Your code redirects the WordPress admin pages to use https (which will work fine), and then sets the site and WordPress addresses (which may auto redirect some pages). Note that FORCE_SSL_LOGIN was deprecated in WordPress version 4.0 (https://codex.wordpress.org/Administration_Over_SSL) You can force the whole site to use SSL using .htaccess (note to cover WordPress installs to … Read more
SSL Partially breaking admin panel and elementor
I was able to figure out that because Lightsail uses a Bitnami deployment of WordPress, Bitnami overrides the .htaccess file. Instead you have to update the /opt/bitnami/apache2/conf/httpd.conf file by adding the following content: <IfModule headers_module> <IfVersion >= 2.4.7 > Header always setifempty X-Frame-Options ALLOW-FROM https://*.example.com </IfVersion> <IfVersion < 2.4.7 > Header always merge X-Frame-Options ALLOW-FROM … Read more
Pretty sure it’s because the official jQuery CDN doesn’t support HTTPS – use Microsoft’s or Google’s instead.
FORCE_SSL_LOGIN is marked as deprecated since 4.0 in source (you might have jumped over that bit). So it does now force all of admin to SSL and past behavior for it seems to no longer be available.
Once you have https for admin users you need to have https on the front end as wellat least for the logged-in users as their authentication cookies will be sent in clear text when they access the front end and 3rd parties will be able to duplicate them and use them to get into the … Read more
Switch to full SSL for everything. Seriously, it’s way easier than dealing with mixed content.
First one of your variations is the cleanest. You can test your htaccess rewrite rules here: https://htaccess.madewithlove.be/ Important thing about R=301, this means the redirection is permanent.
you’d be better not using a plugin and editing the .htaccess file (in root of website) something like this at the top: RewriteEngine On RewriteCond %{HTTP_HOST} ^somesite.com [NC] RewriteRule ^(.*)$ https://www.somesite.com/$1 [L,R=301] so your .htaccess file might look something like this: RewriteEngine On RewriteCond %{HTTP_HOST} ^somesite.com [NC] RewriteRule ^(.*)$ https://www.somesite.com/$1 [L,R=301] # BEGIN WordPress <IfModule … Read more
The problem is probably in the way your fonts are being enqueued in the functions.php file of your theme. Look for instances of wp_register_style and see if you find the google fonts api there with http. It’s possible that your theme has its customizer settings in a different php file, so you should probably also … Read more