WP Config fix needed

WP Config fix needed

in some cases your wp-config.php requires some changes before SSL will work correctly. This usually happens when your site is behind a loadbalancer or your wp-config.php contains a hardcoded http:// WP_HOME/WP_SITEURL constant. The plugin will fix this automatically in most cases but fails when the wp-config.php file is not writable. To automatically fix this issue, make your wp-config.php file writable.

Alternatively, you can do the following to manually fix this issue:

1) Check if your wp-config.php file contains one of the following lines:

define('WP_HOME', 'http://example.com');
define('WP_SITEURL', 'http://example.com');

If so, change the url to https://example.com (where example.com is your domain of course).

2) If that doesn’t remove the notice, you can add the following code to your wp-config.php file to apply the load balancing fix:


//Begin Really Simple SSL Load balancing fix
$server_opts = array("HTTP_CLOUDFRONT_FORWARDED_PROTO" => "https", "HTTP_CF_VISITOR"=>"https", "HTTP_X_FORWARDED_PROTO"=>"https", "HTTP_X_FORWARDED_SSL"=>"on", "HTTP_X_FORWARDED_SSL"=>"1");
foreach( $server_opts as $option => $value ) {
if ((isset($_ENV["HTTPS"]) && ( "on" == $_ENV["HTTPS"] )) || (isset( $_SERVER[ $option ] ) && ( strpos( $_SERVER[ $option ], $value ) !== false )) ) {
$_SERVER[ "HTTPS" ] = "on";
}
}
//END Really Simple SSL

Any questions? Let us know and we’ll help you.

Simple and Performant Security.
Easily improve site security with WordPress Hardening, Two-Factor Authentication (2FA), Login Protection, Vulnerability Detection and SSL certificate generation.