Force http wordpress app

france · April 2, 2024, 2:53pm

NS8

I should force the https connection to http on the wordpress app. Although I have selected the deactivation of this state and changed the url to http continue to redirect . Serve me because I’m carrying out tests with HAPROXY and I serve this configuration. Same thing for nexcloud . With GLPI and Roundcube it works perfectly . At the moment the glkpi and roundcube servers are protected by ssl connection directly from HAPROXY .

stephdl · April 2, 2024, 7:21pm

Can you test it with curl to demonstrate

curl -v http://fqdn

Do it on all module that you think yoi have an issue

france · April 2, 2024, 8:58pm

Yes, the door is open, but I see the location on https. I don’t know if this parameter is decisive.

stephdl · April 2, 2024, 8:58pm

Paste the output please

france · April 2, 2024, 9:03pm


ontent-Length: 0< Content-Type: text/html; charset=UTF-8< Date: Tue, 02 Apr 2024 21:00:23 GMT< Location: https://Myhost.org/< Server: Apache/2.4.57 (Debian)< X-Powered-By: PHP/8.3.3< X-Redirect-By: WordPress

stephdl · April 2, 2024, 9:11pm

Hum not complete or not relevant

Please paste me the complete output of

curl -v http://fqdn

If we force a redirection we should see a 302 redirection

Btw maybe wordpress is not the good beast because I recall the url are stored in mysql so you cannot go back when you have set to https

Maybe the fix is to force https all the time

france · April 2, 2024, 9:14pm

Thanks, I’ll post it to you tomorrow, now I can’t access the PC. At the moment thank you as always.

france · April 3, 2024, 5:41am

Hi @stephdl here’s how much the output gives me

*   Trying 192.168.3.76:80...
* Connected to xxxx.duckdns.org (192.168.3.76) port 80 (#0)
> GET / HTTP/1.1
> Host: xxxx.duckdns.org
> User-Agent: curl/7.76.1
> Accept: */*
> 
* Mark bundle as not supporting multiuse
< HTTP/1.1 301 Moved Permanently
< Content-Length: 0
< Content-Type: text/html; charset=UTF-8
< Date: Wed, 03 Apr 2024 05:37:50 GMT
< Location: https://xxxx.duckdns.org/
< Server: Apache/2.4.57 (Debian)
< X-Powered-By: PHP/8.3.3
< X-Redirect-By: WordPress
< 
* Connection #0 to host xxxx.duckdns.org left intact

stephdl · April 3, 2024, 6:53am

Ok thank

Clearly you have a 3xx redirection. I state that the toggle is set to false for the https redirection ?

stephdl · April 3, 2024, 7:12am

sorry I cannot reproduce

with curl I see the 301 redirection with the toggle to true but I can display the html page when the toggle is set to false. However it is true that with chrome I got a kind of cache and I need to force several time the http request to go to http

someone could try please

I checked the code but it is the same we use everywhere

github.com

NethServer/ns8-wordpress/blob/39cf484ca8f60d0f9548da0f7e3109ce676940fa/imageroot/actions/configure-module/20configure_traefik#L26


      
          data = json.load(sys.stdin)
          
          # Setup default values
          host = data.get("host")
          h2hs = data.get("http2https", True)
          le = data.get("lets_encrypt", False)
          
          # Talk with agent using file descriptor.
          # Setup configuration from user input.
          agent.set_env("TRAEFIK_HOST", host)
          agent.set_env("TRAEFIK_HTTP2HTTPS", h2hs)
          agent.set_env("TRAEFIK_LETS_ENCRYPT", le)
          
          # Make sure everything is saved inside the environment file
          # just before starting systemd unit
          agent.dump_env()
          
          # Find default traefik instance for current node
          default_traefik_id = agent.resolve_agent_id('traefik@node')
          if default_traefik_id is None:
              sys.exit(2)

france · April 3, 2024, 7:37am

Thank you, yes on gui , the wordpress app has the deactivation flag http > https .
Also on traefik here is the redirect that is disabled .

france · April 3, 2024, 11:10am

However, despite being deactivated and above all I have changed the url from wordpress it continues to redirect. I ask you in the meantime, with traeffic I have done tests for redirecting on some hosts (not virtualhost) eg. 192.168.3.32/zabbix etc . Is there the way as haproxy does to make a redirect from the wan on one of its virutalhost?

stephdl · April 3, 2024, 12:17pm

open a new thread maybe and reformulate I did not catch the issue