CiviCRM Community Forums (archive)

*

News:

Have a question about CiviCRM?
Get it answered quickly at the new
CiviCRM Stack Exchange Q+A site
This forum was archived on 25 November 2017. Learn more.
How to get involved.
What to do if you think you've found a bug.



  • CiviCRM Community Forums (archive) »
  • Old sections (read-only, deprecated) »
  • Support »
  • Using CiviCRM »
  • Post-installation Setup and Configuration (Moderator: Dave Greenberg) »
  • Force Secure URLs not allowed
Pages: [1]

Author Topic: Force Secure URLs not allowed  (Read 826 times)

jaymcgraw

  • I post occasionally
  • **
  • Posts: 106
  • Karma: 6
  • CiviCRM version: 4.1.2
  • CMS version: Drupal 7.12
  • MySQL version: 5.0.92-community
  • PHP version: 5.2.11
Force Secure URLs not allowed
October 17, 2011, 06:21:19 am
Tried to turn on force secure URLs and got the message: "You need to set up a secure server before you can use the Force Secure URLs option". There is a certificate installed and I can browse to CiviCRM contribution pages with https. Any thoughts on why the system won't allow me to turn this on?

Hershel

  • Forum Godess / God
  • I’m (like) Lobo ;)
  • *****
  • Posts: 4640
  • Karma: 176
    • CiviHosting
  • CiviCRM version: Latest
  • CMS version: Mostly WordPress and Drupal
Re: Force Secure URLs not allowed
October 22, 2011, 11:25:48 am
When you do https and when you access CiviCRM as an admin, are both the exact same domain name, i.e. both either with or without www in front?
CiviHosting and CiviOnline -- The CiviCRM hosting experts, since 2007

See here for the official: What to do if you think you've found a bug.

jaymcgraw

  • I post occasionally
  • **
  • Posts: 106
  • Karma: 6
  • CiviCRM version: 4.1.2
  • CMS version: Drupal 7.12
  • MySQL version: 5.0.92-community
  • PHP version: 5.2.11
Re: Force Secure URLs not allowed
October 22, 2011, 11:30:58 am
Yes, both with www. I have a setting in .htaccess to redirect any request to the root domain to www.

jaymcgraw

  • I post occasionally
  • **
  • Posts: 106
  • Karma: 6
  • CiviCRM version: 4.1.2
  • CMS version: Drupal 7.12
  • MySQL version: 5.0.92-community
  • PHP version: 5.2.11
Re: Force Secure URLs not allowed
October 24, 2011, 12:35:37 pm
I think I've figured out the problem. Drupal 7 disables mixed mode https and http sessions by default. So when I enabled the setting and Civi checked whether the URL to the dashboard was valid with https, the site was returning a login page as I wasn't logged in to an https session. Setting $conf['https'] = TRUE in the Drupal settings.php file circumvents this as it allows mixed mode sessions.

Laryn

  • I post frequently
  • ***
  • Posts: 192
  • Karma: 4
    • CEDC
  • CiviCRM version: 4.6.x
  • CMS version: Drupal 7
Re: Force Secure URLs not allowed
November 14, 2011, 08:48:09 am
I ran into the same issue and found a simple solution that seems to have worked -- make sure you are visiting the Resource URLs config page (/civicrm/admin/setting/url) from the secure URL (with https) instead of the nonsecure URL.
CEDC...social justice by design

*Get support on the new CiviCRM help site. /laryn
Pages: [1]
  • CiviCRM Community Forums (archive) »
  • Old sections (read-only, deprecated) »
  • Support »
  • Using CiviCRM »
  • Post-installation Setup and Configuration (Moderator: Dave Greenberg) »
  • Force Secure URLs not allowed

This forum was archived on 2017-11-26.