Page
of 3

Release SSL Support - HTTPS support for Custom Domains

23 replies
Posts:
1,339
Likes:
+1,011
Popular
LEVEL 4
Logo-160px.png

SSL Support
HTTPS support for Custom Domains

Hello everyone,

Today we are pleased to announce that Secure Socket Layer (SSL) support is no longer just for Enjin subdomains but, now, also for website's that are using a Custom Domain.

What is HTTPS/SSL?
SSL is a standard security technology used to establish a secure, encrypted link between a server and a client. For example, SSL can be used between a web server and a browser. This example is referred to as using HTTPS in order to connect to the website.

Using SSL allows your website and your visitor’s browser to transmit private, sensitive information without the worry of eavesdropping, web forgery, and data tampering.

What are the benfits accompanied with enabling HTTPS?
  • Your website will have a green padlock in the address bar indicating, to your users, that your sife is safe.
  • Your website will receive an improved Search Engine Optimization (SEO) ranking by search engines.
  • Your website will begin to use the HTTP/2 protocol which implements optimizations to decrease page loading times.

How much does it cost?
Nothing. Enjin will pay for your SSL certificate in addition to the cost of renewals and maintenance.

How do I enable HTTPS?
In order to enable HTTPS, ensure that you're on the account that owns the website then, simply follow these steps:
  1. Navigate to your website's administrator panel.
  2. Select the "Settings" tab.
  3. Select the "SSL" option from the menu on the left-hand side.
  4. Click the "Click Here to Enable HTTPS" button.
  5. Success! You will now have HTTPS enabled on your website and all traffic will be redirected to use HTTPS.

How do I disable HTTPS?
Many websites rely on the use of custom scripts, stylesheets and images which they don't necessarily own and are therefore obtained from a third-party domain they don't control. This can lead to problems as website's that use HTTPS will refuse to load resources via HTTP (this is due to it being considered a security issue). Therefore, if you use any external scripts from a domain that doesn't have HTTPS enabled, you may need to disable HTTPS until the owner of that website implements HTTPS support.

In order to disable HTTPS, ensure that you're on the account that owns the website then, simply follow these steps:
  1. Navigate to your website's administrator panel.
  2. Select the "Settings" tab.
  3. Select the "SSL" option from the menu on the left-hand side.
  4. Click the "Click Here to Disable HTTPS" button.
  5. Success! You will no longer have HTTPS enabled on your website and all traffic will be redirected to use HTTP.

I need help!
If you need any additional assistance, feel free to submit a support ticket, we're more than happy to help!

Yours faithfully,
- The Enjin Team
Follow @enjinCS on Twitter!
Official Enjin Support: Submit a Ticket!
Enjin Forum Rules | Enjin Terms of Service


Enjin Tech Developer
tech-dev-signature_1404885254.png
Posted May 12, 18 · OP
Like
x 7
x 7
Love it
x 7
x 7
List
Undo
Posts:
168
Likes:
+104
Active
LEVEL 2
Awesome, can't wait to get the shiny green padlock!

Is this still rolling out or is it only available to websites using Enjin DNS? I don't have the option in my admin panel.
Posted May 12, 18
Posts:
1,339
Likes:
+1,011
Popular
LEVEL 4
Awesome, can't wait to get the shiny green padlock!

Is this still rolling out or is it only available to websites using Enjin DNS? I don't have the option in my admin panel.

Hello there,

I've just checked your website and it appears to already be active. There appears to be some content loading insecurely (over HTTP) and so they will need changing to HTTPS before the green padlock will appear. You can check which content via the "Developer Tools -> Console" window.

Best regards,
Brad.
Follow @enjinCS on Twitter!
Official Enjin Support: Submit a Ticket!
Enjin Forum Rules | Enjin Terms of Service


Enjin Tech Developer
tech-dev-signature_1404885254.png
Posted May 12, 18 · OP
Like
x 1
x 1
Love it
x 1
x 1
List
Undo
Posts:
168
Likes:
+104
Active
LEVEL 2
wrote:
Awesome, can't wait to get the shiny green padlock!

Is this still rolling out or is it only available to websites using Enjin DNS? I don't have the option in my admin panel.

Hello there,

I've just checked your website and it appears to already be active. There appears to be some content loading insecurely (over HTTP) and so they will need changing to HTTPS before the green padlock will appear. You can check which content via the "Developer Tools -> Console" window.

Best regards,
Brad.
Thanks, it's appeared in my admin panel as well! Perhaps one of my administrators already enabled it, because I certainly didn't. I'll look into fixing the unsecured content.
Posted May 12, 18
Like
x 1
x 1
List
Undo
Posts:
168
Likes:
+104
Active
LEVEL 2
Pro tip: If anyone has problems with their scripts hosted on http://files.enjin.com being insecure, just prefix with "https://s3.amazonaws.com/" and all will be good.

eg. http://files.enjin.com/34574567834657 becomes https://s3.amazonaws.com/files.enjin.com/34574567834657

Some images may also be insecure. You may have to change http://assets.enjin.com.s3.amazonaws.com/... to https://s3.amazonaws.com/assets.enjin.com/...

For the Enjineers, can we get an update on Admin Panel > Settings > Website Branding > Favicon? It's trying to load from https://files.enjin.com/973960/site_logo/favicon.ico, which isn't secure.
Posted May 12, 18
Posts:
168
Likes:
+104
Active
LEVEL 2
Alright, favicon is fixed (that was quick, thanks xD)!

Let's try something else: Images loaded on the wiki are not secure. We can't exactly change them ourselves though, because it uses the wikicode thumb|position|size|Description of some sort.
Posted May 12, 18
Posts:
1,339
Likes:
+1,011
Popular
LEVEL 4
Alright, favicon is fixed (that was quick, thanks xD)!

Let's try something else: Images loaded on the wiki are not secure. We can't exactly change them ourselves though, because it uses the wikicode thumb|position|size|Description of some sort.

Hello there,

Thank you for the information, I will look into the wiki images not loading securely.

Best regards,
Brad.
Follow @enjinCS on Twitter!
Official Enjin Support: Submit a Ticket!
Enjin Forum Rules | Enjin Terms of Service


Enjin Tech Developer
tech-dev-signature_1404885254.png
Posted May 12, 18 · OP
Like
x 2
x 2
List
Undo
Posts:
1,339
Likes:
+1,011
Popular
LEVEL 4
Hello there,

The wiki images are now loading over HTTPS.

Best regards,
Brad.
Follow @enjinCS on Twitter!
Official Enjin Support: Submit a Ticket!
Enjin Forum Rules | Enjin Terms of Service


Enjin Tech Developer
tech-dev-signature_1404885254.png
Posted May 12, 18 · OP
Like
x 1
x 1
Love it
x 1
x 1
List
Undo
Posts:
1
Likes:
+2
YES! AWESOME! Thank you Enjin for this much needed supports. You guys Rock! I will now be a loyal customer. Thank you!
Posted May 12, 18
Like
x 2
x 2
List
Undo
Posts:
37
Likes:
+17
Just Started
LEVEL 1
This is great! I do have a suggestion though that I'll just post here. Can you allow http links to be proxied so it doesn't break the page? We're already checking all content hosted locally to make sure that is in order and loading up with https. However, if a user posts a link or image that is http, it'll break the page. I don't think Enjin site owners/administators should have to worry about that too much or default to enabling or disabling SSL just because users are posting content that is loaded over http.
Posted May 13, 18
Agree
x 2
x 2
Like
x 1
x 1
List
Undo
Page
of 3
Social Media
Follow us on our social media!
You will receive information, news, sneak peaks, giveaways and more!
NoticeNotices