We launched new forums in March 2019—join us there. In a hurry for help with your website? Get Help Now!
MODX Community Forums Archive

Problem with MOD Rewrite, FURL's and Shared SSL

    • 31354
    • 24 Posts
    VDISP Reply #1, 11 years, 5 months ago
    Greetings...

    FYI:
    I am currently running `MODX Revolution 2.2.5-pl (traditional)` I am using FURL's with Strict FRUL's and alias paths set to yes.

    As for FURL's and MOD Rewrite, everything seems to work great, but in this particular site I have a few form pages that I would like to have use the shared SSL available on the server because of CC data collected. However I cannot seem to get it to work correctly.

    I understand that I may not be able to use the FRUL's with the MOD Rewrite, but even if I redirect to the "unfriendly" URL; `https://secure.domain.com/~sitefolder/1/index.php?id=10` (which is fine); depending on how I setup things up I get either of the following returned:

    `https://secure.domain.com/1/FURL_NAME.html`
    (missing the site folder and the FRUL_NAME will not work on this shared domain), or

    `https://secure.domain.com/~sitefolder/1/FURL_NAME.html`
    (with to many redirects error and again the FRUL_NAME issue mentioned above), or it simply re-directs to

    `http://www.domain.com/1/FURL_NAME.html`
    (the main unsecured URL)

    I have also implemented the `revoSSL` Add-on, and while it does seem to work, there doesn't seem to be any way to use the Shared SSL.

    Can anyone tell me whether there is a way to implement the `revoSSL` with a shared SSL certificate, or whether there is another way to make this work, like maybe a MOD Rewrite adjustment???

    Any suggestions are appreciated.
    • AMDbuilder Reply #2, 11 years, 5 months ago
      In your .htaccess try setting: RewriteBase / to RewriteBase /~foldername

      Keep in mind this will likely break pages accessed using the insecure domain. You really should buy a SSL certificate for your site, and also keep in mind your server does need to be PCI Compliant depending on how you collect the credit card data. If you are using Stripe for example then an SSL Certificate alone may do the trick, but I am hardly a PCI Compliance expert so consult your gateway provider for details.

      I hope that helps
        Patrick | Server Wrangler
        About Me: Website | TweetsMODX Hosting
        • 31354
        • 24 Posts
        VDISP Reply #3, 11 years, 5 months ago
        Thanks for the tip AMDbuilder.

        I tried changing the RewriteBase as you suggested but it did not seem to do anything. the address was still resolving as `https://secure.domain.com/1/FURL_NAME.html`

        Then I thought it must have something to do with the tilde so I then changed the RewriteBase as follows:

        RewriteBase /\~foldername (escaping the tilde)

        So now the rest of the site links are broken as you stated, the secure link now includes the correct folder path:

        `https://secure.domain.com/~sitefolder/1/FURL_NAME.html`

        but FURL of the page name is still causing the link to be broken since there is no htaccess file for the main server domain.

        I tried linking directly to the page using

        `https://secure.domain.com/~sitefolder/1/index.php?id=10`

        but that also gets rewritten as

        `https://secure.domain.com/1/FURL_NAME.html`.

        Interestingly the links in the template that are written as `[[$secureurl]][[~10]]`, do resolve as stated above to the URL

        `https://secure.domain.com/~sitefolder/1/FURL_NAME.html`

        but the links in the template that are written as `[[$secureurl]]index.php?id=11`, resolve as

        `https://secure.domain.com/1/FURL_NAME.html`


        FYI:

        I have shopping carts setup on other sites using a seperate RewriteBase rule such as

        RewriteCond %{HTTPS} !=on
        RewriteBase /

        RewriteCond %{HTTPS} =on
        RewriteBase /~sitefolder

        which works great on these, but I cannot seem to get it to work in MODX.


        ???