Hi to everyone!
As many of you, I have set up my own elgg installation (a few times).
At first times, I had trouble setting up the keys needed for https login (I tried with openssl).
This time, I didn't check the "https login" button during the installation, and it went fine.
Now that I have set the whole thing, I still want to add https login to my site.
And I would be grateful if someone replied with a guideline on how to do so.
I hope this thread helps other people with their sites, too.
Thanks in advance :-)
info@elgg.org
Security issues should be reported to security@elgg.org!
©2014 the Elgg Foundation
Elgg is a registered trademark of Thematic Networks.
Cover image by RaĆ¼l Utrera is used under Creative Commons license.
Icons by Flaticon and FontAwesome.
- JohnnyD@JohnnyD
JohnnyD - 0 likes
- zoika_blat@deavitae
zoika_blat - 0 likes
- rjcalifornia@rjcalifornia
rjcalifornia - 0 likes
- JohnnyD@JohnnyD
JohnnyD - 0 likes
- Brett@brett.profitt
Brett - 0 likes
- Cash@costelloc
Cash - 0 likes
You must log in to post replies.I think you just tick the 'Enable HTTPS logins' under Site Administration.
as far as I know it also requires installing public and private keys on your server.
Before doing any change in Elgg, make sure you have SSL certificates for your website. Talk with your hosting about them. If you try to enable https login without having the SSL certificates, it will break your site.
Only after you get the certificates, you can check Enable HTTPS logins box.
Rodolfo Hernandez
Arvixe/Elgg Community Liaison
Sorry I thought you meant you had already setup the ssl on the server.
I've always thought the login-only https feature was a bit strange. It's simpler to just make the entire site https and then redirect http to https using mod rewrite. In this case it's all server config; you wouldn't need to change anything on the Elgg side.
https login only is important for those sites that want the security for the log in but not the server load for encrypting all the pages.