Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/littlebizzy/force-https

HTTPS enforcement for WordPress
https://github.com/littlebizzy/force-https

wordpress wordpress-plugin

Last synced: 9 months ago
JSON representation

HTTPS enforcement for WordPress

Awesome Lists containing this project

README 

          
# Force HTTPS



HTTPS enforcement for WordPress



## Changelog



## 3.0.1

- improved WP-CLI and WP-Cron compatibility with home/siteurl filtering logic



## 3.0.0

- added `Tested up to` header

- added `Update URI` header

- added `Text Domain` header

- improved HTTPS redirection that skips WP-CLI, WP-Cron, and AJAX

- now leveraging `pre_option_home` and `pre_option_siteurl` to override WordPress sequence early

- several more `add_filter` being enforced

- refined regex in `the_content` to correctly process `` and `<style>` blocks

- refinded and expanded regex for HTML elements

- support for several WooCommerce `add_filter` if detected

- significant code structure, syntax, and efficiency improvements



### 2.0.3

- added `Requires PHP` plugin header



### 2.0.2

- improved `gu_override_dot_org` snippet



### 2.0.1

- fixed `gu_override_dot_org` snippet



### 2.0.0

- completely refactored code to WordPress standards

- no more defined constants or options (hardcoded to enforce HTTPS on all internal/external links and resources)

- much more extensive `add_filter` rules and HTML enforcement of HTTPS

- supports PHP 7.0 to 8.3

- supports Multisite



### 1.4.3

* fixed undefined variable error (new default $modified = false)



### 1.4.2

* improved composer.json

* updated metadata



### 1.4.1

* tested with WP 5.1

* updated metadata

* tweaked `composer.json`



### 1.4.0

* PBP v1.2.0

* removed `FORCE_SSL` constant references

* added support to force HTTPS on `source` elements (previously unsupported) ... this fixes GitHub Issue #7

* late support for new FORCE_HTTPS defined constant

* define('FORCE_HTTPS', true);

* define('FORCE_HTTPS_EXTERNAL_LINKS', false);

* define('FORCE_HTTPS_EXTERNAL_RESOURCES', true);

* define('FORCE_HTTPS_INTERNAL_LINKS', true);

* define('FORCE_HTTPS_INTERNAL_RESOURCES', true);



### 1.3.0

* PBP v1.1.0

* tested with PHP 7.0, 7.1, 7.2

* tested with PHP 5.6 (no fatal errors only, tweaked code style and several corrections)

* better support for WP-CLI (fixes GitHub Issue #6/#2)

* simplified plugin class organization

* late support for FORCE_SSL constant aborting the plugin functionality in the last minute if false



### 1.2.0

* tested with WP 5.0



### 1.1.4

* updated metadata



### 1.1.3

* updated recommended plugins



### 1.1.2

* updated metadata



### 1.1.1

* updated metadata

* updated recommended plugins



### 1.1.0

* versioning correction (major changes in 1.0.6)

* (no code changes)



### 1.0.6

* changed filters to force HTTPS for external resources (but not hyperlinks) including `src`, `srcset`, `embed`, and `object`

* (if an external resource does not exist in HTTPS version, it may generate a 404 error)

* (philosophy = "green padlock" more important than a resource 404 error)

* added warning for Multisite installations

* updated recommended plugins

* updated metadata



### 1.0.5

* better support for `DISABLE_NAG_NOTICES`



### 1.0.4

* partial support for `DISABLE_NAG_NOTICES`

* updated metadata



### 1.0.3

* tested with WP 4.9

* updated recommended plugins

* updated metadata



### 1.0.2

* filter to "skip" external hyperlinks

* better HTTPS filters for internal links, internal sources, and image `srcset`

* optimized plugin code

* added rating request notice

* updated recommended plugins



### 1.0.1

* added recommended plugins notice



### 1.0.0

* initial release