Force https for manual installs on remote servers

March 20, 2018 20:59
2 comments

I have PHPpos installed on a remote server (same one as my website server). Although I have a SSL certificate installed for the program, I've noticed while using the program/navigating through the various pages that it keeps bouncing back and forth between un-encrypted http:// and encrypted https://.

This is solved easily by adding the following lines to the .htaccess file located in the root folder of the program:

# Force all traffic to https://. Prevent any insecure transmission of data.
RewriteCond %{HTTPS} off
RewriteCond %{HTTP:X-Forwarded-Proto} !https
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

Comments

2 comments

Chris Muench
- March 20, 2018 21:01
- Official comment
Check the box in store config Do Not Force HTTP When Needed For EMV Credit Card Processing:
Tynan Fox
- March 20, 2018 21:20
OOPS! Good call. I was working through the Config page and hadn't gotten down that far yet.

0

Please sign in to leave a comment.

Force https for manual installs on remote servers

Comments

<% if (!block.description) { %> <%= block.name %> <% } else { %> <%= block.name %> <% } %>

Can't find what you're looking for?

Categories

Toggle navigation menu

<%= category.name %>

Search

<% if (!block.description) { %> <%= block.name %> <% } else { %> <%= block.name %> <% } %>

Can't find what you're looking for?

Categories

Toggle navigation menu

<%= category.name %>

Categories