weixin_39898011
weixin_39898011
2021-01-08 00:54

WordPress site not switching to HTTPS

I have a WordPress site and the hosting company has switched on free SSL for testing over a 90 day period. However, though I can access the site via its HTTPS URI, https-everywhere is not making the switch automatically for me. Is this a problem with https-everywhere or WordPress?

该提问来源于开源项目:EFForg/https-everywhere

  • 点赞
  • 写回答
  • 关注问题
  • 收藏
  • 复制链接分享
  • 邀请回答

33条回答

  • weixin_39898011 weixin_39898011 4月前

    Happy to take your advice. Does that mean the addition listed above needs to be killed? Do I come back once the trial has been made formal?

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    Usually pull requests do not stay open for six months, they can get resolved quickly but sometimes they may also sink into the backlog,

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    Maybe make a disabled by default rule?

    点赞 评论 复制链接分享
  • weixin_39898011 weixin_39898011 4月前

    -koops I bow to your collective knowledge in this area. Is it easier to enable a disabled rule once SSL becomes permanent rather than to then request the rule be created?

    点赞 评论 复制链接分享
  • weixin_39917791 weixin_39917791 4月前

    Yes, and I've already closed it. I suggest that when you're confident you'll keep HTTPS around for a while, you take a look at https://www.eff.org/https-everywhere/development and submit a pull request to us yourself.

    Every ruleset is an additional maintenance and technical burden so we don't want to add them unless we need them. Disabled-by-default rulesets are appropriate for rulesets that are weirdly problematic due to their content, or old rulesets where the site is having new HTTPS problems. They shouldn't be used for maybe-in-the-future sites.

    点赞 评论 复制链接分享
  • weixin_39898011 weixin_39898011 4月前

    -koops Thanks for the help and advice.

    点赞 评论 复制链接分享
  • weixin_39917791 weixin_39917791 4月前

    -koops

    Usually pull requests do not stay open for six months, they can get resolved quickly but sometimes they may also sink into the backlog,

    Pull request resolution time can be random. We don't want to put anyone in a position where they need to submit a pull request that is time-sensitive.

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    In case you want to submit the rule yourself later, here's the rule: https://gist.github.com/smw-koops/fc6049502c85e45171e3c0cdb96ec214

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    HTTPS Everywhere only rewrites requests to websites hosted at WordPress.com. Tell your website's URL so I can make a rule for it.

    点赞 评论 复制链接分享
  • weixin_39898011 weixin_39898011 4月前

    http://www.crindau.org.uk/

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    Is https://mail.crindau.org.uk supposed to redirect to https://www.crindau.org.uk?

    点赞 评论 复制链接分享
  • weixin_39898011 weixin_39898011 4月前

    -koops I take it you mean "Is http://www.crindau.org.uk supposed to redirect to https://www.crindau.org.uk?" If so, the answer is yes.

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    No. I meant exactly that. Is mail.crindau.org.uk supposed to redirect to www.crindau.org.uk?

    点赞 评论 复制链接分享
  • weixin_39898011 weixin_39898011 4月前

    -koops Not something I've ever thought about. Is that normal?

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    I don't know.

    点赞 评论 复制链接分享
  • weixin_39898011 weixin_39898011 4月前

    -koops So why the question? I'm confused.

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    Do you have any subdomains other than crindau.org.uk, mail.crindau.org.uk and www.crindau.org.uk?

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    I can't find any, just in case.

    点赞 评论 复制链接分享
  • weixin_39898011 weixin_39898011 4月前

    -koops I haven't created any so, unless they have been created in the background by either WordPress or the site host, then no. And mail.crindau.org.uk does currently redirect to www.crindau.org.uk. Never knew that before.

    点赞 评论 复制链接分享
  • weixin_39898011 weixin_39898011 4月前

    Or a WordPress plugin, of course.

    点赞 评论 复制链接分享
  • weixin_39898011 weixin_39898011 4月前

    -koops Presumably when/if the host turns off SSL at the end of the 90 days, https-everywhere will not prevent access to the site via http? Hopefully they'll decide to keep it turned on.

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    If your website will stop supporting HTTPS, then the rule should be removed. For the rule to be removed you need to open another issue or pull request.

    点赞 评论 复制链接分享
  • weixin_39898011 weixin_39898011 4月前

    -koops How quickly do the changes impact access? Does https-everywhere access a registry each time a site is accessed?

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    I think the rules are stored inside the extension itself and update when the extension updates itself.

    点赞 评论 复制链接分享
  • weixin_39898011 weixin_39898011 4月前

    -koops So if SSL does get turned off I will need to disable https-everywhere for the site whilst the rule change propagates to my extension.

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    I don't recommend dealing with a host that doesn't offer SSL for free for all customers at all.

    点赞 评论 复制链接分享
  • weixin_39898011 weixin_39898011 4月前

    -koops I think they are intending to offer it for free, but they have only just started offering it.

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    Maybe. But most users will be able to use your website anyway.

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    Also if someone bookmarks a https link to your website or make a https link on their own website it won't function anymore if your host turns SSL off.

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    Maybe you can tell me what host did you use for the website?

    点赞 评论 复制链接分享
  • weixin_39898011 weixin_39898011 4月前

    -koops Godsweb.uk

    点赞 评论 复制链接分享
  • weixin_39789979 weixin_39789979 4月前

    Maybe we can chat by email, instead of a GitHub issue? I sent you an email.

    点赞 评论 复制链接分享
  • weixin_39917791 weixin_39917791 4月前

    I strongly suggest that you do not create a ruleset for a site where you are only testing HTTPS. If you stop offering HTTPS then every user who has HTTPS Everywhere installed will not be able to access your site without manually disabling something. Rules are stored in the extension and changes need to be reviewed before they are merged. We have open pull requests that are well over six months old, so it's possible your users will have a broken experience for at least that long.

    点赞 评论 复制链接分享

相关推荐