News:

SMFNew Installed

  3. HTTPS?
+-+-

User+-

Welcome, Guest.
Please login or register.
 
 
 

Login with your social network

Forgot your password?

Site Stats+-

Members
Total Members: 728
Latest: Cho
New This Month: 0
New This Week: 0
New Today: 0
Stats
Total Posts: 10932
Total Topics: 795
Most Online Today: 389
Most Online Ever: 854
(September 18, 2024, 07:49:37 am)
Users Online
Members: 0
Guests: 97
Total: 97
« previous next »
Pages: [1]

Author Topic: HTTPS?  (Read 3430 times)

0 Members and 24 Guests are viewing this topic.

HTTPS?
« on: »
Was curious as to why torchmodders isn't https. one major benefit of it being so, is you would be able to direct link images from https sites such as imgur and even steam. Saves bandwidth as well. and if you have access to SSH you could do it absolutely free.

Getting Started
Let’s Encrypt issues certificates through an automated API based on the ACME protocol. In order to interact with the Let’s Encrypt API and get a certificate, a piece of software called an “AC...
letsencrypt.org


Just curious is all. :)

Edit: Ive never done it without SSH, but apparently theres a no SSH method as well.
« Last Edit: August 26, 2018, 10:14:47 pm by Urakka Amyx »
Logged

Share on Bluesky Share on Facebook

Re: HTTPS?
« Reply #1 on: »
Perhaps it's a limitation of the Forum build used? I copy pasted the bottom page info and Xml with Php were mentioned when highlighted.

SMF 2.0.15 | SMF © 2011, Simple Machines
SimplePortal 2.3.5 © 2008-2012, SimplePortal
Orange Line by, Hostflare
XHTML RSS WAP2
Logged
At this point after playing Torchlight 2 for 8 years original and modded... ignorant of mods and now wise with compatibility... the one thing I value the most-

-is being able to have "support" from the author of any mod.

I think the only advice I can give is that you don't burn yourself out. ^_^
Re: HTTPS?
« Reply #2 on: »
Quote from: steffire3 on August 26, 2018, 11:34:55 pm
Perhaps it's a limitation of the Forum build used? I copy pasted the bottom page info and Xml with Php were mentioned when highlighted.

SMF 2.0.15 | SMF © 2011, Simple Machines
SimplePortal 2.3.5 © 2008-2012, SimplePortal
Orange Line by, Hostflare
XHTML RSS WAP2

Yeah. Maybe, but SMF has the ability for it.

Host flare shows something weird OMG!! Shoes!! :P
Logged
Re: HTTPS?
« Reply #3 on: »
Quote from: Urakka Amyx on August 27, 2018, 07:21:11 am
Host flare shows something weird OMG!! Shoes!! :P


We must never underestimate the usefulness of shoes...

Which calls for the creation of a Variant Shoe Mod... 'cause players just gotta have access to bling their shoes!  :D
Logged
At this point after playing Torchlight 2 for 8 years original and modded... ignorant of mods and now wise with compatibility... the one thing I value the most-

-is being able to have "support" from the author of any mod.

I think the only advice I can give is that you don't burn yourself out. ^_^
Re: HTTPS?
« Reply #4 on: »
EDIT:  You obviously have much more technical knowledge than I, in this matter, @Urakka Amyx.

Therefore, I will endeavor to keep my ill-informed nonsense, in this thread, to a minimum. 


Quote from: Urakka Amyx on August 26, 2018, 10:13:04 pm
Was curious as to why torchmodders isn't https.

I meant to bring this subject up with @Phanjam and @Wolven anyway, so I will simply mention my findings here. 

Torchmodders actually does have an HTTPS option—but there is no automatic redirect for it. 

Also, posting while using HTTPS, somehow redirects to a non-HTTPS address afterward.  However, I also get other weird errors while doing so—something like:
Code: [Select]
This form is not secure.  Are you sure you want to submit it?(Note that neither error shows up when using normal HTTP.) 


By the way, this is the HTTPS address for this forum thread:
https://torchmodders.com/forums/suggestions-feedback/https/

Click on it, and check the address-bar of your browser.  You should see "https://" instead of the normal "http".

If the website lacked a valid HTTPS certificate, you would have received an error, when clicking that link.

« Last Edit: August 28, 2018, 02:19:54 am by Lord Nyriox »
Logged
I am off to Tamriel, seeking new adventures, great and small.  One day, I might return to Novastraia and show what I have learned.
Re: HTTPS?
« Reply #5 on: »
EDIT:: didnt realize id typed so much :P sorry for the book, but i hope it provides you with some good info.

^_^ ahh no problem at all and technically while it is https, its not secured.. more than likely its because there are files probably being loaded not hosted by a https source.

Let me have a look ::looks at security audit logs for site::

Yep thats the problem

Quote

This page is not secure.

Resources - mixed content
This page includes HTTP resources.

Reload the page to record requests for HTTP resources.

Certificate - valid and trusted
The connection to this site is using a valid, trusted server certificate issued by Let's Encrypt Authority X3.
View certificate

Connection - secure (strong TLS 1.2)
The connection to this site is encrypted and authenticated using TLS 1.2 (a strong protocol), ECDHE_RSA with P-256 (a strong key exchange), and AES_128_GCM (a strong cipher).


Umm based on what i can find

wiki/lib/exe/fetch.php?media=wiki:logo.png

Which i beleive is the torchmodders wiki logo its being pulled from (http) while on (https)
easy fix is either making a php script such as
Code: [Select]
<img link="
<?php (isset($_SERVER['HTTPS']) ? "https://" : "http://").$_SERVER['HTTP_HOST'];?>
torchmodders.com/wiki/lib/exe/fetch.php?media=wiki:logo.png">

with css styling
Code: [Select]
<img link="
<?php (isset($_SERVER['HTTPS']) ? "https://" : "http://").$_SERVER['HTTP_HOST'];?>
torchmodders.com/wiki/lib/exe/fetch.php?media=wiki:logo.png"  alt="" class="bbc_img">

and placing it on the page which displays the logo.

The above will place http or https depending on what is typed in the url. not necessary, but its effective

also, theres a lot of different ways, maybe even more secured ways... but thats a easy fix for a easy problem.



That is the logo for the forums, wierd its not hosted here. buut simply change the url link to https, since imgur supports https nativly. its the same url.


But yeah also if theres not automatic redirect, you could force the page to redirect by using


Code: [Select]
if(empty($_SERVER['HTTPS']) || $_SERVER['HTTPS'] == "off"){
    $redirect = 'https://' . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'];
    header('Location: ' . $redirect);
    exit();
}

a little basic but this code would work as well

describing that code

if $_SERVER['HTTPS'] is empty or $_SERVER['HTTPS'] is equal to off(meaning they went to http)
go here ('https://' . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'];)
https://    torchmodders.com(HTTP_HOST)  /forums/suggestions-feedback/https/(REQUEST_URI)"
« Last Edit: August 27, 2018, 06:06:09 pm by Urakka Amyx »
Logged
Re: HTTPS?
« Reply #6 on: »
Quote from: Lord Nyriox on August 27, 2018, 04:11:48 pm
EDIT:  You obviously have much more technical knowledge than I, in this matter, @Urakka Amyx.
Therefore, I will endeavor to keep my ill-informed nonsense, in this thread, to a minimum. 

:) nah, not nonsense. Its always a good thing to have a conversation. Everyone wins. Learning experience for all :) besides ive done stuff like this for a living ^_^ freelancing FTW  :D
Logged
Re: HTTPS?
« Reply #7 on: »
Quote from: Urakka Amyx on August 28, 2018, 01:43:44 pm
Quote from: Lord Nyriox on August 27, 2018, 04:11:48 pm
EDIT:  You obviously have much more technical knowledge than I, in this matter, @Urakka Amyx.
Therefore, I will endeavor to keep my ill-informed nonsense, in this thread, to a minimum. 

:) nah, not nonsense. Its always a good thing to have a conversation. Everyone wins. Learning experience for all :) besides ive done stuff like this for a living ^_^ freelancing FTW  :D


We appreciate all the help we can get for coding / scripting! (My skill is in art and gathering info from discussions one day making Guides hopefully such as listing TL2 bug fixes for Linux which will require some careful gathering).

If your skill can be applied for UI issues being encountered in mod projects for Aherin and Korzeam then it would be a huge boon for the community.

As well as helping us with Https efficiency on the Site.  :)
Logged
At this point after playing Torchlight 2 for 8 years original and modded... ignorant of mods and now wise with compatibility... the one thing I value the most-

-is being able to have "support" from the author of any mod.

I think the only advice I can give is that you don't burn yourself out. ^_^
Re: HTTPS?
« Reply #8 on: »
Quote from: steffire3 on August 29, 2018, 05:56:27 pm

We appreciate all the help we can get for coding / scripting! (My skill is in art and gathering info from discussions one day making Guides hopefully such as listing TL2 bug fixes for Linux which will require some careful gathering).

If your skill can be applied for UI issues being encountered in mod projects for Aherin and Korzeam then it would be a huge boon for the community.

As well as helping us with Https efficiency on the Site.  :)

Well, While Im always up for more things to code, I fear that my lack of .. experience with TL2 modding would be a bit off. Not that i wouldnt try, however i dont have a linux VM atm (Limited data plan >_>)

As far as the site goes, Ive got loads and loads of snippets from my free lance projects, so if i can help out, or if you need a php script done. Ill do it, ^_^
« Last Edit: August 30, 2018, 12:20:11 am by Urakka Amyx »
Logged
Re: HTTPS?
« Reply #9 on: »
HI. HTTPS is enabled on this site, but i guess it defaults to HTTP. I'll poke around the hosting settings and see if I can force it to use HTTPS as default.

https://torchmodders.com/forums/
Logged
Re: HTTPS?
« Reply #10 on: »
Also note that even though HTTPS may be enabled, you wont have the Green HTTPS until you remove non secure sources. such as the the wiki logo. So you many just need to change the img a href to https instead of http
Logged
Pages: [1]
« previous next »
  3. HTTPS?
 

Recent Topics+-