WordPress with Tor Onion Service (dual .com & .onion domains for same website)

You can create .onion alias for your existing wordpress site on the clearnet using the Mercator wordpress plugin.

While the Mercator plugin alone is sufficient to make your wordpress site accessible on a .onion (as an alias, so in addition to its clearnet site), you’re going to want to make some changes to your wordpress child theme and web server config. Otherwise, you may experience issues such as:

  1. A user visits your .onion site, but your wordpress theme has them load javascript from the clearnet site, defeating the security benefits of using the .onion in the first-place
  2. A user visits your .onion site, but the first click they make on your site brings them back to the clearnet domain for the rest of their session, also defeating the purpose
  3. Your wordpress theme or plugins stubbornly try to redirect the user to your .onion on https, which doesn’t work because your cert isn’t valid for a .onion domain.
  4. A user visits your clearnet site using the Tor Browser, and never realizes that a more secure .onion version of your site is available

rewrites

The first three issues can be solved by updating your wp-config.php and/or your wordpress child theme(s) to do a regex substitute of your https clearnet domain with your http .onion domain, where necessary

Onion-Location

The last issue can be solved by updating your web server config to include the Onion-Location header

Related Posts:

  1. WP Multisite – How to create a custom “router” for blog prefixes?
  2. Define a new sub-folder naming – Multisite
  3. Site Redirecting to wp-signup.php
  4. Site admin in a network install can’t edit users?
  5. Are nested subdomains possible with a subdomain multisite?
  6. Querying posts from multiple sites in a network?
  7. is_front_page() malfunction?
  8. How can I diagnose a slow WordPress admin?
  9. How to enable a site administrator to edit users in a WordPress network/ multisite setup?
  10. BLOG_ID_CURRENT_SITE vs. SITE_ID_CURRENT_SITE in WordPress Multisite?
  11. Shared table across network
  12. Opinions whether to go multisite VS 3 separate WP installation [closed]
  13. Multisite: differences between subdomain and subdirectory mode? Can it be switch after installation?
  14. Ban SiteNames Multisite
  15. WP MultiSite API – Create new sites
  16. Multisite – sub-subfolders for certain blogs
  17. Multisite behind Varnish
  18. How do I know if a user has a blog in WordPress Multisite?
  19. Multisite – how to remove the root ‘/’ site?
  20. Configure WordPress to read from database only, never write
  21. WordPress multisite with domain mapping and virtual host on local with fake domain
  22. Don’t allow access to wp-admin but allow admin-ajax requests to be fulfilled on frontend?
  23. Timeout While Upgrading Network in Multi-site
  24. Full Domain Mapping with WP3 in Multiuser Mode
  25. How to migrate WordPress Blogs into Multisite without using the GUI-Import/Export Feature
  26. WordPress network (multisite) /wp-admin/ redirect loop (ERR_TOO_MANY_REDIRECTS)
  27. Has anyone experience w/ WordPress (MultiSite) hidden users (possibly hacked)?
  28. Why wordpress multisite redirect to wp-signup if site exists?
  29. How to combine multiple sites to WordPress MU
  30. Installing multisite network admin on sub-domain
  31. Is it possible to import a wordpress backup from a single site in to a multi-site configuration?
  32. Multiple domains with different child themes on one installation?
  33. multisite custom directory
  34. Changing wp-content to other name? Multisite set up
  35. Redirect users on logout
  36. Multisite: I have a gap in my blogs. How to add the missing one?
  37. Rest API Multisite Site List?
  38. Create rewriterules for different domains in htaccess file with WP multisite
  39. Query users by capability – uninstall/deactivate callback
  40. Force Load https WordPress Plugins
  41. Cannot access my first sub-site in a multisite [closed]
  42. Auto creation of multisite blog on user registration
  43. Memory question on WordPress Multisite
  44. How to protect post attachments related to a custom post type, from non-logged in users, on 1 subsite of a multisite installation?
  45. Aggregate multisite RSS and restrict certain content
  46. WordPress multisite on IIS – can’t open subpages
  47. Register existing user on another site in a multisite network?
  48. WordPress MultiSite Theme
  49. Can i import a site (plugins, database, images) etc. Into an existing wordpress multisite?
  50. Create Custom Multisite User Role to Reduce Capabilities
  51. Importing XML didn’t finish, site is now inaccessible
  52. WordPress multisite – Bitnami
  53. One blog inside another
  54. Change Default WordPress MU Blog
  55. wordpress multisite permalink structure: mostly subdomains but not all
  56. how to create wordpress network with multiple wordpress installations
  57. How to get blog_id of an MU site when running a custom function on the parent site
  58. Multiple sites with independent users
  59. Programmatically creating site in a network
  60. WordPress multisite domain
  61. What happens when someone goes to the root URL in WordPress Multisite?
  62. Migrate single site to Multisites with plugins, cPanel and already working subdomains
  63. Multisite WP-API json v2 : can i fetch all comments on all sites with a single query?
  64. how to install wordpress HyperDB
  65. Using Same User Database on Subdomain
  66. Change language for each website using multisite
  67. Automatic creation of mutisite blog outside of the admin
  68. Permission warning in wordpress multisite
  69. Static directories in a WordPress multisite network
  70. Trying to Decide Between Reverse-proxy and Multisite
  71. Automatically add a registered user on the wordpress multisite network even to just one other site
  72. Remember language choice on multisite website
  73. Redirecting specific sites to HTTP in WordPress Multisite
  74. wp-cli core install –skip-email and –skip-config flags not working on MAMP unknown parameter
  75. WordPress Multisite VMware copy for dev use not allowing loggin
  76. Multisite network subdomains doesn’t work
  77. MULTISITE: Password issue and Error Cant access site
  78. trying to install a wordpress multisite in a subfolder and have custom subsite urls
  79. Accessing WP multisite via IP instead of domain
  80. Running hosted multisite version of wordpress
  81. Multisite,half the way
  82. Create new multisite from existing and keep domain?
  83. Admin Ajax returns “0 200 OK server error..” in Multi-site sub-site
  84. WordPress Multisite: an official and definitive way to enable https ? (http to https)
  85. How to implement this subdirectory mapping in multisite?
  86. WordPress MU with subdomain
  87. How do i get custom metabox data from each multisite blog?
  88. Multisite login and redirect to users main blog,
  89. What dictates whether a plugin will be available to a site in a multisite install?
  90. How do I setup WordPress Multisite in it’s own directory?
  91. Parse shortcodes from another site in WP Multisite
  92. Custom pages on all multisite network, to NOT show in wp-admin at all
  93. Install WordPress MU outside htdocs
  94. How do I remove ‘www.’ from all internal links in self-hosted multisite?
  95. WordPress Multisite platform for different city for single db
  96. Not being allowed to use some terms in Add New Site in WordPress
  97. How to redirect root blog to a specific one in multilang WP?
  98. WordPress multisite with subdirectories always redirects to mainsite
  99. wordpress multisite with already existing subdomain
  100. Why the sites dropdown in multi-site installation is different from the list of sites when seen full page?