XF 1.4 Https and SSL

[OldCoals]

Have I understood this correctly?

If I install an SSL certificate and enable the image proxying that will take care of any issue regarding loading images outside of the secure area?

 

[Paul B]

Yes.

You will also need to implement an .htaccess redirect - see the FAQ in my signature for that.

 

[OldCoals]

So install the cert, enable image proxy add this code.

RewriteCond %{HTTPS} off
RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

Job done.

Thanks Brogan!

 

[Gene Steinberg]

OK, I enabled image proxy.

I added the code in the /forum folder.

I enabled HTTPS everywhere I can see to enter it in your setup. I fixed it in logo link, links to ads that I can control, etc., etc.

I have a proper SSL (www.theparacast.com/forum). But the lock box only shows in the admin area.

So what do I do next?

 

[Paul B]

It shows fine for me.

 

[Gene Steinberg]

OK, in Firefox and Chrome, current versions.

Opera wants to block "insecure content" unless I agree to allow.

Latest Safari (I can't tell you how late) on Mac doesn't show lock, nor does Safari for IOS 8.1.1 on my iPhone.

 

[Paul B]

It's probably something to do with the ad scripts you are running.

 

[Gene Steinberg]

I fixed every internal link I could find that wasn't HTTPS, but I have no control over links to external sites for ads. So what does one do? Does this "mixed" message hurt traffic?

 

[Paul B]

Well for a start there is little point in paying for an SSL cert if you're not going to implement it properly.

Contact the ad providers and check whether that have an HTTPS compatible service.

 

[Gene Steinberg]

Well, it was a 98 cent deal from Namecheap, so it's no huge loss. I did temporarily switch back to regular settings and will await further communication from ad providers.