Dear All,
I have a strange problem with the site. I have configured SSL on the live site once I Access the site by typing https://www.mydomain.com it's working fine but when I enabled the SSL through page settings or enforced SSL from the site settings it throws an error of www.mydomain.com redirected you too many times.
In the site settings, I have set CANONICAL URL
Here is the site running file if I place https:// manually in the URL
Is there any thing that I am doing wrong?
Regards
Did you try this in a private browser? Sometimes the browser caches the redirect and you end up in an endless loop. Also using a redirect ruile in web.config is much more efficient than using the options in DNN.
https://aboutssl.org/iis-...ction-http-to-https/
If you're behind a WAF (such as CloudFlare), you may need to adjust the SSL setting on your WAF, or install an SSL certificate in your hosting environment. If the SSL isn't working completely, end-to-end, this will also cause this issue.
Hi, We have SSL certificate on our site and all the requests are https. But we see that the customlink, userlinks that DNN generates (when we use tabid in navigateURL) are http. Is there a way to make these links https? We are looking at enabling https on our DNN 9.11.0 site. As soon as we make all pages Issecure=1 and chagne the portalsetting SSLEnabled to true , the site doesnt come up. Please let us know the steps for changing all links to https in the website. Thank you for all your help.
Posted By Das on 5/23/2023 2:16 PM Hi, [...] userlinks that DNN generates (when we use tabid in navigateURL) are http. Is there a way to make these links https?
Hi, [...] userlinks that DNN generates (when we use tabid in navigateURL) are http. Is there a way to make these links https?
You can do that in the IIS configuration, i.e. in web.config.
First install the Url Rewriter module in IIS, and then add this rule to your web.config file:
[rewrite] [rules] [rule name="HTTP to HTTPS redirect" stopProcessing="true"] [match url="(.*)" /] [conditions] [add input="{HTTPS}" pattern="off" ignoreCase="true" /] [/conditions] [action type="Redirect" url="https://{HTTP_HOST}/{R:1}" redirectType="Permanent" /] [/rule] [/rules] [/rewrite]
(Replace [ and ] by < and >)
Happy DNNing! Michael
Michael TobischDNN★MVP
I don't know of a possibility to change this behaviour (maybe there is one, but I am not aware of it).
You could use a CSP (upgrade-insecure-requests) to upgrade the http-request. Also implementing HSTS could be a good idea.
Posted By Das on 5/23/2023 5:16 AM Hi, We have SSL certificate on our site and all the requests are https. But we see that the customlink, userlinks that DNN generates (when we use tabid in navigateURL) are http. Is there a way to make these links https? We are looking at enabling https on our DNN 9.11.0 site. As soon as we make all pages Issecure=1 and chagne the portalsetting SSLEnabled to true , the site doesnt come up. Please let us know the steps for changing all links to https in the website. Thank you for all your help.
If DNN is generating non-secure URLs for you, it's likely that either DNN isn't set to enforce SSL in the security settings, and/or there is a custom API integration that is manually generating the URLs in question. (That is, unless there's a new bug that got introduced recently.)
These Forums are dedicated to the discussion of DNN Platform.
For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:
Awesome! Simply post in the forums using the link below and we'll get you started.