Auth use request.requires_https, thanks Yarin

VERSION

@@ -1 +1 @@
-Version 2.0.9 (2012-10-04 21:51:53) dev
+Version 2.0.9 (2012-10-05 07:18:29) dev

gluon/globals.py

@@ -128,7 +128,7 @@ class Request(Storage):
         and secure the session.
         """
         if not global_settings.cronjob and not self.is_https:
-            session.forget()
+            current.session.forget()
             redirect(URL(scheme='https', args=self.args, vars=self.vars))
 
         current.session.secure()

gluon/tools.py

@@ -1070,9 +1070,8 @@ class Auth(object):
         session = current.session
         auth = session.auth
         self.user_groups = auth and auth.user_groups or {}
-        if secure and not request.is_https:
-            session.secure()
-            redirect(URL(args=request.args,vars=request.vars,scheme='http'))
+        if secure:
+            request.requires_https()
         if auth and auth.last_visit and auth.last_visit + \
                 datetime.timedelta(days=0, seconds=auth.expiration) > request.now:
             self.user = auth.user