Setting up https for cms

3 posts by 2 authors in: Forums > CMS Builder
Last Post: October 13, 2014   (RSS)

By zaba - October 13, 2014

Hi I have installed a secure certificate on my domain, when I log in as no secure and check on the SSL checkbox, it says I can only set this if i am logged in on https:// when I log in on https to click on the box in general settings it doesn't allow me to do so and kicks out this message.

Security Warning: A link from an external source has been detected and automatically disabled.
For security links are only accepted from: http://domain.co.uk/cms/admin.php

Your browser indicated that it linked from: https://domain.co.uk/cms/admin.php

By zaba - October 13, 2014

Hi Damon,

No this did not work (I had already done that).

It may be something to do with my htaccess file which is set to redirect all to https, which may conflicting when I switch requireHTTPS on in settings

RewriteEngine On
RewriteCond %{HTTP:X-Forwarded-Proto} !https
RewriteRule ^(.*)$ https://mydomain.com/$1 [R=301,L]

Instead I have gone in to settings.dat and changed the following

'requireHTTPS' => '0',

'checkReferer' => '0',

This seems to have solved it, since the site will always go to https anyway.

I decided to have the whole site because of google recent announcement about https and its preference for this.