Skip to Content Skip to Menu

🎃 Happy Halloween! Treat yourself with an awesome discount! Get 20% off now with code SPOOKY-2024!

[SOLVED] How to set SSL for registered users only, not the public part

  • dhazelzet
  • dhazelzet
  • OFFLINE
  • Posts: 7
  • Thanks: 1
  • Karma: 0
11 years 9 months ago - 11 years 9 months ago #219758 by dhazelzet
Hi,
I've purchased a SSL certificate, but within CB I can only choose between the whole site or just the administrator pages (in the field Force SSL).
I would like to keep the public part as plain HTTP, no encryption, and just use SSL for the registered login and sessions.

Any way to do that?

Thanks
Last edit: 11 years 9 months ago by krileon.

Please Log in or Create an account to join the conversation.

  • krileon
  • krileon
  • ONLINE
  • Posts: 48454
  • Thanks: 8280
  • Karma: 1443
11 years 9 months ago - 11 years 9 months ago #219790 by krileon
You can't switch from HTTPS to HTTP without getting cross content browser warnings and normally takes a user action to get around this. You can try forcing it, but I've no idea how well this is going to go; at any rate try the below.

1. Edit your login module and set login to use HTTPS.
2. Use CB Auto Actions on the after login trigger in a redirect action to redirect to your desired location, but include livesite as http (e.g. http://example/index.php).

You basically could do the same with after registration trigger if you wanted to redirect after registration.

Basically the best approach is if you have SSL then use it always.


Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.
Last edit: 11 years 9 months ago by krileon.

Please Log in or Create an account to join the conversation.

  • dhazelzet
  • dhazelzet
  • OFFLINE
  • Posts: 7
  • Thanks: 1
  • Karma: 0
11 years 9 months ago #219841 by dhazelzet
THanks, that may help.
However, I am under the impression that if I make the whole site running SSL, posted public articles may not be searchable by search engines, which is what I like to achieve, and only protect the logins and registered sessions.

So, I don't want to switch from HTTPS to HTTP, but from HTTP to HTTPS once sensitive data is being handled.

Anyway, I'll give it a try, if I can find that CB Auto Actions, have only seen something like that in Groupjive, but haven't figured that out yet.

Please Log in or Create an account to join the conversation.

  • krileon
  • krileon
  • ONLINE
  • Posts: 48454
  • Thanks: 8280
  • Karma: 1443
11 years 9 months ago #219868 by krileon
SSL isn't going to hurt SEO. Google and all other search engines can index HTTPS URLs perfectly fine.

Anyway, I'll give it a try, if I can find that CB Auto Actions, have only seen something like that in Groupjive, but haven't figured that out yet.

It's in the professional downloads section.


Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.

Please Log in or Create an account to join the conversation.

  • dhazelzet
  • dhazelzet
  • OFFLINE
  • Posts: 7
  • Thanks: 1
  • Karma: 0
11 years 9 months ago #219884 by dhazelzet
OK, thanks for that confirmation, then using SSSL for the whole site is defenitely the best way to. Did get CB Auto Actions to work though.

Cheers
The following user(s) said Thank You: krileon

Please Log in or Create an account to join the conversation.

Moderators: beatnantkrileon
Powered by Kunena Forum