Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeUsing DNN Platf...Using DNN Platf...Administration ...Administration ...Issue with using built-in SSL (DNN 4.9.5)Issue with using built-in SSL (DNN 4.9.5)
Previous
 
Next
New Post
2/1/2010 4:55 PM
 
phil wegrzyn

Joined: 12/30/2004
Posts: 29

Hi all,

We are trying to utilize the SSL capabilities of DNN. We have created, purchased, and installed our Verasign certificate, ad everything works as expected except for one thing. 

For some reason, when we select both "SSL Enabled" and "SSL Enforced" in site settings, when we are going from an SSL-enabled page to a non-SSL enabled page, we see in the top of the page the redirect url, fully qualified (ex. http://abc.com/Default.aspx - sorry the real site is internal right now).  

We can avoid this for the most page by unchecking "SSL Enforced", however, that means as soon as the user hits one ssl page, the rest of the sesion stays in SSL (obviously a big waste of server resources, as the vast majority of our pages don't require ssl).

We are running in a load-balanced environment (a pass through load-balancer in front of 2 webservers), but even when we turn off one of the servers we still have the issue.

Has anyone else experienced this issue? We are running vanilla DNN4.9.5, with very few modules installed.

I have looked at posts explaining how dnn does its SSL (like this one from Joe Brinkman),

http://blog.theaccidentalgeek.com/?ta...

and I understand the double page hit to switch the protocol, we just don't understand the stray uri being written before it redirects with the "SSL Enforced" checked. 

thks,

Phil

 

 

 
 
New Post
2/1/2010 6:21 PM
 
Chris Paterra


Joined: 4/5/2003
Posts: 4377

Phil, I am not exactly sure what you are trying to do and what you are expecting (maybe I am missing something obvious, been a long day). I did a blog post here that discusses DNN & SSL. After reading that, if you still have questions let me know. (My install were in DNN 5, haven't spent much time with SSL in older DNN versions. Also, I don't think the web farm should make a difference so long as your environment is setup properly). 

Chris Paterra

Get direct answers to your questions in the Community Exchange.
 
New Post
2/1/2010 6:40 PM
 
phil wegrzyn

Joined: 12/30/2004
Posts: 29

Thanks for the reply. The issue is, we get a stray url (the http url that is being redirected to)  in the browser itself whenever a user is switching from https page back to an http page (but not the other way around) when we have "Enforce SSL" checked. Since the majority of our site is not ssl, we really want to check this so that we can push a user back into non-ssl once they go to an unsecure page.

Sorry I can't show it because the site is internal, but we have not been able to determine if this is a configuration issue in the environment, or if this is a dnn issue. Running Fiddler, and looking at posts like Brinkman's, we know that going from an http page to an http page requires an intermediate https to the 2nd page BEFORE it redirects to http, its right when it does the redirect that we see the url in the browser briefly before the redirect completes. 

Just trying to determine if its DNN or something with our configuration. thks.

 phil

 
New Post
2/1/2010 7:18 PM
 
Chris Paterra


Joined: 4/5/2003
Posts: 4377

If I understand you properly, this might be the behavior. When I have www.domain.com setup for SSL (and I checked SSL Enabled and SSL Enforced), going to the site will place me in normal http mode (for the home page, which isn't secure). Now, if I am logged in and go to an Admin or Host page I will be switched to the https protocol. As you mentioned, it links to the initial http and redirects to https. The exact same behavior occurs in the opposite direction (going https to http). On my example admin secure page, going back to home (by clicking Home in my site navigation menu) will show the link as https, so when I click it i land on https and a redirect to http occurs. This does mean there is a redirect in each direction but it also ensures people are on https for a limited time (only when they need to be). 

You can see a sample of the https to http redirection by clicking this link: https://www.dnnforums.com. Notice you finally end up on http. Hopefully, this clears things up a bit. 

Chris Paterra

Get direct answers to your questions in the Community Exchange.
 
New Post
2/1/2010 11:27 PM
 
phil wegrzyn

Joined: 12/30/2004
Posts: 29

Thanks Crispy, but the issue is that when it switches from https to http, it places briefly a url of the http page on the screen itself before it does the redirection (i do understand how dnn is handling the redirections when the protocol changes).

Its either incorrectly writing a header, or there is a redirection problem. I know this is hard to explain (wish I could show it), but its either an issue with the way dnn writes the headers or something with the way our infrastructure people have configured the environment. Either way, it looks bad, so we've got to figure out how to surpress it. I am ultimately hoping someone else has run across this problem, and can help us resolve it. 

thks
 
 Page 1 of 2
12Next 
Previous
 
Next
HomeHomeUsing DNN Platf...Using DNN Platf...Administration ...Administration ...Issue with using built-in SSL (DNN 4.9.5)Issue with using built-in SSL (DNN 4.9.5)


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out