From: Alexander A. Klimov Date: Tue, 21 Mar 2023 21:50:08 +0000 (+0100) Subject: Omit "Accessing site insecurely via HTTP." warning if HTTP is secure enough X-Git-Tag: v27.0.0beta1~141^2~1 X-Git-Url: https://source.dussan.org/?a=commitdiff_plain;h=e3f1fae715e7787e516df4a8aa6fcedf6c0e531d;p=nextcloud-server.git Omit "Accessing site insecurely via HTTP." warning if HTTP is secure enough This is the case for localhost and Tor hidden services. Signed-off-by: Alexander A. Klimov --- diff --git a/core/js/setupchecks.js b/core/js/setupchecks.js index b2d021c6265..827696be9ff 100644 --- a/core/js/setupchecks.js +++ b/core/js/setupchecks.js @@ -717,7 +717,7 @@ type: OC.SetupChecks.MESSAGE_TYPE_WARNING }); } - } else { + } else if (!/(?:^(?:localhost|127\.0\.0\.1|::1)|\.onion)$/.exec(window.location.hostname)) { messages.push({ msg: t('core', 'Accessing site insecurely via HTTP. You are strongly advised to set up your server to require HTTPS instead, as described in the {linkstart}security tips ↗{linkend}.') .replace('{linkstart}', '')