Admin Redirect to SSL?

[datawebcorp]

When I go to the admin section of my WHMCS install, I thought it used to automatically make the connection secure (https). Am I wrong? It seems now when I go to the admin section and login I must be sure to enter the https.

[datawebcorp]

OK, now I'm noticing I cannot even login securely at all. If I go the https://..., it says my user ID and password are incorrect. If I use http://, it works fine!?

[Brett]

In your admin folder create a file called .htaccess

 

In it put

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteCond %{REQUEST_URI} !^clientsadd.php$
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

 

This will always make the URL redirect to the correct file with the https.

 

As for why it is not working with the https but it is for http, I would submit a ticket to support and see what they had to say. Perhaps someone else has run into this before?

[RPS]

If you remove the https entry inside the General Config area, then add:

 

RewriteEngine on

RewriteCond %{REQUEST_URI} ^/whmcs/ [NC]

RewriteCond %{SERVER_PORT} !^443$

RewriteRule ^(.*)$ https://www.domain.com/$1 [R=301,L]

 

to your .htaccess, it will make all access to whmcs secure via https (client and admin area).

 

Currently, the login system is not always over https. Clients will also be over https for announcements and knowledge base articles. Even though this may not be needed, it still makes sure that your clients are always on via https.

[bendobson]

Just saw this and helped me alot!!

 

Thanks for your info

[merlinpa1969]

Question about making entire site ssl,

 

has anyone thought of the implications this might have on your page indexing and ranking?