WordPress.org

Forums

Modify Comment Form Submit URL (3 posts)

  1. ikarstein
    Member
    Posted 2 years ago #

    Hi all!

    I'm new here. After 2 years of blogging at wordpress.com I've moved to a self hosted wordpress platform.

    Here I want to administrate the platform with a diffrent HTTPS url than the users use to read the blog. I've done this by setting different URLs for "WordPress Address (URL)" and "Site Address (URL)" in Settings -> General Settings.

    This works.

    But on a "Blog Article page" the comment form try to post to the "WordPress Address (URL)" that is HTTPS. Than the user receives a HTTP Error. I tried to change all PHP files of wordpress that creates the comment form:

    wp-includes\comment-template.php
    wp-includes\theme-compat\comments-popup.php
    wp-includes\theme-compat\comments.php

    But this does not change the behavior of the comment form.

    I do not know where the form is rendered.

    As a reference: When you open the blog article page "http://blog.karstein-consulting.com/2012/09/06/hello-world/" the comment form is below the text.

    Thanks for any hint!

    Ingo

  2. I'm new here. After 2 years of blogging at wordpress.com I've moved to a self hosted wordpress platform.

    Welcome to the club. ;)

    I tried to change all PHP files of wordpress that creates the comment form:

    Uh, no don't do that. it makes your site unsupportable and possibly insecure. You really don't want to do that. Ever.

    But on a "Blog Article page" the comment form try to post to the "WordPress Address (URL)" that is HTTPS.

    Give this plugin a good read and try. It's popular and may provide you a safe way to use https.

    http://wordpress.org/extend/plugins/wordpress-https/

    I don't use it myself (I only use SSL for the authentication login) but that may help you with securing your comments form.

  3. ikarstein
    Member
    Posted 2 years ago #

    Hi Jan!

    Thank you for your reply! - I tried the plugin but it does not work for me. My problem is that the WordPress hoster (bluehost) does not support SSL certificates (even self signed certs) for domains that are "not primary". "karstein-consulting" itself is registered at another hoster and the "blog" subdomain is redirected to the WordPress hoster.

    Could you tell me how to secure only the login? that's what I really want to do: provide secure password transmit.

    Regards
    Ingo

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags