Related

One-Click Install Apps: create a new user to avoid using roote user Question Question
My one click install wordpress site cannot load from other devices. Question Question

Question

how to force TLS/SSL in the Wordpress one-click app

Posted March 13, 2020 433 views
WordPressOne-Click Install AppsUbuntu 18.04

Ubuntu 18.04, no virtual server setup, single website only, following directions from marketplace, closed port 80, but there was no instructions on how to force all web traffic to use https.

Any help would be appreciated.

Thank you.

Add a comment
johnnyrook
By:
johnnyrook
Add a comment

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
1 answer
KFSys March 13, 2020

Hi @johnnyrook,

I won’t recommend closing port 80 just redirecting all traffic from HTTP to HTTPS.

There are a few ways to do so.

  1. Redirect to https using .htaccess
  2. Redirect to https using a WordPress plugin
  3. Redirect to https via Nginx

Redirect to https using .htaccess

In your website’s .htaccess you can add the following code

<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
</IfModule>

It should be enough to help you with the redirection.

Redirect to https using a WordPress plugin

Using a WordPress can be really easy, it will both help you redirect to HTTPS and solve the potential problem of a Mixed Content. Here are a couple of plugins you can use

https://wordpress.org/plugins/really-simple-ssl/

https://wordpress.org/plugins/wp-force-ssl/

Redirect to https via Nginx

If you are using Nginx, you can add the following server block 

server {
listen 80;
server_name example.com www.example.com;
return 301 https://example.com$request_uri;
}

The above should be added in your website’s Nginx vhost file.

Additionally, please make sure to change example.com with your domain name.

Regards,
KDSys

Reply Report
  • bobbyiliev March 13, 2020

    Hi there @johnnyrook,

    Yes indeed as @KDSys mentioned, port 80 should remain open in all cases otherwise if anyone visits your site via http:// they would get a timeout. You instead need a 301 redirect to forward the traffic from port 80 to 443.

    In addition to what @KDSys recommended, if you don’t already have the SSL certificate installed, in order to obtain an SSL certificate, you could run the following:

    certbot --apache

    Then you would be prompted with a text menu where you could follow the steps and provide the necessary input. At the end you would be asked if you would like to setup a redirect from HTTP to HTTPS.

    Hope that this helps!
    Regards,
    Bobby

    Reply Report
  • johnnyrook March 13, 2020

    thank you all for the suggestions and help.

    with your help, the issue has been resolved

    thanks again

    Reply Report
bobbyiliev March 13, 2020
[deleted]
Reply Report
Submit an Answer

Related

Looking for something else?

Ask a new question Search for more help