An option to force https

ImDaBigBoss · September 18, 2020, 5:29pm

Hello,
I would love it if I could have an option to force https connections on a static website. A lot of my users have come back to me telling me that my website is not secure…

khalby786 · September 18, 2020, 5:34pm

Hey @ImDaBigBoss,

You can enforce HTTPS on your static site using code.

Before the closing tags, add these lines of code:

<script>
// https://gist.github.com/youngchief-btw/d8c327ef245f2e9998997a41c7b34e70
if (location.protocol === "http:") {
  location.replace(window.location.href.replace("http:", "https:"));
}
</script>

(Credit: @youngchief_btw ^_^)

Hope this helps!

ImDaBigBoss · September 18, 2020, 5:35pm

Oh thanks so much!
(tho it won’t work if someone disables JavaScipt)

khalby786 · September 18, 2020, 5:38pm

Yes, that is pretty much a limitation. It would be best to enforce HTTPS from the server-side, but in a static site, it isn’t possible.

youngchief_btw · September 18, 2020, 5:43pm

Thanks for helping people find this really cool gist and giving me credit along with the gist URL!!

khalby786 · September 18, 2020, 5:43pm

No problem!