SSL question
Moderator: General Moderators
SSL question
Hi.. i am designing a database driven website for a client with login info etc.. half way down the project the client wants the website on secure server.. therefore i am getting the server a SSL docomo certificate..
my question is, what changes would i need to do (if any) for my login and other pages to work while there are in SSL server?
i got to know that mostly no changes are required to the code.. but then would i have to enter all absolute url's while linking or can this work with relative url's too?
Thanks
my question is, what changes would i need to do (if any) for my login and other pages to work while there are in SSL server?
i got to know that mostly no changes are required to the code.. but then would i have to enter all absolute url's while linking or can this work with relative url's too?
Thanks
- Ollie Saunders
- DevNet Master
- Posts: 3179
- Joined: Tue May 24, 2005 6:01 pm
- Location: UK
They will?!all relative url's will naturally be http://
If however you are talking about redirects:
Code: Select all
header('Location: ....what i meant was that all urls will be http://www.mycompany.com/login.php..
how can i get them all to be https://www.mycompany.com/login.php ? is there a script which i would need to add to make them all https instead of http?
how can i get them all to be https://www.mycompany.com/login.php ? is there a script which i would need to add to make them all https instead of http?
- Ollie Saunders
- DevNet Master
- Posts: 3179
- Joined: Tue May 24, 2005 6:01 pm
- Location: UK
Are you certain? Have you tried it?what i meant was that all urls will be http://www.mycompany.com/login.php..
It's really worth trying things out, if for no other reason than just to see if it *would* work. It should only take a few seconds and will really help with understanding things much better than even the best and clearest of explanations.
Actually, I wonder why the call them relative urls. Relative to what I wonder.
Because unless you have a base href set somewhere ....
Actually, I wonder why the call them relative urls. Relative to what I wonder.
Because unless you have a base href set somewhere ....
I did try it out and i think it will work without a problem... i was thinking that evertime a file is requested the browser would automatically go to http:// but it seems like once it running under https:// it will follow the same theme unless a special link with http:// is created to exit the secure area.
thanks for the help
thanks for the help
- John Cartwright
- Site Admin
- Posts: 11470
- Joined: Tue Dec 23, 2003 2:10 am
- Location: Toronto
- Contact:
- RobertGonzalez
- Site Administrator
- Posts: 14293
- Joined: Tue Sep 09, 2003 6:04 pm
- Location: Fremont, CA, USA
I know this is a few days old, but on SSL, if you are using cookies, you may want to make sure you set the cookie_secure flag in the setcookie() function. Also, if your entire site will be behind SSL, you may want to edit your server config to forward all port 80 traffic to port 443 (or whatever your secure port is).