HTTPS issues when Logging in

Hello

I am having issues with the login button at the top right corner as it will not display the popup login window when NOT using HTTPS so any user who tries to login typing in the browser just the site name, just the www or just the HTTP this button will not work but for all of those when using the JOIN to login is DOES WORK.

Can this top button issue be fixed so it works under all circumstances? 

Hello

I think you need to configure redirect to HTTPS on your server. So, when a user entered www. or http://www. in his browser address line he should be automatically redirected to https:// In this case all dynamic popups will work corectly.

OK, that sounds like an idea, where do I set this redirect after login from please?

https works fine on all those links on my site. 

Did you update your /inc/header.inc.php file to point to https://yoursite.com   ?

YES I did update it.

the site works fine using HTTP as well as under HTTPS once logged in but it's just that top right JOIN button which won't work.

Attached is a list of errors which I'm told are also caused by the HTTPS.

help on solving the JOIN issue would be great please.

Cheers

Dolphin doesn't work with HTTPS. The best I can recommend is to stop using it and wait for BoonEx to issue a full fix.

WELL that's NP GOOD is it now. How are we suppose to run a trust secured site if HTTPS doesn't work?

So far the only thing that doesn't work is the /members/php. Get boonex developers to fix that and it might just fix most other problems with using HTTPS.

You can maybe try what was suggested in one of your other threads to find-and-replace instances of http:// with https://. As of right now, the main issues are:

* Flash apps don't work (there's a work-around in the forums somewhere for this one)

* No automatic redirection to HTTPS (try a .htaccess redirect for now)

* Forums and some other JavaScript aren't working (probably because they're trying to load via HTTP still)

well I really hope their bustin their guts out to fix this then as 1) I've never heard of of a script which expects members to join and meet in an unsecured site for one and the other is 2) we paid good bloody (pardon the expression) money for, Kinda makes it worthless if it can't be used as it should be doesn't it now.

Hello

When somebody enters URL with HTTP or with WWW only, browser loads site from non-secure HTTP URL but your header.inc.php file specifies HTTPS URL as site main URL therefore when you click on Login button Dolphin tries to load dymanic popup using HTTPS URL but it's not allowed. Because HTTP and HTTPS URLs are different URLs.

So, you need to do a server side redirect to HTTPS even if user entered HTTP or WWW. Try to type gmail.com in your browser. When it's loaded you'll see https://www.gmail.com in your browser's address line. So, you need to have the same behaviour on your site to.

You may find more about such redirect by making a Google search. For example, https://www.sslshopper.com/apache-redirect-http-to-https.html

I have run a site using  https and am working on another. Anton stated earlier the solution needed. Do a redirect in your .htaccess file so that any calls for http will be changed to https.

RewriteEngine On
RewriteCond %{SERVER_PORT} 80
RewriteRule ^(.*)$ https://www.yourdomain.com/$1 [R,L]

The only other needed change would be in the inc/header.inc.php file which you have already stated you have done. After making changes - be sure to clear ALL caches.

 That's so far from the truth it hurts.  I've been using https with dolphin for years on linux and windows.... 

I actually looked into this further after my initial posts, and found that turning off cache/compression for CSS and JavaScript resolves most issues. So I need to make an amendment: Dolphin doesn't work with HTTPS when cached. Flash apps, forums, and some other JavaScript areas won't work under HTTPS when JavaScript is cached/compressed. Not as doomsday, but still needs to be fixed.

Not sure if it's different server set ups or what but, i don't have those issues you mention above.

Site wide everything works out of the box.

Cache, forums work ok, chat rooms load fine, video uploads with flash work fine. Even outside js from google work okay as long as you include https:// to the front. 

Cache:

 I tried to do a server/cpanel redirect from site name to https and using /members.php at the end. 

Problem there is, when the redirect is active (I set it up that is) the site doesn't load anymore.

there's another mystery.

 I also don't have any issues running on HTTPS other than this loggin problem which seems to be now fixed thanks to the .htaccess file suggestion which works.

Other than that I do seem to having a couple other mod issues but me personally I don't think their HTTPS related and if they then these mod developers better get acts together and fix it. I sick of paying for something and then having to spend days or weeks fixing issues because of them or they affect other mods. Just crazy.

Anyway I do thank you guys and now I'm off to concentrate on the mobile app side of things which will be my next post on there soon.

Cheers