stackoom
  简体   繁体   中英

How to redirect https to http without any SSL Certificate

 原文  2011-06-13 13:53:02       php/ facebook/ ssl/ redirect/ https

Question

Is difficult to explain what I am seekig here.

I have a website that doesn't have SSL Certificates and I am using a page as a landing page for a Facebook Application.

My Problem is when someone is on a secure connection on facebook (https://) the iframe src is pointed to the same https URL of my landing page. this returns an error like this.

SSL connection error

Unable to make a secure connection to the server. This may be a problem with the server, or it may be requiring a client authentication certificate that you don't have.

Error 107 (net::ERR_SSL_PROTOCOL_ERROR): SSL protocol error.

How do I may users redirect to http or any workaround without installing SSL Certificates?

4 answers

solution1
 26 ACCPTED  2011-06-13 13:56:39

There is really no way to do that: HTTPS relies on the SSL certificate being present and the SSL negotiation ocurring BEFORE any data is sent to the server. Therefore if there is no SSL cert then it won't even get to the point where you can send a redirect (as you are observing).

I'd suggest just buying the cheapest cert you can: GoDaddy has specials for $12.99 that I've used quite effectively for just this purpose (Facebook app SSL pages) and that you can have bought and ready in 15 minutes.

EDIT: Just use Lets Encrypt , as @xbakesx states in his comment. Completely free, no delay, accepted pretty much everywhere.

solution2
 3  2011-06-13 14:15:39

As an addition to Femi's comment, all Facebook Apps and Pages must support SSL from October 1st so one must prepare for it anyways.

Re: https://developers.facebook.com/blog/post/499/

solution3
 2  2016-04-22 08:30:36

I found a nice solution today to have pages with HTTPS without having a certificate.

You can use cloudflare SSL: Flexible . This way the SSL will be between client and cloudflare server, and between cloudflare and your server will not be secure.

This option is only if you don't have sensitive data because the connection betweeen server and cloudflare is not encrypted

This is how it looks:

在此处输入图像描述

Check here more: https://support.cloudflare.com/hc/en-us/articles/200170416-What-do-the-SSL-options-mean-

solution4
 2  2011-06-13 13:58:37

If you can't prevent the initial connect from happening with HTTPS, then you (and your server) are never part of the conversation. The only two options are 1) get an SSL certificate (they are cheap), or 2) somehow get the connection to happen over HTTP.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to redirect any http to https and remove www in aws using .htaccess How to force https in CakePHP without redirect from http? How to redirect http to https in codeigniter How to redirect from HTTPS to HTTP? How to disable HTTPS and redirect HTTPS to HTTP in Wordpress? apache redirect http to https without www SSL Error: how to redirect https://www.domain.com to http://domain.com via .htaccess to avoid SSL error How to fix htaccess ssl https redirect? apache + varnish + nginx + ssl + wordpress redirect all http traffic to https How to replace http:// urls with https:// - wordpress ssl
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM