SSL Login for MU

  • lucasajackson

    (@lucasajackson)


    13 years, 1 month ago

    I need my instance of WordPress (Multi User v3.1) to force logins over ssl, and since FireSheep is out, it would be nice to also have the admin pages be ssl.

    I found that I can add “define(‘FORCE_SSL_LOGIN’, true);” and “define(‘FORCE_SSL_ADMIN’, true);” to the wp-config.php file, but when I do that WordPress seems to ignore both of those commands, and I am not presented with a login, or admin area, in ssl.

    I was using a plugin called admin-ssl, but that broke upon upgrading to WP 3.1.

    Any suggestions?

Viewing 3 replies - 1 through 3 (of 3 total)
  • Thread Starter lucasajackson

    (@lucasajackson)

    13 years, 1 month ago

    No solution?

    Tim Moore

    (@tmoorewp)

    13 years, 1 month ago

    You need to use only one of define('FORCE_SSL_LOGIN', true); or define(‘FORCE_SSL_ADMIN’, true);, not both.

    Also, is your server configured for SSL? If not, that may be why it is being ignored. Read this for more: http://codex.wordpress.org/Administration_Over_SSL

    Thread Starter lucasajackson

    (@lucasajackson)

    13 years, 1 month ago

    My server has 2 vhosts setup one for SSL and the other for nonSSL traffic.

    Do you know where I can find info on setting up the:

    “On the secure virtual host, set up a rewrite rule that shuttles all non-wp-admin traffic to the insecure site.
    On the insecure virtual host, set up a rewrite rule that shuttles all traffic to wp-admin to the secure host.
    Put in a filter (via a plugin) that filters the links in wp-admin so that once activated, administrative links are rewritten to use https and that edits cookies to work only over encrypted connections.”

    Section of the page you shared with me?

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘SSL Login for MU’ is closed to new replies.