WordPress.org

Ready to get started?Download WordPress

Forums

Paid Memberships Pro
[resolved] SSL Seal (and no, this isnt a duplicate) (6 posts)

  1. manor7777
    Member
    Posted 1 year ago #

    Right,

    i know you only answer certain questions here, but i'm really stuck. Before installation of PMPro, my website would happily use SSL (as in, https://domain.ext) - Since installing, its forcing my website to use regular http all over, which i don't like. i have enabled the option to use ssl, but when i refresh the page, it reverts back to "No" rather than the yes i pressed save on.... using latest everything, wordpress, pmpro etc... (and it's only your plugin forcing this) - i did a whole new installation to test.

    http://wordpress.org/extend/plugins/paid-memberships-pro/

  2. manor7777
    Member
    Posted 1 year ago #

    Also, website rund fine in https again when i disable pmpro

  3. strangerstudios
    Member
    Plugin Author

    Posted 1 year ago #

    Hi, this is by design. Only the checkout pages will be locked down by SSL. However, you can override it in a couple ways.

    You can add a "besecure" custom field to a page or post and set it to "1", which will tell Paid Memberships Pro to serve that page over SSL.

    You can also set the FORCE_SSL_LOGIN and FORCE_SSL_ADMIN definitions per these instructions:
    http://codex.wordpress.org/Administration_Over_SSL

    Or you can set PMPro to force everything to run over SSL by adding this code in a plugin or your functions.php:

    function my_pmpro_besecure($besecure)
    {
        return true;
    }
    add_filter("pmpro_besecure", "my_pmpro_besecure");

    Hope this helps.

  4. mindctrl
    Member
    Posted 1 year ago #

    I was having this problem and just spent 30 minutes trying to figure out what was going on. I came here to post a question and found this.

    In my opinion, if a site is configured to run on SSL, the plugin should not touch that behavior at all. In fact, without the code in the post above this one, it *breaks* existing SSL-only sites as soon as this plugin is activated.

    Thanks for sharing the code to fix this, but this plugin shouldn't be breaking existing https sites by force redirecting to http, especially when the site is configured in Settings > General as https.

  5. strangerstudios
    Member
    Plugin Author

    Posted 1 year ago #

    mindctrl, part of the problem is that it's not easy for PMPro to know how a site is "configured" for HTTP/HTTPS. There are lots of configuration (full site, login only, admin only, just checkout).

    However, you make a good point that if we see an https in the "WordPress address" and "Site Address" URLs, we might assume that the entire site is on HTTPS/SSL and auto apply code like the above.

    I will think about this more and try to bundle it into the next version of the plugin. It should play well with the fix above if you are already using that.

  6. strangerstudios
    Member
    Plugin Author

    Posted 1 year ago #

    FYI, version 1.5.2 will have an update that will force HTTPS if the siteurl option (as set in the wp_options table) includes https:.

    1.5.2 should be out by the end of the week or so.

    Marking this thread as resolved.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic