racetoni2 Posted October 1, 2015 Report Posted October 1, 2015 How can i force blesta to use SSL? Quote
0 motuka Posted November 8, 2015 Report Posted November 8, 2015 Well done mate never heard of HTTP:X-Forwarded-Proto before. I read it somewhere in stackoverflow, but did not try it. Was looking also how to redirect all requests to https. Quote
0 Paul Posted November 9, 2015 Report Posted November 9, 2015 I read it somewhere in stackoverflow, but did not try it. Was looking also how to redirect all requests to https. Are you using a proxy server / load balancer? Quote
0 motuka Posted November 9, 2015 Report Posted November 9, 2015 Are you using a proxy server / load balancer? No. Why? I actually got mine working. All requests are redirected to https:// www. my-domain .tld Quote
0 Paul Posted November 9, 2015 Report Posted November 9, 2015 No. Why? I actually got mine working. All requests are redirected to https:// www. my-domain .tld Sounded like you may be based on the header.. but that's alright, if it's working, great! Quote
0 motuka Posted November 10, 2015 Report Posted November 10, 2015 Sounded like you may be based on the header.. but that's alright, if it's working, great! .htaccess 301 Quote
0 Serendesk Posted November 11, 2015 Report Posted November 11, 2015 How can i force blesta to use SSL? Hi mate, I do this using the web server only but have to make sure that Blesta is never configured to handle it (otherwise redirect looping occurs). All order pages have Force Secure Connection (HTTPS) un-checked. For those that are using nginx: #catch all http 80 and redirect to https 443 server { listen 80; return 301 https://$host$request_uri; } Quote
0 motuka Posted November 17, 2015 Report Posted November 17, 2015 Hi mate, I do this using the web server only but have to make sure that Blesta is never configured to handle it (otherwise redirect looping occurs). All order pages have Force Secure Connection (HTTPS) un-checked. For those that are using nginx: #catch all http 80 and redirect to https 443 server { listen 80; return 301 https://$host$request_uri; } Most resellers have no access to root. So the easiest way is .htaccess Serendesk 1 Quote
0 motuka Posted November 18, 2015 Report Posted November 18, 2015 And I did not use the internal .htaccess for this: in other words, I left those two lines commented: I then added this immediately after RewriteEngine on #First rewrite any request to the wrong domain to use the correct one (here www.) RewriteCond %{HTTP_HOST} !^www\. RewriteRule ^(.*)$ https://www.%{HTTP_HOST}%{REQUEST_URI} [L,R=301] #Now, rewrite to HTTPS: RewriteCond %{HTTPS} off RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301] ****This redirects all requests to https://www, if you want you can modify it. Quote
Question
racetoni2
How can i force blesta to use SSL?
33 answers to this question
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.