Moving WordPress from http to https over existing site

Some of the things I have to double-check when I install an SSL certificate on a WordPress website are:

Define SSL settings in wp-config.php to override WordPress database settings

/** SSL Security */
define('FORCE_SSL_LOGIN', true); // Secure user registration/login forms after installing valid SSL
define('FORCE_SSL_ADMIN', FORCE_SSL_LOGIN); // Secure WordPress admin dashboard

/** Site Domain */
define('DOMAIN_CURRENT_SITE', filter_input(
    INPUT_SERVER,
    'HTTP_HOST', // Relative URLs for swapping across app service deployment slots
    FILTER_SANITIZE_URL //Remove all characters except letters, digits and $-_.+!*'(),{}|\\^~[]`<>#%";/?:@&=.
));
define('WP_HOME', 'http' . (FORCE_SSL_LOGIN ? 's' : '') . '://' . DOMAIN_CURRENT_SITE); // Override database value
define('WP_SITEURL', WP_HOME); // Override database value

In the .htaccess file

# AuRise: Use HTTP Strict Transport Security to force client to use secure connections only
Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"

# BEGIN AuRise 301 (permanent) Redirect from HTTP to HTTPS
RewriteEngine On
RewriteCond %{SERVER_PORT} 80 
RewriteCond %{REQUEST_URI} !^/\.well-known/acme-challenge/[0-9a-zA-Z_-]+$
RewriteCond %{REQUEST_URI} !^/\.well-known/cpanel-dcv/[0-9a-zA-Z_-]+$
RewriteCond %{REQUEST_URI} !^/\.well-known/pki-validation/[A-F0-9]{32}\.txt(?:\ Comodo\ DCV)?$
RewriteCond %{REQUEST_URI} !^/\.well-known/pki-validation/(?:\ Ballot169)?
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
# END AuRise 301 (permanent) Redirect from HTTP to HTTPS

I also want to note that if the installation is a multisite, you may need to remove the includeSubDomains; part to get it to work

I suspect the update to the .htaccess file is the one that might help in that it’ll redirect you to always view the HTTPS version of the site. However, the issue about still getting locked out may or may not be addressed. Try these and then let me know what happens lol

Related Posts:

  1. https connection using CURL from command line
  2. Simple Java HTTPS server
  3. HTTPS connection Python
  4. Java: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
  5. Issues with installing python libraries on Windows : CondaHTTPError: HTTP 000 CONNECTION FAILED for url
  6. Local version of a WordPress site – SSL/HTTPS enforced?
  7. bloginfo() and get_template_directory_uri() with SSL?
  8. After updating site to use SSL all images in posts point to http://
  9. Adding https to wordpress website
  10. SSL setup: wp-login css doesn’t load over httpS
  11. In WP versions >= 4.0, is FORCE_SSL_LOGIN forcing HTTPS for the entire admin session?
  12. Occasional HTTPS Mixed Content Warning
  13. Divert http to https with WordPress on IIS
  14. WordPress : To load all asset files coming from HTTP to HTTPS?
  15. I changed my site from HTTPS back to HTTP and now it is broken- Cannot access Admin panel on HTTP URL
  16. un-loading https
  17. WordPress site shows “File not found.” if opened through https
  18. Address a single page to SSL https secure protocol?
  19. wordpress http to https windows server
  20. Jetpack “Connect to WordPress” serving insecure content under HTTPS
  21. Allow non-SSL pages to use https or Force non-SSL pages to http?
  22. Website access with http and https
  23. Need ideas for HTTPS multiple domain solution
  24. How to control SSL in WordPress for automatically changing http to https?
  25. All content is HTTPS, but browsers warn of HTTP mixed content [closed]
  26. How do I handle SSL properly when WP is behind a reverse proxy?
  27. Hi do I change Media files that still show as http after installing ssl
  28. ERR_TOO_MANY_REDIRECTS on wordpress page [closed]
  29. URLs not being output with https
  30. Website Migration (with https) to a new domain(http)
  31. How to move my local wordpress to https?
  32. Why does WordPress uses HTTPS for JS, CSS on EC2
  33. Implications of not completing all tasks when switching to HTTPS
  34. SSL Certificate
  35. Front-end pages messed up due to HTTPS
  36. How to send user data from one website to another
  37. How come all my http URLs are turned to https?
  38. Forcing SSL (Bad Theme coding)
  39. How to switch static files back to using HTTP instead of HTTPS?
  40. My WordPress site SSL is in red crossed color and can’t load at first time?
  41. SSL/HTTPS Redirect Loop
  42. The plain HTTP request was sent to HTTPS port in wordpress [closed]
  43. iHow to redirect all http traffic to https now that a SSL certificate is added?
  44. How to force static assets with HTTP sources to load over HTTPS?
  45. Properly setting up a “default” nginx server for https
  46. Changing my URL in General Settings cause the site to crash
  47. wordpress is auto using http: not https: as it needs to because the server is http behind a reverse proxy https, how do I stop it?
  48. NET::ERR_CERT_REVOKED in Chrome, when the certificate is not actually revoked
  49. How to generate a self-signed SSL certificate using OpenSSL?
  50. Convert .pem to .crt and .key
  51. What exactly is cacert.pem for?
  52. OpenSSL: unable to verify the first certificate for Experian URL
  53. WordPress wp-admin https redirect loop
  54. Switching MultiSite installation from HTTP to HTTPS
  55. Howto force SSL for all requests?
  56. Is there a way to force ssl on certain pages
  57. SSL breaks customizer: page isn’t returned from ajax
  58. Disable all https in WordPress
  59. Force HTTPS using .htaccess – stuck in redirect loop
  60. Favicon causes mixed content warning over SSL
  61. Globally force SSL on all pages
  62. WordPress Move to SSL How to Update Media Assets to HTTPS?
  63. WordPress redirect loop on nginx + apache reverse proxy
  64. Enabling SSL on wordpress results in 404
  65. SSL: How to make customizer images Protocol Relative in WordPress?
  66. AJAX requests broken due to HTTPS for wp-admin
  67. Enable Full SSL for WordPress
  68. WordPress Dashboards: slowness and timeouts
  69. Https Redirect infinite loop in Mobile browsers
  70. 403 error on admin login page
  71. XML asset fails to load using https
  72. How to set up HTTPS WordPress from Install Step?
  73. Htaccess file isn’t redirecting http sub-pages to https––they display 404 error instead, tried many solutions and none work
  74. I could not access my website wp-admin after installing SSL. And error with mixed content
  75. SSL certificate error on Google Chrome , IE [closed]
  76. Too many redirects after added SSL redirect on port 80 virtual host
  77. Images loading over http instead of https
  78. ReDirect subfolder link to another sub-folder and force SSL
  79. Redirect the whole blog to SSL but not the RSS feed (under Nginx)
  80. Domain Mapping for WordPress MU and https redirection – How to?
  81. How to keep WP from using https to get to wordpress.org?
  82. WordPress CSS/Theme gone after SSL got activated
  83. Disable WordPress accessing WordPress.org to check for updates
  84. How to protect login via SSL but not the rest of the dashboard
  85. The REST API request failed due to an error. cURL error 60: SSL certificate problem: certificate has expired
  86. Do I install WordPress from my Cpanel on https or http, if my website has valid certificate?
  87. SSL not working fine, Home url not matching with site url wordpress errors
  88. ERR_SSL_PROTOCOL_ERROR
  89. site on subdomain is redirecting to main site after installing wildcard ssl cert on both
  90. Create a new hyperlink to wordpress blog
  91. WordPress Insecure Content
  92. SSL certificate breaks CSS (in combination with W3TC)
  93. My site thinks it’s secure when it is fact not
  94. I would like to add ssl certificate to my already existing wordpress site
  95. How do I secure a subdomain using UCC SSL?
  96. Serve HTTPS requests from subdomain
  97. Generate all urls with https
  98. Issue when site move from ssl domain to new domain without ssl
  99. Does each server behind a load balancer need their own SSL certificate?
  100. How to force HTTP and stop SSL completey on WordPress website