define('FORCE_SSL_ADMIN', true);
define('FORCE_SSL_LOGIN', true);
But I am also wanting to force SSL on a signup page of example.com/wishlist-member
however if I navigate to the wishlist-member then navigate elsewhere on the website it keeps https
enabled unless I go to the homepage to “reset it”
I want the entire website to be forced to have www.
and the force the entire website to be non-SSL with the exception of login forms, admin pages, wishlist-member
I tried the following rules:
RewriteEngine On
RewriteCond %{HTTPS} on
RewriteRule ^/?$ https://%{SERVER_NAME}/ [R=301,L]
RewriteEngine On
RewriteCond %{HTTPS} !=on
RewriteRule ^(wishlist-member/.*)$ https://www.example.com/$1 [R=301,L]
But it doesn’t quite work, the wishlist-member bit works but if I navigate to any other page it keeps the https…
]]>I have some error message on the admin Minify page that I have ignored until now, but I hope it might be the reason why minification does not work for me with both CSS and JS (until now, I accepted jQuery-dependent JS and CSS could just not be merged and minified).
So, W3 Total Cache complains to me:
.htaccess file contains rules to rewrite url https://www.mydomain.de/wordpress/wp-content/cache/minify/000000/w3tc_rewrite_test. If handled by plugin, it returns "OK" message.
The plugin made a request to https://www.mydomain.de/wordpress/wp-content/cache/minify/000000/w3tc_rewrite_test but received:
500 Internal Server Error
instead of "OK" response.
In /html/wordpress/wp-content/cache/minify/.htaccess I have the following line (I attach the entire document below):
RewriteRule /w3tc_rewrite_test$ ../../plugins/w3-total-cache/pub/minify.php?w3tc_rewrite_test=1 [L]
What bothers me: the 000000 from the tested URL does exist in the file structure. However, it does not exist in the .htaccess. Might this be part of the problem?
Thank you for any hints in the right direction.
Ah, and of course the most obvious:
According to this instruction here (german, but probably easy to understand) my Rewrite Engine works properly. Also, it is activated in the host’s backend.
The website can be reached at team-ev.de if that helps.
Error message complete
W3 Total Cache error:It appears Minify URL rewriting is not working. Please verify that the server configuration allows .htaccess
Unfortunately minification will not function without custom rewrite rules. Please ask your server administrator for assistance. Also refer to the install page for the rules for your server.
Technical info.htaccess file contains rules to rewrite url https://www.mydomain.de/wordpress/wp-content/cache/minify/000000/w3tc_rewrite_test. If handled by plugin, it returns "OK" message. The plugin made a request to https://www.mydomain.de/wordpress/wp-content/cache/minify/000000/w3tc_rewrite_test but received: 500 Internal Server Error instead of "OK" response.
.htaccess complete
# BEGIN W3TC Minify cache
Options -MultiViews
FileETag MTime Size
<IfModule mod_mime.c>
AddEncoding gzip .gzip
<Files *.css.gzip>
ForceType text/css
</Files>
<Files *.js.gzip>
ForceType application/x-javascript
</Files>
</IfModule>
<IfModule mod_deflate.c>
<IfModule mod_setenvif.c>
SetEnvIfNoCase Request_URI \.gzip$ no-gzip
</IfModule>
</IfModule>
<IfModule mod_headers.c>
Header set X-Powered-By "W3 Total Cache/0.9.4"
Header set Vary "Accept-Encoding"
</IfModule>
# END W3TC Minify cache
# BEGIN W3TC Minify core
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /wordpress/wp-content/cache/minify/
RewriteRule /w3tc_rewrite_test$ ../../plugins/w3-total-cache/pub/minify.php?w3tc_rewrite_test=1 [L]
RewriteCond %{HTTP:Accept-Encoding} gzip
RewriteRule .* - [E=APPEND_EXT:.gzip]
RewriteCond %{REQUEST_FILENAME}%{ENV:APPEND_EXT} -f
RewriteRule (.*) $1%{ENV:APPEND_EXT} [L]
RewriteRule ^(.+/[X]+\.css)$ ../../plugins/w3-total-cache/pub/minify.php?test_file=$1 [L]
RewriteRule ^(.+\.(css|js))$ ../../plugins/w3-total-cache/pub/minify.php?file=$1 [L]
</IfModule>
# END W3TC Minify core
https://www.ads-software.com/plugins/w3-total-cache/
]]>.htaccess
file is unique in having this block of code:
RewriteEngine on
RewriteCond %{QUERY_STRING} ^[^=]*$
RewriteCond %{QUERY_STRING} %2d|\- [NC]
RewriteRule .? - [F,L]
I’m unsure what it does or if it belongs there. Can someone help me decrypt it?
]]>I’m hoping you guys to can help…
I’m trying to update the .htaccess file so my site redirects from https://website.com.au to https://www.website.com.au. Here’s my current htaccess file:
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ – [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
Any suggestions?
Thanks for your time,
Dan.
I am trying to get https://lizzalittlewort.co.za/home to redirect to the root.
I have the rules required for standard pretty permalinks:
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPress
..but they are breaking my own entry:
Options +FollowSymlinks
RewriteEngine On
RewriteBase /
RewriteRule home https://lizzalittlewort.co.za
ie. It works when I delete the WordPress entry, but then nothing else does.
And it stops working when I put the WP entry back.
How should I write my rule?
Many thanks,
Simon
If you want to avoid this specific sort of attack, what you can do is add .htaccess files to wp-admin/, wp-content/, wp-includes/, etc. which turn off URL rewriting (“RewriteEngine Off”). This will then serve a generic 404 instead of having WordPress handle the request
Will this break anything? Is this advisable? Would I copy exactly what’s on the home and paste it into each of those folders while turning off RewriteEngine?
Thoughts?
]]>I work for a major university and we are currently migrating sites in a department to WordPress. One of the sites needs to have all files in the Uploads folder protected so that only logged in user can access those files. Normally I can do this in the .htaccess file. BUT, our Sys Admins have RewriteEngine blocked System Wide and per them, it will not be cut on.
Does anyone know of a way that I can block access to that folder or another folder that I can upload to so that only logged in user can access certain files that are attached to a page or post.
Any help would be great!
]]>-The web address is cdllife.com and it is hosted at GoDaddy
-I can access everything (including posts), but am given a redirection/infinite loop error at cdllife.com/CDLLIFE/wp-admin (via Firefox) and a 404 if the subfolder is withheld from the url. I cannot access the admin panel or even the login screen. This is the exact error message:
“The page isn’t redirecting properly” “Firefox has detected that the server is redirecting the request for this address in a way that will never complete.”
-I am not sure what the blog home and url are set at under the general settings (I am assuming it is directing to the subdirectory), but I’ve tried setting it differently in the wp-config file and this always results in the site returning a 404 error or worse.
-There is an .htaccess file at the domain level and this is the contents:
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /CDLLIFE/
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /CDLLIFE/index.php [L]
</IfModule>
# END WordPress
There is also an .htaccess file in the subdirectory where WordPress is installed. This is what it contains:
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine Off
RewriteBase /
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPress
I’ve tried everything I can, but I’m not sure how to fix it. I’d rather not do a clean install on the www level, but that’s my next step
Please help! If I can provide any additional information, please let me know… and THANK YOU!
]]>