WPChat now HTTPS' all the things

(Leland Fiegel) #1

This is a continuation of this poll: Should WPChat be served over HTTPS? The results came back as a pretty resounding yes.

Also, sorry for the all the downtime today.

It was because when installing an SSL certificate to the Discourse Docker container, it requires an app rebuild that takes a pretty long time (8-15 minutes or so by my count). That multiplied by the several times I had to rebuild to figure out what was going on equaled pretty significant downtime today. :frowning:

The good news: I figured it out. So it’s over now and there’s https everywhere on WPChat.

I found existing documentation to be a bit lacking and confusing, so I plan on doing a write up on how I did it that will hopefully help out others in the same situation.

Discourse is pretty good about using relative URLs, but let me know if you see any mixed content warnings or anything like that.

Due to the rebuild, I also upgraded to the latest beta version of Discourse, so if you see any quirks today that you didn’t see yesterday, that’s probably why.

Discourse upgraded to 1.2.0.beta5
Poll: Should WPChat be served over HTTPS?
(Peter) #2

Great, I really like if website use https, not bc. security, but it looks cool :slight_smile: and it show me, that someone take care about site and he follows the latest IT recommendation.

Its really ‘‘fun’’ to see for example Gravity forms use no responsive website or how iThemes stored passwords as plain text :slight_smile: … see that too often, how business grow up they forget many things …

Btw. I m impressed how Discourse is user friendly, simple and great solution for forum (from frontend).
Is the same feeling on backend ?

(Leland Fiegel) #3

Yep, same feel on the backend as well.

(Peter) #4

Do you host this on Digital Ocean? What is your stack? Will be interesting to read more about that.

(Leland Fiegel) #5

Digital Ocean with a 1 GB Ubuntu droplet. Then just ran the Discourse Docker install which handles the rest of the stack (Nginx, Redis, PostgreSQL, etc.).

This is a good place to start: https://github.com/discourse/discourse/blob/master/docs/INSTALL-digital-ocean.md

(Brad) #6

I got the warning / error prompt
And you can run wpchat through this https://www.whynopadlock.com/check.php to see what happened.

(Leland Fiegel) #7

What page did you see this on? I’ve found a couple embeds that were giving mixed content warnings that I’ve been weeding out.

(Brad) #8

(I wish I knew how to do a screenshot on my Galaxy.)
It’s on the main home page. Poo, just noticed it’s on the individual chat pages as well.
Did you run it through the whynopadlock url?

(Leland Fiegel) #9

Yeah, I ran it through that and SSL Labs and found a couple issues.

I think the problem was I added the root certificate to the chain when I shouldn’t have.

Just removed it and got an A+ on the SSL Labs test, up from a B.

Let me know if you still see the error, but it should be gone now.

(Leland Fiegel) #10

Finally published my tutorial on how I did it: Running Discourse over HTTPS