Thread:Extension talk:OpenID/$wgOpenIDTrustRoot

In case a website is available via http as well as https: What should the trusted root be set to (http://www.example.com/ or https://www.example.com/)? I guess it should be the latter (https). Cheers