Forum doesn't default to HTTPS

[jondonnis]

If you google Cap Lab you'll get linked to the HTTP version of the forum without the secure SSL. Redirection should be on so everyone is forced to HTTPS, making their login secure.

[David]

It has been set to HTTPS.

[firefox33]

The link I was given with a Google search does direct me to HTTPS.

The main site is https://www.capitalismlab.com/

[jondonnis]

It has been set to HTTPS.

No it hasn't. The link to the site is HTTPS but the link on your own site to the forum is the HTTP version which I'm typing on now. This is because you haven't set auto redirect on to force redirect to the HTTPS version.

[David]

I tested it and I didn't encounter the same problem. When I checked it on www.capitalismlab.com's link to the forum, the link is https://www.capitalismlab.com/

You may check it by hovering the mouse over the link and see what link is displayed at the bottom-left corner of the browser. In my browser, it shows "https://www.capitalismlab.com"

It may be due to cookies. Have you tried opening it from a different browser?

[jondonnis]

http://www.capitalism2.com/forum/

The link to your forum on your website. Under community. Forced HTTPS redirection still needs to be turned on as its not just your own site that links to the insecure version, others also do.

[David]

Ok. I have just got it fixed.

[jondonnis]

It's still not fixed. So for example on my own site, I've been into Cpanel and if anyone ever clicks on a link to the HTTP version, they get forced redirected to the HTTPS version, which you are doing for capitalism2.com, if people go there they get force redirected to https://www.capitalismlab.com/

But if you click on the link in my previous post, you still end up at the insecure version

http://www.capitalism2.com/forum/

And the first link on DuckDuckGo

z.png (67.09 KiB) Viewed 2023 times

Same on Google

y.png (49.08 KiB) Viewed 2023 times

[jondonnis]

And the Enlight site

x.png (458.08 KiB) Viewed 2021 times