From 6f4e3283340bd966474e19b405faaae37df72ffd Mon Sep 17 00:00:00 2001 From: Jennifer Richards Date: Fri, 21 Jun 2024 11:50:35 -0300 Subject: [PATCH] fix: remove is_secure() check (#7579) The real work happened in a previous commit, just nudging the patch version with this CC message. --- ietf/sync/views.py | 2 ++ 1 file changed, 2 insertions(+) diff --git a/ietf/sync/views.py b/ietf/sync/views.py index 87447111f7..a2b5f62427 100644 --- a/ietf/sync/views.py +++ b/ietf/sync/views.py @@ -52,6 +52,8 @@ def notify(request, org, notification): password = request.POST.get("password") or request.GET.get("password") if username != None and password != None: + # Used to reject non-https traffic here, but that's now enforced by a domain-wide upgrade + # from http to https. Django's request.is_secure() is always False now. if not user.is_authenticated: try: user = User.objects.get(username__iexact=username)