Hi everybody - I've been struggling with this for a while, thought I'd cast out to you folks for help.
I have a 1.7.2 site using a custom module. I want the Admin and CERTAIN pages on the module protected by SSL - and none of the other Orchard site pages ('about us' and such). No problem.
Got a certificate, uploaded to Azure, configured. Working. Nice. Can access pages under SSL or regular old http.
I've configured the site to operate as
. Both work as expected when the SSL module is off.
So - figured I'd use the "SecureSocketsLayer" module to cherry pick the pages to protect. Not happening unfortunately. My secure host name is "secure.mydomain.com" and my insecure host name is "www.mydomain.com
I have "force SSL on all pages" OFF and "Enable SSL on specific pages" ON. I have asked for a single page to be protected (for now) - I am expecting the site runs under http until I hit my test page, then switches to https, then back to
http when I browse away.
When I browse to the home page I'm running as https with the 'secure' host. No good. When I force http (insecure host) I get a blank white screen. Return to admin, log out, white screen. Clear cookies, open new browser window, white screen. Orchard dead. :-(
The certs are fine, they work as expected without the SSL module. I'd like to use the module because I don't know how I could jump the site out of SSL mode without it (particularly when the user browses outside of my module).
Am I doing something wrong? Any other options?