I have Wordpress installed on Lightsail with AWS.
My site is HTTPS from the front, but when I login via /wp-login.php or any other backend address, my site is not HTTPS anymore.
How can I force HTTPS on my site?
Related
I'm using a shared hosting website to host the website and I have a SSL certificate. When I navigate to www.example.com, I don't see the padlock and it says the website is not secure, however, if I navigate to https://example.com or http://example.com, I see the padlock and it says the website is secure.
What am I meant to do to make it so that when a user types www.example.com to be sent to the https://example.com version? Do I have to forward the domain to https://example.com or do I have to fiddle with some htaccess settings?
Check Ben's answer here:
https://stackoverflow.com/a/1270281/7118098
This is an .htaccess edit, assuming you're using Apache on your host.
The problem is that you're manually accessing https:// so it works, but accessing http:// doesn't redirect you because it's not https:// enforced.
Almost all SSL certificates secure both versions of the website (www and non-www). But, I think your web hosting provider does not offer this feature. However, you can redirect your www domain to a secure domain (I mean non-www version).
I'm trying to get my api hosted on Heroku, to be assigned to a subdomain from GoDaddy hosting.
Here's what I have setup:
The CNAME on GoDaddy:
And my heroku domains:
And when I try to browser a GET endpoint:
I'm using a development Heroku account, which comes with a free automatic ssl cert. I am pretty new to SSL certs, is there anything on need to do on the GoDaddy side besides setup the CNAME?
If I redirect to "imbibe-now.herokuapp.com", the api works, but without https.
Any tips would be appreciated!
I am using Beanstalk and an ELB with an EC2 instance of Apache web server on Linux AMI. I have edited the httpd.conf to redirect http to https requests using Rewrites, which works. I am using a certificate with website.com and www.website.com are both listed. The https terminates on elb. When I add rules for non www(eg: website.com) to redirect to https://www.website.com the redirects happen in the url but no html content loads.
Any ideas to make non www and www to redirect to https?
security groups with my instance
I have recently started using Amazon AWS for hosting my website. I have self signed ssl certificate installed for website and it's working fine. I also see correct Virtual Hosts created for this single website running on on this Amazon EC2 server. I want to redirect all the http traffic to https and for that I added:
Redirect permanent / https://mywebsite.com/ , but my website is still not getting redirected to https. Is there anything else I need to do make this work?
FYI - I am not using Load Balance and not planning to use one right now.
Your redirect should include the https protocol part. Try this:
Redirect permanent / https://mywebsite.com
I have installed ssl certificates on my site but the browsers still showing unsafe connection. However i can access a safe connection by using https:// before site url
If you want to force https you'll need to set that up.
As explained on the apache wiki the recommended method is to setup the http virtual host to redirect to the https virtual host. Alternatively, you can use mod_rewrite to redirect from http to https.