Comments on: Magento SSL Offloading with Amazon ELB

By: josh belke

josh belke — Wed, 27 Feb 2013 23:35:20 +0000

index.php

above Mage::run($mageRunCode, $mageRunType);

try the following:

if (isset($_SERVER[‘HTTP_X_FORWARDED_PROTO’]) && $_SERVER[‘HTTP_X_FORWARDED_PROTO’] == ‘https’) {
$_SERVER[‘HTTPS’] = ‘on’;
$_SERVER[‘SERVER_PORT’] = 443;
}

By: Jay

Jay — Tue, 26 Feb 2013 03:24:08 +0000

For NGINX, I used the following:

Within the server block:
# Check if Load Balancer handled SSL
set $my_https “off”;
if ($http_x_forwarded_proto = “https”) {
set $my_https “on”;
}

I then added with the rest of the fastcgi params:
fastcgi_param HTTPS $my_https;

By: robbyt

robbyt — Sat, 19 Jan 2013 06:16:54 +0000

Great post! Thank you!!!

By: Max

Max — Thu, 20 Dec 2012 09:39:53 +0000

Hello Ashley,
thanks for the information and description. I’ve identified another issue which I describe here in my blogpost as Step 2. Might help some users. Step 3 is the same as yours.

http://blog.ideaday.de/max/2012/12/magento-https-redirect-loop-ssl-offloading-proxies-pound-nginx/

Have a nice day!
Max

By: Ashley

Ashley — Sun, 16 Sep 2012 07:35:00 +0000

Weird…working fine for me. Maybe depends on Apache version? In any case, best to test this in dev before you release it (that goes without saying, right?)

By: Vince

Vince — Thu, 13 Sep 2012 10:51:23 +0000

SetEnvIf X-Forwarded-Proto https HTTPS=on can’t work since you can’t use an environnement variable in the condition statement.$*

Read Apache doc here : http://httpd.apache.org/docs/2.2/mod/mod_setenvif.html

By: Ashley

Ashley — Wed, 25 Jul 2012 23:54:21 +0000

Looks fine to me, Magento is emitting the https URL’s that it should.

You just need to fix up the absolute URL’s you’re using on the footer, e.g:
http://www.leluv.xxx/skin/frontend/default/default/images/credit-card-new.png

View the page source, or inspect it with Chrome inspector or Firebug to see which resources are being loaded without https.

These url’s are probably hard coded in your theme/template files. Fire your Magento developer and get a good one 😛

By: Jun

Jun — Wed, 25 Jul 2012 23:46:35 +0000

I’m currently setting up our magento website in Amazon and after setting up SSL on Amazon ELB and when using a simple html file, I can see that SSL is working (since the padlock icon is seen in firefox browser). But when I check the Magento website’s checkout page I’m not seeing the padlock icon, check this out:

https://www.leluv.xxx/amazon-check.html
vs:
https://www.leluv.xxx/checkout/cart/

So far I already added the below line to .htaccess file, is there anything else I need to do to make this works? THANKS IN ADVANCE..

SetEnvIf X-Forwarded-Proto https HTTPS=on

By: Chris

Chris — Wed, 25 Jul 2012 12:04:49 +0000

Spot on mate, been trying to work this out for weeks!

Cheers

By: Sergei Filippov

Sergei Filippov — Wed, 18 Jul 2012 10:07:37 +0000

Awesome post Ashley. Will save this one for leter use. =]