Jump to content

HTTPS Redirect

TSCADFX

By TSCADFX
in Using WHMCS

 Share

Recommended Posts

TSCADFX Junior Member

TSCADFX

Posted
  • Author
Posted

Thanks for the reply but that has absolutely nothing to do with my question. Obviously you would want to switch between a secure and insecure page depending on the content. All forms where a user would have to enter data would be considered sensitive and required to be secured with SSL according to PCI-DDS.

 

The question is why does WHMCS use a 302 redirect on pages secured with SSL. There's absolutely no reason to do a 302 (temporarily moved) on these pages.

 

So to help one better understand look at the header returned by the login page. WHMCS doesn't create links that have the https prefix so don't use it. Check the login page header with http://. You'll see that in order to re-direct to https WHMCS uses a 302 redirect.

 

This is not SEO friendly and doesn't pass juice. It should be a 301 redirect. By saying "temporary move" a 302 tells search engines to keep the old domain or page indexed, but it would be desirable for them to index the new location.

 

So my question remains, why does WHMCS use a 302?

0
Link to comment
Share on other sites
  • WHMCS Developer
WHMCS Andrew Senior Member

WHMCS Andrew

Posted
  • WHMCS Developer
Posted

WHMCS doesn't specify a particular code when redirecting to the http/https URL. http://php.net/manual/en/function.header.php is the function used, and WHMCS only specifies the Location section which then sends the 302 status code.

 

There isn't any way to change this I'm afraid. I would suggest opening a feature request to be able to customise this to the http code you want to use, http://requests.whmcs.com to be voted on by the community and looked at being included in the future.

0
Link to comment
Share on other sites
Bubka3 Senior Member

Bubka3

Posted
Posted
WHMCS doesn't specify a particular code when redirecting to the http/https URL. http://php.net/manual/en/function.header.php is the function used, and WHMCS only specifies the Location section which then sends the 302 status code.

 

There isn't any way to change this I'm afraid. I would suggest opening a feature request to be able to customise this to the http code you want to use, http://requests.whmcs.com to be voted on by the community and looked at being included in the future.

 

Seems pretty simple to change:

The second special case is the "Location:" header. Not only does it send this header back to the browser, but it also returns a REDIRECT (302) status code to the browser unless the 201 or a 3xx status code has already been set.
0
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use & Guidelines and understand your posts will initially be pre-moderated

  I accept