[Plugin: WordPress HTTPS (SSL)] Cannot set variables in wp-config.php

  • Resolved Gil Yoder

    (@yoderat)


    12 years, 9 months ago

    (Version note: I am actually running WordPress 3.4 RC from a day ago; not 3.3.2.)

    I have just installed WordPress HTTPS from the plugins site, so I have never had this working before. When I click on “Save” on the settings page a brief message appears saying, “SSL Admin – FORCE_SSL_ADMIN and FORCE_SSL_LOGIN can not be set to true in your wp-config.php.”

    I can and have set both of these variables to true manually in the config file, but I wanted to report this to see if anyone knows why this is happening, and to raise it as a possible bug in the new version.

    Also a suggestion regarding the error message: The error message clears too quickly to catch the details of the message. I had to select and copy the message quickly in order to see what it was saying. The pop up and fade are snazzy, but for messages like this where the intent is to present information that should rarely be seen, it would be better just to print it on the current page and leave it there, at least in my judgment.

    https://www.ads-software.com/extend/plugins/wordpress-https/

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Author mvied

    (@mvied)

    It’s happening because it’s supposed to. FORCE_SSL_ADMIN and FORCE_SSL_LOGIN can not be set to true in your wp-config.php, as the message states. There is code on WordPress’ login page that redirects to HTTPS if either of those are set in wp-config.php. The redirect is not pluggable, so it can cause issues that conflict with the plugin.

    Thread Starter Gil Yoder

    (@yoderat)

    The redirect is not pluggable, so it can cause issues that conflict with the plugin.

    Thank you for your response.

    Are you saying that the message means that the variables should not be set to true, and not as I thought that the plugin was failing to set them to true? If so, I’d would never have interpreted the statement in that light. That might be understood better, if the word “should” were used in the message rather than “can.”

    It is unfortunate if the plugin breaks when these variables are set to true. I don’t want to have users send personal information and passwords without encryption, but I don’t want them to have to use SSL normally. Is there a workaround for this so that the plugin works under the circumstances I describe?

    Plugin Author mvied

    (@mvied)

    I suppose I chose “can” because “should” implies that they should not be set to true, but it does not imply that they are set to true. We programmers are pretty literal in our wording, lol. I’ll probably end up changing it somehow to be a little more clear.

    The plugin doesn’t break. Because the redirect isn’t pluggable, I had to re-implement FORCE_SSL_ADMIN as a setting in the plugin, Force SSL Admin. So if you want to use my plugin and secure your admin panel, remove FORCE_SSL_ADMIN from wp-config.php and enable Force SSL Admin on the HTTPS settings page and it should provide the same functionality.

    Thread Starter Gil Yoder

    (@yoderat)

    So if you want to use my plugin and secure your admin panel, remove FORCE_SSL_ADMIN from wp-config.php and enable Force SSL Admin on the HTTPS settings page and it should provide the same functionality.

    Thank you! That clears things up for me now. I installed TML a little while ago, but just now got around to configuring my site to use the themed page rather than the default wp-login.php. When I saw the yellow popup this morning I was trying to get the themed login page to redirect to use HTTPS. I had already set FORCE_SSL_ADMIN manually in wp-config.php, but not FORCE_SSL_ADMIN. I thought your plugin was trying to update that and failed, hence my original post.

    Now that I know what the plugin is doing, I’ll go back and remove both and use your plugin for that.!

    BTW thanks for your work. I’ve wondered why WordPress did not already use a themed log in page, and I’ve tried several different plugins trying to make the login more professional. TML provides a service that should be “in the box,” but isn’t.

    Thread Starter Gil Yoder

    (@yoderat)

    To mark this thread as resolved.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘[Plugin: WordPress HTTPS (SSL)] Cannot set variables in wp-config.php’ is closed to new replies.