Page 1 of 1
how to implement ssl
Posted: Fri Sep 29, 2006 2:34 am
by itsmani1
Hi...
I want to make login more secure using ssl. Can anyone please tell me what will be the steps for it. i want to make login more secure uisng ssl. right now all the page of site are working normally means without ssl etc.
Please guide me.
thanks in advance.
Posted: Fri Sep 29, 2006 2:38 am
by Chris Corbyn
This is handled at a web server level. If you're using Apach you just need to install mod_ssl. The PHP code need not care either way if it's SSL or not.
Posted: Fri Sep 29, 2006 2:41 am
by itsmani1
but how php code will come to know that this file is a secured and this file is not secured. i wanted to open few files with https and other with http only.
thanks
Posted: Fri Sep 29, 2006 2:51 am
by Chris Corbyn
With apache you can use <Location> and <Directory> statements to isolate where SSL should be used.
The PHP code can check what's SSL and what's not by checking for a non-empty value $_SERVER['HTTPS']. That's explained in the manual.
If you need to swap and change between SSL and non-SSL whilst carrying session data search these forums as it's been discussed many times before -- it's doesn't "just work"

Posted: Fri Sep 29, 2006 4:46 am
by itsmani1
ok thanks.
will my session work fine on both http and https or i will have to do something so that it work fine. someone told me that for security purpose i have to put thoese files in my ssl folder simple is that. is it that much simple?
thanks
Posted: Fri Sep 29, 2006 4:56 pm
by ddragas
my sessions are working fine with https even ssl folder.
Posted: Fri Sep 29, 2006 5:32 pm
by Burrito
ddragas wrote:my sessions are working fine with https even ssl folder.
it's crossing over from http to https and vice versa where the issue arises.