I'm trying to setup Let's encrypt SSL for a Magento website at
https://turbofun.no/
It shows SSL correctly. However, the problem is if i access it using
http://turbofun.no/
It shows normal page without https. I think it should automatically redirect viewer to https because it is homepage.
I read some topics about adding rewrite rules to redirect all http to https but i just want to use https on homepage, checkoutpage, customer login page.
Do you know what i missed in configuration? Thank you
Related
I'm trying to set up an OAuth Flow integration with another site and the redirect URL they have set up for me to test the integration is 'https://localhost:3000'. When redirected back to this link, the page doesn't show my localhost, it just gives Google's "This site can’t provide a secure connection" page. Is there a way to access localhost on https? or do I need to ask the integration site to change my redirect URL?
I added laravel’s built-in authentication to an existing project. This is a local project without certificates.
After login I was redirected to the dashboard page but chrome showed an “ERR_SSL_PROTOCOL_ERROR” message. I looked into it for a couple of hours and I found that the dashboard's page was opening as HTTPS, when I changed the url to HTTP It showed the dashboard page. For some reason the auth’s routes are being redirected to the site as HTTPS.
I'm new to laravel and I don't understand what’s happening.
I did some reverse engineering and found that in my AppServiceProvider were the configurations that redirected my routes to HTTPS.
Load Blade assets with https in Laravel
My entire website is under HTTPS. Any HTTP URL will be redirected to corresponding HTTPS link.
When I set up redirect URLs in Google and Facebook, only HTTP URLs match. How can I configure Spring Social to let Facebook or Google match redirect HTTPS URLs?
Sorry there is no simple solution yet. There are tickets open here: URIBuilder does not respect x-forwarded headers and here Redirect URL generation behind proxy server
The later one has a brief description which classes to override as workaround.
I'm using basic authentication on my site, which does a simple windows popup asking for username and password. I'm wondering if there's a way to redirect http traffic to https traffic before this popup? Currently, i'm using a custom redirect error page, so when someone goes to http://www.mysite.com/ the popup comes up and asks for username password, and after they enter it the page redirects http traffic to https. But i'm assuming that password is sent in clear text, since the redirect is happening after the login attempt.
I've tried playing with IIS, and javascript on the page itself, but it seems the popup is happening before any of that comes into play. Is there anyway to redirect before that popup comes up?
Thanks!
I know this is old but here is how I managed to achieve this for anyone who would need the same.
Remove the HTTP bingind on the target domain's virtual server
Create a second virtual server for the same domain with only HTTP binding
Add a rewrite rule to the new virtual server that redirects all trafic to the HTTPS version of the domain
This is the only straight forward way i found and it is probably the simplest.
Voila!
I have a site (built on LAMP (cakephp) and has ssl certificate installed) which has a secure payment page. After filling up necessary information user proceeds to a payment gateway page. After all the process at the gateway end, gateway redirects to one of my URL, which I have to mention with a payment request.
Now when I keep this url as http redirect happens properly and all the sessions are maintained. But I want to make this page as https, and when the payment gateway redirects to the https version of the URL, my session information dies and I get redirected to my home page.
eg: my payment page
https://www.mysite.com/payment
from here user goes to the payment gateway site, does necessary things and payment gateway redirects it to
http://www.mysite.com/paymentResponse (this url i have to mention in the request)
now i have to make this as HTTPS, but when I do that my session info dies
Plz help me
Thanks,
Dinesh
I don't know why it supposedly works for plain HTTP requests, but the problem may be related to Configure::write('Security.level') being set to medium or high, which activates PHP's session.referer_check, which may be the reason sessions are dying for you when being redirected from external sites.