WebSite X5Help Center

 
Andy Foot
Andy Foot
User

Force website to use https  en

Autor: Andy Foot
Visitado 2074, Followers 1, Compartido 0  

How about an option to force the website to display the https version rather than http.

Similar to the error 404 page it only needs to add the short script to the .htaccess file

It's one on of those simple things that is easily missed and I would imagine a very simple addition to the program.

currently I have to edit the .htaccess file myself and just add the following code but it would be nice for the software to take care of this as pretty much every website now needs https.

#Rewrite everything to https
RewriteEngine On
RewriteCond %{HTTPS} !=on
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

Many thanks

Andy

Publicado en
4 RESPUESTAS - 1 ÚTIL
Luis J.
Luis J.
User

this would be a server side configuration - nothing to do with the website x5 application.

Leer más
Publicado en de Luis J.
Andy Foot
Andy Foot
User
Autor

So completely different to custom 404 error pages, which website x5 handles perfectly?

Surely it's just a bit of text in your .htaccess file

# WebSite X5 - Start Code [do not edit]

ErrorDocument 404 /page-404.html

# WebSite X5 - End Code

Leer más
Publicado en de Andy Foot
Franz-Josef H.
Franz-Josef H.
Moderator

It is more than to put some lines in the htaccess-file. First, you need a special “SSL/TLS certificate” from the website’s Server as well as  changiing the URL of the website from http to https in the WebsiteX5 project. I think WebsiteX5 cannot check if the website has the certificate... 

Leer más
Publicado en de Franz-Josef H.
Andy Foot
Andy Foot
User
Autor

I would have assumed that a checkbox "Force https if you have this enabled" would work.

Most people really should already be using https by now and the decent hosts offer this free of charge.

I know some people are still not using https but would hope that they would be intelligent enough not to tick the box! 

If you are using custom 404 pages Website X5 already creates an .htaccess file and at first upload warns that the .htaccess file will be changed if you already have one. So you then have to go and re-check the .htaccess file manually just to make sure that your https rewrite is still intact. (It always is but you feel you need to check just to be sure)

It's only a suggestion for what I would consider a "useful" addition to the program. I'm quite happy to continue to do this manually, but the software takes care of so many other simple tasks I thought it might be a good idea to add something like this as surely the majority of users would find it helpful, especially those less experienced who are a little wary of manually editing code.

Leer más
Publicado en de Andy Foot