3

@marguedas yes, I took @VictorLamoine’s post to be a request to always enforce https on wiki.ros.org through moinmoin: https://moinmo.in/FranklinPiat/UsingHttps


#4

Yes, I meant forcing HTTPS on all wiki pages.


#5

We’re tracking changes to convert all of the ROS web hosting to https. ROS Discourse, ROS Answers, docs.ros.org, and roscon.ros.org have all been converted and enforce

As you can see we’ve setup the certificates and are serving the wiki over https at: https://wiki.ros.org/ But it’s not “fully secure”

image

This is because there was a lot of http urls for resources embedded in the wiki code. Since enabling the https serving of content we’ve slowly been resolving them and are getting close to complete. Once we have resolved all the systematic uses of http we’d be ready to switch over to https by default. We don’t want to give people a false sense of security.

If anyone would like to look into resolving any of these outstanding resource references a pull request at https://github.com/ros-infrastructure/roswiki would be appreciated. I think there’s just a few macros and the search bar that need to be updated. Once those are resolved we can flip the switch and enforce https.

There are also instances of user content that is http that needs to be resolved too:

But that will need to be a community effort to update as well.