I got great help from the following links and almost made all sites https enabled. But my effort for 3 nights is not going anywhere. Any help would be greatly appreciated.
http://community.elgg.org/discussion/view/576874/how-to-add-ssl-to-my-elgg-site
http://community.elgg.org/discussion/view/1442318/https-works-fine-but-homepage-graphics-are-gone
My problem is that the simplified menu with https is not working.
For example, https://mysite.com/faq gives the following error:
The requested URL /faq was not found on this server.
1- Changed 'Site URL' to https://MYSITE.com/ in admin's 'Settings'->'Advanced settings'
2- Enabled 'Enable HTTPS logins' in admin's 'Settings'->'Advanced settings'
3- in .htaccess file added at the top:
RewriteEngine On
RewriteCond %{SERVER_PORT} 80
RewriteRule ^(.*)$ https://www.MYSITE/$1 [R,L]
Again, thank you for your help.
info@elgg.org
Security issues should be reported to security@elgg.org!
©2014 the Elgg Foundation
Elgg is a registered trademark of Thematic Networks.
Cover image by RaĆ¼l Utrera is used under Creative Commons license.
Icons by Flaticon and FontAwesome.
- Nikolai Shcherbin@rivervanrain
Nikolai Shcherbin - 0 likes
- kyle814@mskonan
kyle814 - 0 likes
- Matt Beckett@Beck24
Matt Beckett - 0 likes
- kyle814@mskonan
kyle814 - 0 likes
- Matt Beckett@Beck24
Matt Beckett - 0 likes
You must log in to post replies.1 - Don't edit .htaccess. Redirect must work w/o any changes in it.
2 - Make sure you have SSL certificates for your website.
3 - Once you get the certificates check the Enable HTTPS logins.
4 - Did you configurated your Apache VirtualHost?
1 - Don't edit .htaccess. Redirect must work w/o any changes in it.
I tried the original .htaccess, but it didn't help.
I also found this comment in .htaccess:
# If you're not running Elgg in a subdirectory on your site, but still getting lots
# of 404 errors beyond the front page, you could instead try:
#
#RewriteBase /
This is actually what I'm getting. So I uncommented 'RewriteBase /', but it didn't work.
Sean Donovan made this comment: "To enable https everywhere on your site and ONLY if your elgg installation is in a subdirectory, add to the .httaccess file the follow:" http://community.elgg.org/discussion/view/576874/how-to-add-ssl-to-my-elgg-site
I'm still struggling with these two comments. My installation is in /var/www/ (top level). So if Sean is right, https in whole site seems to be difficult. But based on the comment in .htaacess, it would be possible. But somehow 404 errors seem to be common. RewriteBase / didn't help.
2 - Make sure you have SSL certificates for your website.
https://mysite.com (top level) and other sites (eg. https://mysite.com/engine/handlers/page_handler.php?handler=faq ) are working for https. I think my SSL certificate is fine.
3 - Once you get the certificates check the Enable HTTPS logins.
I did this part.
4 - Did you configurated your Apache VirtualHost?
I followed the instruction found here: https://www.digitalocean.com/community/articles/how-to-create-a-ssl-certificate-on-apache-for-ubuntu-12-04
You should ideally have the redirect from http to https in your .htaccess, I think you have it in the wrong place though. It should be the first rule applied, it looks like you have it last.
FINALLY,,, figured it out.
https://help.ubuntu.com/community/EnablingUseOfApacheHtaccessFiles
It was about Apache setting to access .htaccess
"You need to modify the line containing AllowOverride None to read AllowOverride All"
Thank you all for your comments.
Glad you got it figured out, thanks for posting your solution.