Skip to content
This repository has been archived by the owner on Nov 6, 2023. It is now read-only.

HTTPS to HTTPS 40 Rules Refactor #16924

Merged
merged 24 commits into from
Nov 1, 2018
Merged

HTTPS to HTTPS 40 Rules Refactor #16924

merged 24 commits into from
Nov 1, 2018

Conversation

zoracon
Copy link
Contributor

@zoracon zoracon commented Oct 18, 2018

Background:
There were quite a few older rules supporting HTTPS to HTTPS redirects that we generally would like to clean and move towards a safer and more reliable service as an extension.

The Concerns:

  • There were some rulesets that had HTTPS to HTTPS redirects, causing the potential shady realm of valid urls being pointed to places they potentially should not
  • Some of these rulesets were originally acting as a redirect service for site devs/admins who may not have properly routed their CDNs
  • Many of these rulesets come from more older conventions of the encrypted web
  • For example:
  1. When site devs forgot to add www and proper redirects to the host from www urls
  2. secure.example.com urls

Reasoning:

  1. The main reason is to truly return to the initial nature of the plugin. And that is to safely port the user from un-encrypted to encrypted connections.
  2. Many of the original concerns around bad SSL errors have been addressed with: Disable per site #16546
  3. Also, there is a future for the plugin to serve in other capacities. And for that to happen as a reliable source in these plans, we need to work together to make sure the plugin does exactly as intended.
  4. This cleaning also reaffirms our promise to the user that the plugin does exactly what it says

Plan

  1. I will tag in and reference the original contributors for certain complex rulesets before any changes get merged in
  2. As review occurs, I will keep up tests for the rulesets as any changes that may come in
  3. After testing, we can move forward to merge

@zoracon
Update Aeriagames Ruleset
795e62f
@zoracon
Merge branch 'master' of github.com:EFForg/https-everywhere into http…
ce11c34 
…s-from-refactor
@zoracon
Add test urls to Aeriagames.xml
602943a
@zoracon
Remove HTTPS to HTTPS rule
476b736
@zoracon
Remove overlapping rules and fix syntax error
a982594
@zoracon
Add more test URLS
e9bea46
@zoracon
Fix typo
b5f210c
@zoracon
Merge branch 'master' of github.com:EFForg/https-everywhere into http…
fba7c6a 
…s-from-refactor
@zoracon
Remove HTTPS to HTTPS redirects in BME xml files
908615c 
- To move the plugin to a place where it's redirecting valid urls
- Downgrading in case of major SSL issues has been addressed with EFForg#16546
@zoracon
Remove HTTPS to HTTPS rule
2d820c6
@zoracon
Remove HTTPS to HTTPS redirects
91680e1 
- Many old redirects removed from the "www" poor redirection days
- Old CDN urls removed
- Redundancy removed
- Removed inavlid or miscongigured cert URLs
@zoracon
Amend comments and clean edge cases
4c2bb2d
@zoracon
Refactoring ruleset
6006421
@zoracon
Amend rulesets with faulty tests and domain hosts
83ad1f6 
- Mainly older rulesets that did not have enough tests, expired domains, or redundant tests
@zoracon
Clean ruleset test urls
571f048
@zoracon
Amend for tests
6484b29
@zoracon
Amend tests
6a19228
@zoracon
Amend secure urls test
c4e673f
@zoracon
Amend typo
65c40a9
@zoracon
Remove duplicate rulesets
e3c69bd
@zoracon
Merge branch 'master' of github.com:EFForg/https-everywhere into http…
11bf2e2 
…s-from-refactor
@zoracon zoracon self-assigned this Oct 18, 2018
@Hainish Hainish added the top-1k label Oct 18, 2018
@zoracon
Copy link
Contributor Author

zoracon commented Oct 22, 2018

@Hainish @J0WI @Bisaloo
Above I have explained this PR and the reasoning behind it.

A lot of the original contributors to these rulesets are no longer on Github. So when any of you have a chance, possibly take a look at some of the refactored rulesets that had some further nuance, complicated regex, and rules; I'd greatly appreciate any feedback. I am just making sure i follow typical conventions and documentation

In particular: These files

@J0WI
Copy link
Contributor

J0WI commented Oct 24, 2018

I did not yet review all files, but here are some things I noticed:

  • Is it worth to apply these updates to default_off rules?
  • Applying a generic redirect to a rule that contains a wildcard target can have negative side effects (breaking not yet listed subdomains).

@zoracon
Copy link
Contributor Author

zoracon commented Oct 26, 2018

I did not yet review all files, but here are some things I noticed:

* Is it worth to apply these updates to `default_off` rules?

* Applying a generic redirect to a rule that contains a wildcard target can have negative side effects (breaking not yet listed subdomains).

I can definitely go back and leave the ones that were already off. I must admit, I started these changes when I didn't fully get the default off feature, but now I do. So I can condense the PR some for that. I can go back over the rulesets that had wildcards and see what can be amended there as well. Thank you for the feedback.

@zoracon
Revert changes on Default off rules
8fd6b44 
The changes here are not needed since these rules were previously turned off
@zoracon
List out working targets for Aeriagames ruleset
1f6cc82
@zoracon zoracon merged commit 7b27444 into EFForg:master Nov 1, 2018
zoracon added a commit to zoracon/https-everywhere that referenced this pull request Nov 1, 2018
@zoracon
Set return for URLS that are already HTTPS
8e2c496 
This follows up on the work in PR EFForg#16924
@zoracon zoracon mentioned this pull request Nov 1, 2018
Merged
@Bisaloo Bisaloo mentioned this pull request Nov 2, 2018
Closed
jsha pushed a commit that referenced this pull request Nov 2, 2018
@zoracon @jsha
Set return for URLS that are already HTTPS (#17010)
b056c3d 
This follows up on the work in PR #16924
@zoracon zoracon mentioned this pull request Nov 5, 2018
Merged
@Bisaloo Bisaloo mentioned this pull request Nov 8, 2018
Closed
69 tasks
@zoracon zoracon deleted the https-from-refactor branch November 14, 2018 22:54
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@Bisaloo Bisaloo Bisaloo left review comments

@J0WI J0WI J0WI left review comments

Assignees

@zoracon zoracon

Labels
enhancement ruleset-enhancement top-1k
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@zoracon @J0WI @Bisaloo @Hainish