[SOLVED] HTTPS - how do i get it working on 1.7.1?

[admsh]

it seems even when "https" is checked on the page options, the stylesheets are still being called through http, causing the browser to either display an unstyled page (explorer), or to warn about some items not being secure.

am i doing something wrong, or is it actually supposed to be working this way?

[reneh]

some introductions:
http://lmgtfy.com/?q=%2BHTTPS+%2B%22how+to%22

[admsh]

how is googling [+HTTPS +"how to"] going to help me solve this issue? i have a security certificate, https works just fine on my server, and the page loads. i don't have any problems setting up https on the server and it has nothing to do with my question.

stylesheets are still being called from http, not https. the browser sees that some elements on the page don't use security and displays a warning. i'm trying to get around THAT.

in 1.7+ there's an option to check "https" for pages. i was under the impression that's going to turn all of the links on the page to https. seems like it does not, unless i'm doing something wrong.

and if you think i'm bothering you with questions instead of googling them myself, how about just not replying? would save you time. makes more sense.

[milehigh]

how is googling [+HTTPS +"how to"] going to help me solve this issue? i have a security certificate, https works just fine on my server, and the page loads. i don't have any problems setting up https on the server and it has nothing to do with my question.

Because the first response when I google that ....support.microsoft.com/kb/324069 contains EVERYTHING you need to know about CMSMS.

Anyway...now for info that might be a little more helpful....

I was able to duplicate this on a fresh upgrade. IE8 will prompt for viewing only content only delivered over https:. If you select YES then you get a NON-STYLED version of your page. (I tested using one of the default templates).

I've had to use this in the past: http://wiki.cmsmadesimple.org/index.php ... PS_to_work - however, the enable SSL functionality is new to 1.7x and that is an old wiki input and at first glance I had assumed that would no longer be needed since the config.php file DOES include a line my older config file didn't have:

#SSL URL.  This is used for pages that are marked as secure.
$config['ssl_url'] = 'https://domain.com';

Same question asked here..http://forum.cmsmadesimple.org/index.ph ... 082.0.html and all other posts are pre 1.7x so I do think it is a valid question (bug?) as it relates to that functionality in 1.7x.

Looks like you still need to update your config.php file. Whether or not that was the intended functionality I don't know.

[Jeff]

Try replace the $config['root_url'] and $config['ssl_url'] lines in the config.php with:

#Document root as seen from the webserver.  No slash at the end
#If page is requested with https use https as root url
#e.g. http://blah.com
$config['root_url'] = 'http://www.domain.com';

#SSL URL.  This is used for pages that are marked as secure.
$config['ssl_url'] = 'https://www.domain.com';
if(isset($_SERVER['HTTPS']) && $_SERVER['HTTPS']!='off')
{
$config['root_url'] = $config['ssl_url'];
}

[admsh]

THANK YOU. that worked perfectly.