XF 1.4 Https and SSL


Active member
Have I understood this correctly?

If I install an SSL certificate and enable the image proxying that will take care of any issue regarding loading images outside of the secure area?


Active member
So install the cert, enable image proxy add this code.

RewriteCond %{HTTPS} off
RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
Job done.

Thanks Brogan!

Gene Steinberg

Well-known member
OK, I enabled image proxy.

I added the code in the /forum folder.

I enabled HTTPS everywhere I can see to enter it in your setup. I fixed it in logo link, links to ads that I can control, etc., etc.

I have a proper SSL (www.theparacast.com/forum). But the lock box only shows in the admin area.

So what do I do next?

Gene Steinberg

Well-known member
OK, in Firefox and Chrome, current versions.

Opera wants to block "insecure content" unless I agree to allow.

Latest Safari (I can't tell you how late) on Mac doesn't show lock, nor does Safari for IOS 8.1.1 on my iPhone.

Gene Steinberg

Well-known member
I fixed every internal link I could find that wasn't HTTPS, but I have no control over links to external sites for ads. So what does one do? Does this "mixed" message hurt traffic?


XenForo moderator
Staff member
Well for a start there is little point in paying for an SSL cert if you're not going to implement it properly.

Contact the ad providers and check whether that have an HTTPS compatible service.

Gene Steinberg

Well-known member
Well, it was a 98 cent deal from Namecheap, so it's no huge loss. I did temporarily switch back to regular settings and will await further communication from ad providers.