Google has marked matx.coderpixel.com as a phishing site. That’s not your domain, of course. However you are using resources from that site. Specifically you are using several images from matx.coderpixel.com/wp/wp-content/uploads/2016/04, including android_phone.jpg, cloudy_hill.jpg, desk.jpg, keyboard.jpg, and man_with_ipad.jpg. It is a bad (and unless you have the rights to use these images, illegal) practice to serve … Read more
If you have the “force ssl on checkout” enabled in woocommerce along with another plugin like ithemes security also forcing the ssl it could be causing your redirect loop.
It’s very primitive method but works in any case; Make a dump from MySQL Open it with text editor or maybe another tool you liked (If your dump is so big, you’ll need a strong computer.) Find all http://example.com, replace with https://example.com and save. Rename/move the old database for backup, import the edited database. Leave … Read more
It turns out that the shared server I have at Network Solutions is forcing HSTS through their service. And since it’s a shared hosting server, they refuse to change it. The solution: I purchased a Wildcard certificate, and installed it on multiple servers for each subdomain.
A quick squint at your site reveals that you’re serving it with Nginx, so a simple .htaccess redirect won’t work. The following block in your Nginx config should take care of any stray locally-served files that are still coming over http: server { listen 80 default_server; listen [::]:80 default_server; server_name _; return 301 https://$host$request_uri; } … Read more
In the end I ended using mod_rewrite through .htaccess. The following is what I am using and so far is working well. RewriteCond %{HTTP_HOST} ^secure\.domain\.net$ RewriteRule (.*) http://www.domain.net/$1 [P,L]
You can follow this tutorial to setup Administration Over SSL at the WordPress codex. It explains how to setup your configuration to use SSL on the Admin area.
will WordPress be aware that it is called via HTTPS and change all links on the pages to HTTPS ? While WordPress knows if a request comes via HTTPS, it doesn’t change all the links automatically. Only certain links are updated to use https:// that too, without any subdomain part. Any hardcoded links would remain … Read more
This question may be better served on Serverfault, look into setting up a domain alias or 302 ‘masked’ redirect. However the point of an SSL is to verify a domain or a business entity so this might be moot. I would pop over to namecheap or cheapSSL and buy a cheap SSL cert.
Forcing WordPress Administration onto a separate SSL Host