XF 1.4 https for Xenforo

[SnoSheriff]

I notice that XF resolves on https. Same goes for Google. How do I make this happen on my own website? What do I need to do? Thanks.

 

[tajhay]

SSL certificate

 

[SnoSheriff]

What are the steps required to make my XF website resolve at HTTPS

 

[MattW]

Buy a certificate, install it on your webserver, and then force all traffic to use HTTPS.

 

[Rum Runner Entertainment]

I would just like to add on to what @MattW said, also make sure your images are all coming from links with SSL, or as an alternative, add your images to your DB. This will keep a secure connection.

 

[Lone Wolf]

I would just like to add on to what @MattW said, also make sure your images are all coming from links with SSL, or as an alternative, add your images to your DB. This will keep a secure connection.

What happens if images are linked to from a non-secure connection?

 

[popowich]

You'll need all of your plugins & settings using HTTPS links too, and verify the sitemap generator is creating HTTPS links too.

There are plenty of examples in Google to help create a .htaccess that rewrites HTTP to HTTPS

Also, FYI, you're going to take a hit while Google is reindexing your pages as HTTPS.

I haven't looked yet, any chance there is a XenForo guide somewhere for rewriting all of your posts so you internal linking is fixed from HTTP to HTTPS after the change? (backup your DB first!)

It's one of those things that we'll all probably need to do eventually. Google is already mentioning it but it's not a significant part of rankings yet.

 

[Paul B]

What happens if images are linked to from a non-secure connection?

Enable the image proxy feature.

 

[Paul B]

any chance there is a XenForo guide somewhere for rewriting all of your posts so you internal linking is fixed from HTTP to HTTPS after the change?

The .htaccess rewrite will take care of them but otherwise you can do a simple query to replace the post content:

UPDATE xf_post SET message = REPLACE(message,'current_content','new_content');

 

[Lone Wolf]

Enable the image proxy feature.

Thanks Brogan, I'm still not sure about switching over. Any reason CTA hasnt gone https yet?

 

[Paul B]

Any reason CTA hasnt gone https yet?

I don't see the point of it for a small forum.

I couldn't care less about Google ranking, etc.

 

[Lone Wolf]

I don't see the point of it for a small forum.

I couldn't care less about Google ranking, etc.

Ok that makes sense, I'm looking to increase Google rank though so I guess it's the opposite for me.

 

[Rum Runner Entertainment]

I don't see the point of it for a small forum.

I couldn't care less about Google ranking, etc.

^ indeed. If you're running a small forum there really isn't a need for you to be running on an SSL certificate, but if you're storing credit card information or more valuable info, whatever that may be, that's what it's more on the lines.. Meant for.