Enable SSL in Bludit

Post Reply
User avatar
abdulhalim
Master Bludit
Posts: 110
Joined: Thu Mar 10, 2016 6:25 pm

Hello Guys,

Recently I changed my Webhosting, the major change in my new host is cPanel -> DirectAdmin, So everything is OK now.
I need to enable SSL, I did everything in the server-side, my question is: Do I need to migrator plugin? or the only changing the URL in the site.php is enough?
And by this changing website works fine but the SSL lock warns that website has mixed-content (Parts of this page is not secure ...), how can I resolve this message from FF?

https://bludit.ir/blog/
https://docs.bludit.ir/

Regards,
Abdulhalim
User avatar
Edi
Site Admin
Posts: 2083
Joined: Sun Aug 09, 2015 5:01 pm
Location: Zurich
Contact:

The logo in the top navigation bar has the URL http://bludit.ir/img/bludit-logo.svg and is therefore not secured. You have to fix it in the theme.

You can check the content with the developer tools in Chrome.
Planet Bludit, Tipps, Snippets und nützliche Links. - Newsletter, Informationen zu Bludit (auf Deutsch).
kosi77
Ssr. Bludit
Posts: 28
Joined: Wed Jan 30, 2019 7:23 am

I think you will have no problems using this:

Code: Select all

RewriteCond %{HTTPS} on
RewriteCond %{HTTP_HOST} ^www\.(.+)$ [NC]
RewriteRule ^ https://%1%{REQUEST_URI} [R=301,L]
It works very well for me.
User avatar
abdulhalim
Master Bludit
Posts: 110
Joined: Thu Mar 10, 2016 6:25 pm

Thank you for respond
I did it before but I had some mixed-content, actually, I had some menu links and content in HTTP, I change them to https, so everything is work perfectly
Stratego
Jr. Bludit
Posts: 3
Joined: Wed Jun 03, 2020 8:05 pm

Hello

@kosi77

In which file, have I to paste this code ?


Code: Select all

RewriteCond %{HTTPS} on
RewriteCond %{HTTP_HOST} ^www\.(.+)$ [NC]
RewriteRule ^ https://%1%{REQUEST_URI} [R=301,L]
In fact, I've installed SSL certicication (hosting side) but my website still unsecured.

I've to know if this code is the solution

Thank you for your help
User avatar
Edi
Site Admin
Posts: 2083
Joined: Sun Aug 09, 2015 5:01 pm
Location: Zurich
Contact:

Stratego wrote: Mon Aug 31, 2020 12:55 pm In fact, I've installed SSL certicication (hosting side) but my website still unsecured.
Have you set http to https at "Settings" > "General" > "Advanced" > "Site URL"?

The redirect from http to https can often be set in the admin panel. Which admin panel is installed?
Planet Bludit, Tipps, Snippets und nützliche Links. - Newsletter, Informationen zu Bludit (auf Deutsch).
User avatar
Jay
Master Bludit
Posts: 110
Joined: Mon Feb 11, 2019 8:41 pm

abdulhalim wrote: Fri Feb 21, 2020 4:17 pm Thank you for respond
I did it before but I had some mixed-content, actually, I had some menu links and content in HTTP, I change them to https, so everything is work perfectly
You could try with excplicitly adding HSTS to headers so that all requests over http protocol are automatically and silently switched to https.
This should work with all existing hardcoded content without the hassle to edit it again.

You could try to add below line to your htaccess file

Code: Select all

Header set Strict-Transport-Security "max-age=31536000" env=HTTPS
I didn't test it with mixed content as all my content is served through https since the beginning. Would be great to know if it works on different hosting environments.
Post Reply