{"id":7501,"date":"2009-12-14T16:13:39","date_gmt":"2009-12-14T16:13:39","guid":{"rendered":"https:\/\/wordpress.org\/plugins-wp\/aarons-no-ssl-flash-upload\/"},"modified":"2012-05-01T19:57:42","modified_gmt":"2012-05-01T19:57:42","slug":"aarons-no-ssl-flash-upload","status":"publish","type":"plugin","link":"https:\/\/lmo.wordpress.org\/plugins\/aarons-no-ssl-flash-upload\/","author":2736912,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_crdt_document":"","version":"1.0.8","stable_tag":"1.0.8","tested":"3.2.1","requires":"3.1","requires_php":"","requires_plugins":"","header_name":"NO SSL Flash Upload","header_author":"Aaron A. Kelley","header_description":"","assets_banners_color":"","last_updated":"2012-05-01 19:57:42","external_support_url":"","external_repository_url":"","donate_link":"","header_plugin_uri":"http:\/\/aaron-kelley.net\/tech\/wordpress\/plugin-flashssl\/","header_author_uri":"http:\/\/aaron-kelley.net\/","rating":0,"author_block_rating":0,"active_installs":10,"downloads":4431,"num_ratings":0,"support_threads":0,"support_threads_resolved":0,"author_block_count":0,"sections":["description","changelog"],"tags":[],"upgrade_notice":[],"ratings":{"1":0,"2":0,"3":0,"4":0,"5":0},"assets_icons":[],"assets_banners":[],"assets_blueprints":{},"all_blocks":[],"tagged_versions":["1.0.2","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.0.8"],"block_files":[],"assets_screenshots":[],"screenshots":[],"jetpack_post_was_ever_published":false},"plugin_section":[],"plugin_tags":[206,1536,259],"plugin_category":[50,54],"plugin_contributors":[83826],"plugin_business_model":[],"class_list":["post-7501","plugin","type-plugin","status-publish","hentry","plugin_tags-flash","plugin_tags-ssl","plugin_tags-upload","plugin_category-media","plugin_category-security-and-spam-protection","plugin_contributors-aaron44126","plugin_committers-aaron44126"],"banners":[],"icons":{"svg":false,"icon":"https:\/\/s.w.org\/plugins\/geopattern-icon\/aarons-no-ssl-flash-upload.svg","icon_2x":false,"generated":true},"screenshots":[],"raw_content":"<!--section=description-->\n<p>Note: WordPress 3.3 offers a new, non-Flash uploader; this plugin may break it.<\/p>\n\n<p>If you are using SSL (https) to secure your WordPress admin sessions and you\nhave an SSL certificate that is not trusted by default (because it is self-\nsigned, signed by an untrusted certificate authority, signed for a different\ndomain name, etc.), then you probably have problems using the Flash uploader.<\/p>\n\n<p>This plugin disables SSL usage by the Flash uploader.  This allows you to use\nthe Flash uploader when you have FORCE_SSL_ADMIN enabled, with an untrusted SSL\ncertificate.  This works around the vague \"IO Error\" you get from the Flash\nuploader in such a situation.<\/p>\n\n<p>Note that this plugin comes with the following security implications:<\/p>\n\n<ul>\n<li>Flash uploads no longer use SSL, thus, your uploaded files aren't encrypted\nduring transmission.<\/li>\n<li>Uploading files with the Flash uploader will transmit your WordPress\nauthentication cookie in plain text.<\/li>\n<li>If someone captures your login cookie (which is transmitted any time you load\na page on your WordPress site while logged in, whether you are using SSL or\nnot), they may be able to use it to upload files, view information about\nuploaded files, or change information about uploaded files.<\/li>\n<\/ul>\n\n<p>If the benefit of having the Flash uploader available outweighs these potential\nsecurity risks for you, then you can use this plugin to enable the Flash\nuploader.<\/p>\n\n<p>Note that this plugin override's WordPress's auth_redirect and\nwp_validate_auth_cookie functions, and may not work if you are using other\nplugins that override these functions.<\/p>\n\n<!--section=changelog-->\n<h4>1.0.8<\/h4>\n\n<ul>\n<li>February 28, 2011<\/li>\n<li>Updated the auth_redirect function to match changes made in WordPress 3.1.\nNow requires WordPress 3.1.  WordPress 3.0.x users may use version 1.0.7.<\/li>\n<\/ul>\n\n<h4>1.0.7<\/h4>\n\n<ul>\n<li>June 19, 2010<\/li>\n<li>Updated the auth_redirect function to match changes made in WordPress 3.0.\nNow requires WordPress 3.0.  WordPress 2.9.x users may use version 1.0.6.<\/li>\n<\/ul>\n\n<h4>1.0.6<\/h4>\n\n<ul>\n<li>February 15, 2010<\/li>\n<li>Changed the name of the plugin.  I don't think it needs to have my name in\nthe title after all.<\/li>\n<li>Minor updates to documentation.<\/li>\n<li>Reverted \"code collapse\" change from 1.0.4 (no change in functionality, just\ncode style).<\/li>\n<\/ul>\n\n<h4>1.0.5<\/h4>\n\n<ul>\n<li>January 4, 2010<\/li>\n<li>Updated the auth_redirect function to match changes made in WordPress 2.9.\nNow requires WordPress 2.9.  WordPress 2.8.x users can use version 1.0.4.<\/li>\n<li>Minor updates to documentation.<\/li>\n<\/ul>\n\n<h4>1.0.4<\/h4>\n\n<ul>\n<li>December 18, 2009<\/li>\n<li>Fixed a bug that prevented viewing and editing media information immediately\nafter upload with WordPress 2.9.<\/li>\n<li>Changed code in the overridden functions so that all of my changes are on one\nline if possible.  This is to make it easier to check against the original\nWordPress functions for changes when a new version comes along.<\/li>\n<\/ul>\n\n<h4>1.0.3<\/h4>\n\n<ul>\n<li>December 14, 2009<\/li>\n<li>Fixed up readme.<\/li>\n<li>Now available in the WordPress plugin directory.<\/li>\n<\/ul>\n\n<h4>1.0.2<\/h4>\n\n<ul>\n<li>December 11, 2009<\/li>\n<li>Fixed error activating plugin, extra installation instructions no longer\nnecessary.<\/li>\n<\/ul>\n\n<h4>1.0.1<\/h4>\n\n<ul>\n<li>December 10, 2009<\/li>\n<li>Added \"Installation process\" section to readme, in case of errors activating\nthe plugin.<\/li>\n<\/ul>\n\n<h4>1.0<\/h4>\n\n<ul>\n<li>December 10, 2009<\/li>\n<li>Initial release.<\/li>\n<\/ul>","raw_excerpt":"Turns off SSL for the Flash uploader when you have FORCE_SSL_ADMIN enabled, in case you are having trouble getting it to work (&quot;IO Error&quot;).","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/lmo.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin\/7501","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lmo.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin"}],"about":[{"href":"https:\/\/lmo.wordpress.org\/plugins\/wp-json\/wp\/v2\/types\/plugin"}],"replies":[{"embeddable":true,"href":"https:\/\/lmo.wordpress.org\/plugins\/wp-json\/wp\/v2\/comments?post=7501"}],"author":[{"embeddable":true,"href":"https:\/\/lmo.wordpress.org\/plugins\/wp-json\/wporg\/v1\/users\/aaron44126"}],"wp:attachment":[{"href":"https:\/\/lmo.wordpress.org\/plugins\/wp-json\/wp\/v2\/media?parent=7501"}],"wp:term":[{"taxonomy":"plugin_section","embeddable":true,"href":"https:\/\/lmo.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_section?post=7501"},{"taxonomy":"plugin_tags","embeddable":true,"href":"https:\/\/lmo.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_tags?post=7501"},{"taxonomy":"plugin_category","embeddable":true,"href":"https:\/\/lmo.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_category?post=7501"},{"taxonomy":"plugin_contributors","embeddable":true,"href":"https:\/\/lmo.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_contributors?post=7501"},{"taxonomy":"plugin_business_model","embeddable":true,"href":"https:\/\/lmo.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_business_model?post=7501"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}