ssl question for 4.x urgent need help

Posted by Community Admin on 04-Aug-2018 08:30

ssl question for 4.x urgent need help

Sitefinity - Front- & Back-End Development

All Replies

Posted by Community Admin on 16-Jan-2012 00:00

Hi everyone
We need to enable ssl for a few pages in our site (sitefinity 4),but the pages needs to be accessible using https / http for the same user session
Right now, after adding a new binding of type HTTPS for the site in IIS 7, we see an unexpected behavior, even when entering HTTPS in browser the page is redirected to HTTP; why is this happening maybe we are missing some configuration settings?




Posted by Community Admin on 16-Jan-2012 00:00

Devusr,

To enable SSL on a page:
Select "Title and Properties" from the "Actions" menu of the page you want to modify.
You should see a check box, in the "Advanced Options" section, labeled "Enable SSL".
Check the box and then save your changes.

Hope that helps!

Posted by Community Admin on 16-Jan-2012 00:00

I don't see it, there is only "Require SSL" but checking that will make the page accessible only by secured connection and the page should be viewable in http / https

Posted by Community Admin on 16-Jan-2012 00:00

Devusr,

As far as I know, in Sitefinity, SSL is an all or nothing deal. If you enable it then it will redirect to https each time the page is requested. If it's not enabled then any attempt to browse via https will redirect to http.

I'm curious, if you're going through the trouble to purchase an SSL certificate and enable it on a page then it must contain something you would like to transmit via secure communication. May I ask why, then, would you want it accessible via http?

Regards,
Tim

Posted by Community Admin on 17-Jan-2012 00:00

Well, it is a page that shows a popup loaded through js after user action (clicking a button)
So we are looking to redirect to the same page using https and show the login popup after page load. Besides this, the page does not requires a secured connection so this is why https needs to be accessible when needed
That's about it, so we cannot achieve this even with overriding a HTTP module or something similar?
 

This thread is closed