Extension:HttpsLogin

Passwords should never be transmitted through a plain HTTP connection since an eavesdropper might be able to get your password. Using HTTPS is a solution but adds an additional load to your servers (for the encryption) so you don't want to use https if you are on "normal" pages. This extension does just that: It redirects the user to use HTTPS when using the login page, and redirects him/her to HTTP when viewing pages that won't transmit your password.

Download
The most recent version of this extension is always available in the httpsLogin-directory of our SVN-Repository. You may also find releases for different (older) MediaWiki-versions in the tags-Directory.

Installation & Configuration
Before you go forward with installing this extension, you should make sure that your wiki is working fine with both HTTP and HTTPS. Otherwise, results may be unpredictable.

Other than that, the installation is straight forward:
 * Download the sourcecode into your extensions/ directory
 * simply include the File in LocalSettings.php:

1.0
first version documented here. The code has been stable since at least 1.8 or so.

ToDo

 * Some pages other than Special:Userlogin transmit the password, they should be switched to https to. If anyone wants to contribute, contact me.
 * do better & automatic translations

License
GPLv2

A lot of the sourcecode of this extension originally comes from here.