How to get HTTPS for your blog or website?
SSL is a “cryptographic protocol” which protects and secures data being transferred through a computer network; this transfer of information occurs between a website or online application and a visitor. So, if you are running any blogging to professional site, enabling SSL might make generate more traffic than with no SSL.
Generally SSL certificates are costly depending upon the type from just Green Lock to showing on your company name like Cloudflare. In this blog, we are going to achieve just green Lock[ SSL certificate normally would cost more than $10]. For this purpose, make sure you have proper access to the Control Panel of the Domain name.
There are some sites like letsencrypt.org that even offers free SSL. But here in this blog we are going to use Cloudflare as already mentioned. Cloudflare in its free plan allows you to have SSL on your site. From SSL off to Full restrict option, cloudflare allows to have such features for free.
Process to activate SSL for free!
1. Sign Up for the cloudflare.
2. Goto add site option and enter your site details. Once the scan process is finished, click on continue.
3. A list of all the DNS records found is displayed, including your subdomains. Also choose to select the plan. Just click on Free and continue.
4. It will ask you to update the nameservers. Every person is assigned 2 different nameserver which should be something like —.ns.cloudflare.com.
Goto your domain registrar from where you have purchased domain. Login and Change the nameserver as assigned from cloudflare. And head back to the Cloudflare.
5. Once the previous step is finished, just click on check Nameservers. Cloudflare starts to check on the nameservers. Usually this step takes <10 minutes.
Once the nameservers are verified, you will see the green arrow. or status active along with type of plan.
6. After the successful verification go to Crypto option and the first one is the SSL you should see. Then select the Flexible to Full and Full restrict option as per your requirement.
Congratulation, you have https enabled in your site/blog.
But wait, we are not yet finished.
Depending upon the web hosting, your site may not always be redirected to https. For example, a user may enter example.com which may be served to http://example.com but we want to redirect to https://example.com. You can also use .htaccess rules via the hosting panel but the easy way is using that same thing from cloudflare if you are already member here.
1. So go to the Cloudflare panel and Click on the page rules. In free plan, CF allows to have 3 page rules.
2. Go to Create page rules and you can have the following option.
Enter the url in exactly same format [replace example.com] and choose always https as shown in the image. Hit save and deploy.
Why http://.example.com/?
Because, it will also u to have https enabled in every subdomain and every links in the blog or website.[* is wildcard ]
Thats’ all for today. Hope it helps.
[Image Credits: Cloudflare blog.]
Subscribe
To keep up with posts on this blog, you can subscribe via RSS or follow me on DEV.