In general, some pages in an application should be https access only, the rest are good for http.
Tapestry should manage this automatically, using configuration, or an annotation, on pages to indicate they need to be protected via https.
A rare case is a form, usually a login form, that is duplicated throughout the application on otherwise non-protected pages. The Form component needs a parameter to force the submit request to be HTTPS.
|Field||Original Value||New Value|
|Assignee||Howard M. Lewis Ship [ hlship ]|
|Status||Open [ 1 ]||In Progress [ 3 ]|
|Resolution||Fixed [ 1 ]|
|Fix Version/s||5.0.11 [ 12312968 ]|
|Status||In Progress [ 3 ]||Closed [ 6 ]|
|Workflow||jira [ 12417449 ]||Default workflow, editable Closed status [ 12568497 ]|
|Workflow||Default workflow, editable Closed status [ 12568497 ]||jira [ 12591545 ]|