SSL and Mojo

If you have questions about using mojoPortal, you can post them here.

You may want to first review our site administration documentation to see if your question is answered there.

This thread is closed to new posts. You must sign in to post in the forums.
2/14/2011 5:41:54 PM
donario
Gravatar
Total Posts 7
View Posts

SSL and Mojo

Hello, I recently purchsed the Form Wizard Pro and have the need to secure the form page(s) only. Also, my SSL domain is secure.domain.com instead of www.domain.com It appears that when I enable SSL in the user.config, the admin sequence converts to SSL (which throws a browser warning because it is looking for https://www.domain.com instead of https://secure.domain.com). Is there a way to enable SSL without affecting the admin so that I can use the SSL domain URL for the forms? Also, is it possible to create the form on the SSL URL and have all page links on that page (with the exception of the submit button) go back to the non-SSL domain (this is also an issue). Thank you.
2/14/2011 6:39:18 PM
Jamie E
Gravatar
Total Posts 1203
View Posts
Proud member of the mojoPortal team

Help support mojoPortal!
Add-on modules

Re: SSL and Mojo

Hi, is secure.domain.com a mojoPortal child site of www.domain.com? If so, that's an unusual configuration. It's expected that the main site has SSL available, and it may or may not be available to child sites, depending on whether you have a regular or wildcard SSL certificate. The configuration keys are geared toward that type of setup.

If your situation was that the SSL certificate was issued for the main site, and not valid for child sites, you could use

<add key EnableSSLInChildSites = false>

So, if  secure.domain.com was the main site, and www.domain.com was a child site, you would be using http://secure.domain.com everywhere except the admin pages and those pages where you've checked the "Require SSL" box in Page Settings, Security (they would be https://secure.domain.com). If you had links to http://www.domain.com, even on SSL-secured pages, they would be left as non-SSL with EnableSSLInChildSites set to false. Of course, all of your forms would have to be located in the secure.domain.com site in order to take advantage of SSL encryption of the pages.

Hope that helps

Jamie

You must sign in to post in the forums. This thread is closed to new posts.