WordPress in HTTPS, causing Redirect Loops

The answer to this came in part from this answer, which linked to the Codex, advising the following snippet to be placed at the top of the wp-config file:

if (strpos($_SERVER['HTTP_X_FORWARDED_PROTO'], 'https') !== false)
       $_SERVER['HTTPS']='on';

Unfortunately, this didn’t quite solve it for me, but I noticed it worked if I removed the if and just always set $_SERVER['HTTPS']='on';. If you want to always force SSL on your site, then that should do the trick.

If you want to allow both http and https, however, you’ll need to adjust your nginx config. Add the following line:

proxy_set_header X-Forwarded-Proto $scheme;

That’s the header the if condition above is looking for. By setting nginx to pass the requested scheme (either http or https) along as the X-Forwarded-Proto, you’re letting WordPress see what that original scheme was so that it knows how to behave.

Once you’ve done that, your WP site should work properly over both http and https.

Related Posts:

  1. Ngrok errors ‘502 bad gateway’
  2. curl: (60) Peer’s Certificate issuer is not recognized.
  3. Switch from https back to http
  4. Stop WordPress from using HTTPS and just use HTTP
  5. Chrome Version 44.0.2403.89 m is trying to force HTTPS
  6. Use https for img src
  7. Serving HTTP and HTTPS from one installation
  8. WordPress behind Proxy – Mixed Content
  9. How to deactivate/remove https on localhost project from online
  10. Changing http to https in wp_options
  11. Moving from http to https, and www. to non-www URL
  12. Force SSL 100%?
  13. Redirect URL on OAuth2.0 after switching from http to https
  14. Modify a plugin to open external links with iframe using https and not http?
  15. How to fix mixed content warnings for plugin resources?
  16. Changing HTTP to HTTPS
  17. WordPress changing script source from https to http
  18. WordPress forces HTTPS to HTTP in template
  19. WordPress HTTP requests point to localhost server after move to live HTTPS server
  20. Internet Explorer “Security Information” on every page in https site
  21. Category links break the https
  22. Can’t access Admin Panel
  23. Issues with forcing HTTPS
  24. Make WordPress site secure through HTTPS and SSL
  25. What is the “Force secure connections” option used for?
  26. White page on requests with Sec-Fetch-Site: cross-site
  27. Windows-hosted new site shows no preview: “Future home of something quite cool.” message is displayed
  28. Staging Session Randomly Switched from Secure (https) to Not Secure
  29. Moving wordpress site from HTTP to HTTPS ERR_TOO_MANY_REDIRECTS
  30. Issues after switching over to HTTPS
  31. content block https from http
  32. Navigation Bar displays vertically on Mozilla
  33. ERR_TOO_MANY_REDIRECTS when I change http to https
  34. I just updated to Https from Http, Should I change WordPress Address (URL) and Site Address in WordPress Dashboard?
  35. i can’t enter to control panel of my WordPress site
  36. Turn off https in WordPress 4
  37. Change links beginning from http:// to // so that https site can get correct CSS/JS files
  38. HTTPS for every page except for feeds
  39. wordpress website crash on https
  40. Whole website redirected to httpa but in dashboard settings still http
  41. http to https stuck in infinite loop
  42. How to test a HTTPS URL with a given IP address
  43. HTTPS connection Python
  44. Make a HTTPS request through PHP and get response
  45. Mixed Content Page: requested an insecure stylesheet error
  46. How to fix “insecure content was loaded over HTTPS, but requested an insecure resource”
  47. file_get_contents() how to fix error “Failed to open stream”, “No such file”
  48. Switching MultiSite installation from HTTP to HTTPS
  49. How to migrate a HTTPS WordPress installation to localhost?
  50. SSL breaks customizer: page isn’t returned from ajax
  51. Disable all https in WordPress
  52. Remove Google Fonts Which Are (Probably) Added By Plugins
  53. Force HTTPS using .htaccess – stuck in redirect loop
  54. bloginfo() and get_template_directory_uri() with SSL?
  55. wp-admin redirecting to https, denying login
  56. Globally force SSL on all pages
  57. problem migrating files from https to http mock site – how to see mock site
  58. Remove HTTP: from the site URL and just keep // in it
  59. WordPress redirect loop on nginx + apache reverse proxy
  60. Redirect from https to http or from http to https? [closed]
  61. How to remove mixed content warnings in WP Customizer
  62. Divert http to https with WordPress on IIS
  63. How to set up htaccess to redirect a particular post type or subdirectory to HTTPS?
  64. Enable Full SSL for WordPress
  65. WordPress Dashboards: slowness and timeouts
  66. Site kit Google Analytics setup giving Error: {“error”:”invalid ‘redirect_uri'”}
  67. my homepage does not have SSL but another page is ok
  68. I changed my site from HTTPS back to HTTP and now it is broken- Cannot access Admin panel on HTTP URL
  69. Page source contains an http item that makes page insecure; but in php files it’s written as https!
  70. wp_enqueue_style – CSS Not loading – ERR_TOO_MANY_REDIRECTS [closed]
  71. Htaccess file isn’t redirecting http sub-pages to https––they display 404 error instead, tried many solutions and none work
  72. WordPress keeps redirecting subpages without http to https homepage after switch
  73. I could not access my website wp-admin after installing SSL. And error with mixed content
  74. Receiving 404 when uploading file larger than 10kb
  75. Too many redirects after added SSL redirect on port 80 virtual host
  76. Website access with http and https
  77. How to make WordPress forms secure (HTTPS)
  78. ReDirect subfolder link to another sub-folder and force SSL
  79. Htaccess https 301 problem
  80. How to control SSL in WordPress for automatically changing http to https?
  81. How do I handle SSL properly when WP is behind a reverse proxy?
  82. How best to keep my localhost on Http while my Remote production is on Https
  83. WordPress CSS/Theme gone after SSL got activated
  84. wordpress can’t read a cookie?
  85. Media Library http to https
  86. /wp-admin not accessible after migrating to local host (no plugin issue)
  87. How to move my local wordpress to https?
  88. Why does WordPress uses HTTPS for JS, CSS on EC2
  89. why is my wordpress not loading any images?
  90. Can’t access WP-Admin via HTTPS
  91. how make wp include urls as https?
  92. Changed from HTTP to HTTP, can login no longer login
  93. My site thinks it’s secure when it is fact not
  94. WordPress HTTPS – ‘… better to use HTTP for installation …’
  95. How do I secure a subdomain using UCC SSL?
  96. My WordPress site SSL is in red crossed color and can’t load at first time?
  97. Serve HTTPS requests from subdomain
  98. how to server over http and https with one installation
  99. Moving WordPress from http to https over existing site
  100. My websit dosent worke http errors 500

Leave a Comment