confimatiom e-mail refers to http and not https

Blueeyez

I have set my Vanilla forum up to run only on https and i used: "$Configuration['Garden']['ForceSSL'] = TRUE;", but this dosent affect the confimation mail people get when they register. Should i change that manually and if where?

Bleistivt

If you really want to force SSL, why not just redirect from http to https in your .htaccess?

RewriteCond %{HTTPS} !=on
RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

Blueeyez

Havent got that suggestion, but how will that affect the confimation e-mail?

Bleistivt

It won't but people will automatically be redirect from http to https.

You could also try experimenting with the config setting Garden.ExternalUrlFormat

Something like this should work (please test first):

$Configuration['Garden']['ExternalUrlFormat'] = 'https://%s';

Blueeyez

I get the error: Page not found..
$Configuration['Garden']['ExternalUrlFormat'] = 'https://%s'; - i changed the %s to my websites name otherwise the refer link was wrong..

Bleistivt

The %s needs to stay. Add your domain before.

Blueeyez

not sure why, but my site then wont work.. - $Configuration['Garden']['ExternalUrlFormat'] = 'https://mydomain.com/%s';

Bleistivt

Do you have an example link?

Blueeyez

Heres an example: https://frivilligsupport.dk/8/74KDOI0Y - I have disabled http and set the server to http to https and added $Configuration['Garden']['ForceSSL'] = TRUE;

Bleistivt

I get this for any link I click on:

Not really user friendly. Have you tried the .htaccess redirect?

Blueeyez

So did i, but today i can, but i have to edit the invite link to https and not http.. i have not change anything.. I dosent get that page when i sign in, its first if i change account i meet that page..

Bleistivt

Set the language definition for EmailConfirmEmail in your locale.php accordingly.

The default is:

$Definition['EmailConfirmEmail'] = 'You need to confirm your email address before you can continue. Please confirm your email address by clicking on the following link: {/entry/emailconfirm,exurl,domain}/{User.UserID,rawurlencode}/{EmailKey,rawurlencode}';

{/entry/emailconfirm,exurl,domain} should be correct, nut you can try hardcoding your domain if everything else fails.

Just blocking access over http without a redirect is definitely not best practice and your site is unusable that way, atm.

See what happens when you click on that link:
http://twitter.com

Blueeyez

The problem is that if i use the redirect there will be jumpts over http and i was warned about that.. So thats why i force everything to use https (Or at least i try) :-)

Blueeyez

i dont have a locale.php file?

Bleistivt

This is the last piece of advice I'm giving you regarding https:
Type frivilligsupport.dk in your browsers navigation bar and hit enter. Can you see your homepage?

the locale.php has to be created in the /conf directory if it doesn't exist.

Blueeyez

i know http dosent work? I force the site to only use https, but no redirect because i have been warned about using that..