How to disable the full ssl of my site and change it to part ssl


#1

I have successfully created my website using Let’s encrypt, which works all fine.
But it was created using all site is SSL option during creation, how to change it back to part SSL, because it currently redirects all http:// traffic to https:// which caused problem because some ajax code was written to get data back from http://, forced an error.

Please let me know how to change certificate back to “Part SSL”, not forcing all traffic to https.

My operating system is (include version): Ubuntu 14.04

My web server is (include version): Apache 2.2


#2

@liushu2000,

This is not an issue with the certificate, but your webserver’s configuration.

With Apache, you have added a rewrite rule, either in your sites config file or in a .htaccess in the sites directory. It would have looked something like:

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{SERVER_NAME}/%$1 [R,L]

You will need to remove this and think about how you want rewrite to work - you might just need to point visitors to the main page to https, not a complete conversion. Maybe something like the answer to http://stackoverflow.com/questions/11742603/redirect-from-https-to-http-only-for-the-home-page-domain.

:smiley:


#3

I’m not sure how redirecting on home page only would help (much) - even if there is no AJAX on it, then unless other links from the home page are absolute and point to HTTP, the page with AJAX is likely going to be served over HTTPS and AJAX would fail all the same. Basically it may (sort of) solve the problem, but at the cost of introducing odd jumps from HTTP to HTTPS and back while navigating around.

Better solution would be to identify the places where AJAX calls are made and if for some reason the request URLs are given there as http://, then drop the protocol part to // (or make them relative). That way it will work fine regardless of whether you decide to serve the whole site over HTTPS or HTTP.


#4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.