I have successfully installed a certificate and turned on the https loging option. My next step is to make the entire website run over https.
I have changed my config file $CFG->wwwroot = 'https://www.mysite.com'; to point to the https but I don't think this is all I need to do.
Do I have to change any configuration on my Apache server?
I run moodle on a LAMP system.
Thank you for your help.
I found out that if you add the following lines into the "default" file in apache2 that holds the "VirtualHost *:80" configuration, all http requests get redirected to https.
ServerName www.sitename.com
Redirect / https://www.sitename.com/
Thank you john for your help. I ended up using the following rewrite code in the /var/apache2/sites-avaiable/default file and now it is working well. That has also resolved the Theme issue I was having.
<VirtualHost*:80>ServerName www.mysite.comRedirect/ https://www.mysite.com/</VirtualHost><VirtualHost*:80>ServerName www.example.com </VirtualHost>
Thanks.
One more problem that I ran into when making Moodle completely over ssl is that the embedded objects in the website that have a http connection will not display.
For example, A Youtube embedded video code that looks like this:
<iframe width="640" height="360" src="http://www.youtube.com/embed/9GDX-IyZ_C8?feature=player_detailpage" frameborder="0" allowfullscreen=""></iframe>
will not display because in the page because of the http request.
But if you change the http directive to https like so:
<iframe width="640" height="360" src="https://www.youtube.com/embed/9GDX-IyZ_C8?feature=player_detailpage" frameborder="0" allowfullscreen=""></iframe>
It works just fine.
Of course you'll have to make sure if the servers you are pulling the embedded objects from allow a https connection.
There is one other thing you should do, the "Change your Moodle URL" step from http://docs.moodle.org/27/en/Moodle_migration#Migrating_a_complete_Moodle_site_-_method_1
Good point.
Thank you for your help Tim.
