XF 1.2 SSL does not work

[Robby]

I have tried several things on my website forums.hidemychat.com but the ssl doesnt work, the wordpress installation does it well.
I followed this thread but no luck--->http://xenforo.com/community/threads/xenforo-always-use-ssl.36180/#post-411628

Anybody knows how to install an ssl certificate on xenforo plz?

 

[Jeremy]

@Cala_Marie just got XenForo to run under SSL completely, however, I haven't messed with XenForo and SSL.

 

[Robby]

forums.digitalpoint.com is also on ssl so it must be possible...
Any thaughts?

 

[Jeremy]

I have no more insight than what's already posted on the forums, unfortunately. @digitalpoint may also make his way here to comment.

 

[digitalpoint]

It doesn't have anything to do with XenForo... XF doesn't care if it's SSL or not, it's your web server that you need to configure/install SSL cert on, not XenForo.

 

[Robby]

It doesn't have anything to do with XenForo... XF doesn't care if it's SSL or not, it's your web server that you need to configure/install SSL cert on, not XenForo.

That's allready done, see the homepage-->www.hidemychat.com

 

[digitalpoint]

So I guess then what exactly is the issue/error you are getting when using XenForo on SSL?

 

[Robby]

So I guess then what exactly is the issue/error you are getting when using XenForo on SSL?

It's not showing it refers to http and not https

 

[Robby]

I'm asking my host for advice, maybe it's the crt that's only for domain and not subdomain?

 

[SneakyDave]

Did you set your board URL to https://?

You can try setting it to: //yoursite.com/xfroot

Leaving off the http: or https:

 

[digitalpoint]

Also, the certificate you have installed for the forums sub-domain is only intended for the www sub-domain, so you get an invalid certificate error.

 

[SneakyDave]

It looks like perhaps your web server isn't rewriting your SSL files correctly. You may have to copy your setup for non-SSL to match SSL. I think all of your SSL files are being rewritten to your wordpress installation.

 

[Cala_Marie]

For whatever it's worth, this is the .htaccess file I have in my web root (public_html or www most of the time):

# Set default error pages
ErrorDocument 401 default
ErrorDocument 403 default
ErrorDocument 404 default
ErrorDocument 500 default

<IfModule mod_rewrite.c>
RewriteEngine on
        # Remove www prefix
        RewriteCond %{HTTP_HOST} ^www.*REMOVED*.net$ [NC]
        RewriteRule ^(.*)$ https://*REMOVED*.net/$1 [R,L]

        # Force SSL
        RewriteCond %{HTTPS} !=on
        RewriteRule ^/?(.*) https://*REMOVED*.net/$1 [R,L]

        # xenForo rules
        RewriteCond %{REQUEST_FILENAME} -f [OR]
        RewriteCond %{REQUEST_FILENAME} -l [OR]
        RewriteCond %{REQUEST_FILENAME} -d
        RewriteRule ^.*$ - [NC,L]
        RewriteRule ^(data/|js/|styles/|install/|favicon\.ico|crossdomain\.xml|robots\.txt) - [NC,L]
        RewriteRule ^.*$ index.php [NC,L]

        # Prevent direct usage of resources on other websites
        RewriteCond %{HTTP_REFERER} !^$
        RewriteCond %{HTTP_REFERER} !^http://*REMOVED*.net/.*$      [NC]
        RewriteCond %{HTTP_REFERER} !^http://*REMOVED*.net$      [NC]
        RewriteCond %{HTTP_REFERER} !^http://www.*REMOVED*.net/.*$      [NC]
        RewriteCond %{HTTP_REFERER} !^http://www.*REMOVED*.net$      [NC]
        RewriteRule .*\.(jpg|jpeg|gif|png|bmp|woff|eot|svg|ttf|otf|mp3|ogg|wav|flac)$ - [F,NC]
</IfModule>

# Other stuff
Options -Indexes

The only xF settings that I've had to change are URLs. Do you have access to your web server's (Apache, nginx, etc.) log files? You could check them for errors. If you can't you should have your host's support staff take a gander at them.

 

[Robby]

Hello,

I think i know what the ^problem is:

The ssl certificate was clearly only for the primary domain and not for the subdomain.
I thaught it was for all subdomain also.
So i think i have to buy another certificate.

 

[SneakyDave]

There are some certificates you can by that can be used for the whole domain, but I can't recall which companies sell them.

 

[SneakyDave]

Shawn (@digitalpoint) mentions a wild card SSL certificate here:

http://xenforo.com/community/threads/donations-for-shawns-coffee-pot.43542/page-5#post-468907

 

[Robby]

Hello,

I found a better solution, i just moved the pad of the forums so no longer a subdomain.
Works like a charm.
Thanks for all responses.