SSL Issues

Hi all

I recently got my host to install a SSL cert for my Opencart store. (Thinking they would enable it on server and not actually do the Opencart setup)

Anyway, after they had installed my whole site was HTTPS, which is not what I wanted, I just wanted the admin / checkout / customer login to use HTTPS.

It took a while for me to find out that they actually had changed the Opencart config files, and I have now changed so it works the way I want to, i.e. only admin / checkout / customer login pages use HTTPS.

Google in the meantime has indexed HTTPS pages for various products, so I'm thinking I need to setup a 301 redirect of all HTTPS to HTTP except the pages I want to be HTTPS. Anyone have any ideas for that?

I found on another forum that if I use canonical url then I wouldn't have any duplicate content issues, but both my HTTP and HTTPS have canonical url's.

I also read that if a visitor access's the site from HTTPS and the server redirects to HTTP then they would get a security warning message? Although I guess this won't be a problem if after reindexing people won't find the https links?

Any help greatly appreciated.

you need to create a robots_ssl.txt file and then in your .htaccess file add something similar to this:

RewriteCond %{SERVER_PORT} ^443$
RewriteRule ^robots.txt$ robots_ssl.txt

Then you're at the mercy of Google to drop the pages from their index.

DL

What would the robots_ssl.txt file contain?

The pages that are indexed that you don't want indexed. For example, if you had the url https://www.yoursite.com/page1 indexed and you wanted it removed, you'd put Disallow: /page1 into your ssl robots.txt file and do that for every https directory and page that you want removed.

DL