Force SSL

  • Resolved ms100

    (@ms100)


    3 years, 4 months ago

    Hi team,

    When having all traffic redirected to https in the .htaccess file, and/or using HSTS to instruct all browsers to use HTTPS, does the Force SSL plugin add any value to the Matomo security? Or does this make the Force SSL plugin redundant?

    Looking forward to your reply

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Support varunmatomo

    (@varunmatomo)

    3 years, 4 months ago

    Hi @ms100 if you are already forcing HTTPS and having no issues with doing so it may not add much further value. Can you confirm if your tracking code is also redirecting to HTTPS? You can also learn more here: https://plugins.matomo.org/ForceSSL?wp=1

    Thread Starter ms100

    (@ms100)

    3 years, 4 months ago

    Thanks for the reply @varunmatomo I can confirm the tracking code is also redirecting to HTTPS. The plugin description explains:

    It also makes sure that the generated tracking code will use HTTPS.

    Does this mean the generated tracking code does not have to be redirected anymore? If that is the case, would it make the loading of the generated tracking code safer and (a little bit) faster?

    Plugin Support varunmatomo

    (@varunmatomo)

    3 years, 4 months ago

    Hi @ms100 yes that is correct, it might not effect performance that much. Please double check the tracking code after the plugin is added before updating it.

    Thread Starter ms100

    (@ms100)

    3 years, 4 months ago

    Thank you for the support @varunmatomo

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Force SSL’ is closed to new replies.