Force A Secure Page Using PHP
Many pages, most often pages with forms or pages that serve personal information, require the need to be served over a secure connection. Even recreational internet users have gotten accustomed to looking for "lock" icon within their browser before inputting data into a web form. For the benefit of the business and its website visitors, it's important to ensure that a form page be secured.
To ensure that you page is served over a secure connection, you must first acquire a security certificate. Popular SSL certificate providers include Verisign, Thawte, and GoDaddy (whom I prefer). Once your SSL certificate has been installed on the server, you may add the following code snipped at the top of any page you would like secured:
The PHP Code
//force redirect to secure page
if($_SERVER['SERVER_PORT'] != '443') { header('Location: https://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']); exit(); }The above code forces the script to run on secure port 443 as opposed to port 80. Thus, the page is served securely.
Comments
Be Heard!
Share your thoughts without being a jerk! And wrap your code in <code> tags, f00!
This doesn’t work :-(
Do the webpage need to be php? The page I need secure is html.
Please help. Thanks!
Works just fine for me. Thanks!
niaomi, the code is php so yeah it will need to be run on a php page!!
@niaomi: yes niaomi, it must be PHP
Didn’t work for me. Got error message “Warning: Cannot modify header information – headers already sent”.
Probably has something to do with my hosting company….who knows.
but how to get back to normal http page from https?
@Mikey on June 1, 2011 @ 10:53 am
Didn’t work for me. Got error message “Warning: Cannot modify header information – headers already sent”.
Probably has something to do with my hosting company….who knows.
……………..
you cannot use header in a page that has any output before it.
html is an output.so you use header after html data,and you get the error you did.