SSL is necessary for e-commerce website to safely processing credit cards. If you don’t process payments, still you need to consider secure HTTP. In this article we will tell you how to set it up quickly and free – Free SSL for all WordPress Websites What is SSL? SSL is the ‘S’ in HTTPS which adds
SSL is necessary for e-commerce website to safely processing credit cards. If you don’t process payments, still you need to consider secure HTTP. In this article we will tell you how to set it up quickly and free – Free SSL for all WordPress Websites
What is SSL?
SSL is the ‘S’ in HTTPS which adds a layer of encryption to HTTP. It ensures that the authorized recipients can decrypt the message to see its contents. SSL runs above the transport layer and network layer which are responsible for the transport of data between processes and the routing of network traffic over a network between client and server. The credit card numbers or any private information always serves through HTTPS. But an increasing tend towards the served content via HTTP is existing.
How to set up HTTPS for free?
To set up HTTPS for free is to sign up for a could DNS service. DNS is the system where domain name gets link to IP address. You can carry out many options but we recommend you CloudFlare which is very easy and fast to set up. It has many features and the dashboard is intuitive.
How to set CloudFlare?
After you register for a CloudFlare account, you’ll be passed by a wizard to configure your first website. Moreover, it will culminate with instructions for how to log into your domain registrar and points name-servers to CloudFlare. You should wait for some time for changes and after it completes, CloudFlare will host DNS record of your website. Then, turn on CloudFlare’s ‘flexible SSL’ feature at the end. ‘Flexible SSL’ setting important and you won’t have to buy or install it.
Reconfigure WordPress from HTTP from HTTPS
In the first step you have update the “WordPress Address” & “Site Address” settings in the dashboard. After that again you have to log into the dashboard again. There is risk locking yourself out if you update these settings prematurely.
For example, in case your website doesn’t configure for HTTPS and settings are updated, you could cause a redirect loop which will break the website. It will also prevent you from accessing the dashboard. Up to this point, you will be able to visit the home page of the website via HTTPS. But the page links would be getting point to HTTP URLs. If you want to ensure that the website is served via HTTPS, then need to update all the legacy contents.
How to Update Legacy Content?
The fastest option for small website with a few pages is to simply update the URLs by editing existing pages in admin interface. In case the website is large or has high active blog, then the manual editing is not practical. If your gives phpMyAdmin or some other interface to run MySQL queries, this could be done by few MySQL queries. At the risk of stating the obvious, then replace yourdomain.com in the queries with the actual domain.
Update the wp_postmeta table
|Update wp_postmeta SET meta_value = replace(meta_value, ‘http://yourdomain.com’, ‘http://yourdomain.com’ ) ;|
Now, update the actual contents of posts that will update any back links to HTTPS.
|UPDATE wp_posts SET post_content = REPLACE (post_content, ‘http://yourdomain.com’, ‘https://youradmin.com’) ;|
You have to refresh your permalinks after running all these queries. By doing this, simply go to “Setting” and click “Permalinks”. Then change the setting back to default. After that set it back to click the menus and link the website.
Get the Flexible SSL to work with E-commerce plug-in
WordPress is having a core function that is is_SSL() which plugin rely on to determine if the traffic is encrypted with SSL. Luckily, a free plug-in could easily fix this quickly, so install the plugin and activate it. This tip doesn’t need any other security. The traffic between CloudFlare and your website’s server is still not encrypted.
Redirecting HTTP Requests to HTTPS
To enable any website to run on HTTPS never ensures that requests will actually be using the protocol. Your website might have bookmarked with HTTP if it has been around for a while. You can redirect all HTTP requests to new protocol by adding different snippet to the top of the .htaccess file at your website’s root. In case .htaccess file is existing, keep in mind don’t bring changes between the # BEGIN WordPress and # END WordPress lines in the file. WordPress is managing those lines and when the permalinks refreshes, the content gets overwritten in that section.
By upgrading your website to HTTPS, your website has improved, protected and participated in advancement of internet. As we mentioned this is free and you won’t have any problem. For further information you can visit to our website at WWW.INTERNETSEEKHO.COM