wp-cli command throws error : “SSL routines:tls_process_server_certificate:certificate verify failed” while querying https website
I don’t think that the publish-action in your twitter plugin is your problem. You probably have a twitter widget or something similar, which will display your twitter posts/status on your blog page. Twitter access his API with a javascript library. Look in your sourcecode. In the HTML HEAD Element, you should see a call to … Read more
Not tested, but give it a shot: function my_em_force_ssl() { if ( ! is_ssl() && em_is_event_page() ) { wp_redirect( str_replace( ‘http:’, ‘https:’, get_permalink() ) ); exit; } elseif ( is_ssl() && ! em_is_event_page() && $_SERVER[‘REQUEST_METHOD’] === ‘GET’ ) { wp_redirect( str_replace( ‘https:’, ‘http:’, add_query_arg( $_GET, site_url( $GLOBALS[‘wp’]->request ) ) ) ); exit; } } add_action( … Read more
Maybe you have a cache issue, from my end everything work fine, I have the padlock, and when I look to the source, it show https. Good luck !
Have you checked the database? Especially “wp-options” and there the key “siteurl”. Best would probably be to do a complete dump, search for https://www.yourdomain.com and replace it with http://www.yourdomain.com
If wordpress API gives you http instead of https it means that somewhere your data still contains HTTP, therefor you might need to take a more careful look at what urls are in your DB, for this specific functions you should look at your menus. But probably the simplest way to solve this issue to … Read more
This is a pointless question. you either do a sitewide HTTPS or just don’t do it at all. Doing HTTPS for only some pages is just lying to yourself about the security of the site. You can decide to have HTTPS for only some of your users, but you can never do it just on … Read more
I think it’s in the wp_options table as ‘home_url’ and ‘base_url’, set both to start with http and Save the table in phpMyAdmin. If you can’t login still, disable plugin by renaming the folder. Still failing, check htaccess file and wp-config files for forced security.
In the context of that question, yes it is. Without inspecting the content type header you don’t know if what is being served is an html page or an image, and while it is unlikely that the regex will match anything in an image, the risk is there. a different way to write that code … Read more
Number 1 If you want your website to be ONLY accessible through HTTPS, you will want to add this piece of code to your .htaccess file, replacing your domain’s name: <IfModule mod_rewrite.c> RewriteEngine On RewriteCond %{SERVER_PORT} 80 RewriteRule ^(.*)$ https://www.example.com/$1 [R,L] </IfModule> This will redirect any visits from non-SSL to SSL version of your website. … Read more