Jump to content


Photo
- - - - -

http vesus https

secure links http https

  • Please log in to reply
6 replies to this topic

#1 brianatthebeach

brianatthebeach

    Member

  • Members
  • PipPipPip
  • 107 posts

Posted 29 August 2017 - 03:13 PM

Hi,

 

Would using https protocol break avs or is it designed to work that way?  Should I force https somehow?  I don't know much about the protocols and where and when to use for best practice.  I would like an opinion if anyone has experience or is actually forcing use of https.

 

thanks,

brian



#2 sextube

sextube

    Senior Member

  • Members
  • PipPipPipPip
  • 242 posts

Posted 31 August 2017 - 06:44 PM

I'm using https without any problems, redirecting all http to https using Nginx, I also changed config $config['BASE_URL'] = to https

I'm using free certificates with Letsencrypt

 

Also Google ranks https sites higher: https://webmasters.g...ing-signal.html

server {
        listen *:80;
        server_name site.com www.ssite.com;
        location ~ /.well-known { allow all; }
        return         301 https://$server_name$request_uri;
        }

Edited by sextube, 31 August 2017 - 06:52 PM.


#3 brianatthebeach

brianatthebeach

    Member

  • Members
  • PipPipPip
  • 107 posts

Posted 31 August 2017 - 06:46 PM

Nice, I'll try it.  BTW, can you use server self signed certs or do you actually need to get one from a third party?

 

For example I have cpanel on my server and whm and it offers autossl 

cPanel (powered by Comodo) – Current Setting

 

My search on the subject shows that it is the same thing just that comodo is a different CA than letsencrypt but that they essentially do the same thing.  I'm guessing letsencrypt has the advantage that servers that don't have or want to pay for cpanel can use letsencrypt?

 

Also I'm still using apache, nginx is only for serving the videos, so I presume I should change my apache config or maybe just htaccess to redirect to https?

 

Thanks!


Edited by brianatthebeach, 31 August 2017 - 07:06 PM.


#4 sextube

sextube

    Senior Member

  • Members
  • PipPipPipPip
  • 242 posts

Posted 31 August 2017 - 06:56 PM

I modded a script for my server so I get them free from 3rd party Letsencrypt

 

 

I do: 

certbot certonly --standalone --agree-tos --email EMAIL -d DOMAIN -d www.DOMAIN.com

That's why I include to my nginx:

~ /.well-known { allow all; }

You can also look at some auto renew cron 



#5 apple82

apple82

    Member

  • Members
  • PipPipPipPip
  • 300 posts
  • LocationSpain

Posted 02 September 2017 - 07:49 PM

hello, I also have websites with https and avs and everything perfect without problems!



#6 brianatthebeach

brianatthebeach

    Member

  • Members
  • PipPipPip
  • 107 posts

Posted 09 September 2017 - 12:52 AM

I use apache and serve videos from nginx on port 83.  If I change baseurl to https the vids won't play  because the link is based on the avs $config['BASE_URL'] =  http://mydomain.com

$SD_URL = $config['BASE_URL'].':83/iphone/'. $md5hash_sd . ',' . $time .$file_sd;

therefore, my site will try to use ssl protocol on port 433 while the nginx vids are on port 83.  I can hard code my site url for serving the vids without the https and it looks like it will serve the video without a mixed content error, however, when trying to upload a vid I get an error due to mixed content which I believe would be resolved with the suggested change to $config['BASE_URL']  to include https.

 

here's the error

jquery.min.js:4 Mixed Content: The page at 'https://mydomain.com/upload/video' was loaded over HTTPS, but requested an insecure XMLHttpRequest endpoint 'http://mydomain.com/ajax/upload_progress'. This request has been blocked; the content must be served over HTTPS.

 

I was wondering if I could simply put a redirect to https in htaccess directing all http traffic to https link as well or do I need to change httpd.conf.  I am trying to get as much info on this before doing a live test that could disrupt the site if things don't work properly.

 

thanks for any input

 

Brian



#7 apple82

apple82

    Member

  • Members
  • PipPipPipPip
  • 300 posts
  • LocationSpain

Posted 09 September 2017 - 01:43 PM

you have to change everything to https and it works perfect.