While there was a suggestion about how to force HTTPS, it is often recommended to use the method suggested by the host. Not sure if this will have an effect, but on their site: https://my.bluehost.com/hosting/help...-ssl-all-pages
They recommend:
Code:
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
This is different than reviewing for port 80...
To try to force to include www.:
Code:
RewriteEngine On
RewriteCond %{HTTP_HOST} !^www.sonasiya.com$ [NC]
RewriteRule ^(.*)$ https://www.sonasiya.com/$1 [L,R=301]
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
The new information came from: https://my.bluehost.com/hosting/help...s_redirect#www
The above accomplishes both checks/corrections.
The first identifies that the domain name is not the final desired domain name (will not work well if there are two or more domains and/or sub-domain in this path of files), the second forces secure communication if it is not currently active. Both are from the bluehost site.
It does seem like there is some sort off certificate/session setup issue. Just tried to use ssllabs.com to evaluate the site and it has had problems. Just did an internet search for sites hosted at the same location and although the server responded identifying that the server supported TLS 1.0 and 1.1 capping the grade to a B, the evaluation got further than before. This site was: lohp . berkeley . edu
Bookmarks