HTTPS

# HTTPS on fortrabbit

All external domains correctly routed will receive a TLS certificate, no configuration or extra setup required. The certs will also be renewed automatically.

# HTTPS options

The following practical tips on how to deal with HTTPS are applying to all TLS options on fortrabbit:

# Redirect all requests to HTTPS

It is recommended to forward all requests to the secure line, so no more "http://", only "https://". You can do that with .htaccess, see htaccess redirects.

# Secure your domain with a CAA record

A Certification Authority Authorization (CAA) is a DNS record to specify which certificate authorities (CAs) are allowed to issue certificates for a domain. It's an extra security layer, so that now one else can intercept any certificates by wrong authorities. There is no integration here on fortrabbit needed. See if your DNS / domain provider supports CAA entries, set the according identifying domain name. When you are using our free Let's Encrypt certs, see this article on how to set it up. Mind that already existing CAA entries can also become a problem when trying to issue new certificates.

# About HTTPS, TLS & SSL

HTTPS is Hyper Text Transfer Protocol over Transport Layer Security. It is used to secure the data transport between a client (browser) and a server. HTTPS is based on TLS (Transport Layer Security), which is the successor to the still better known SSL (Secure Sockets Layer). HTTPS is considered a standard must have for each website. Browsers show a lock in the address bar if the connection is over HTTPS.

# Troubleshooting HTTPS

See the HTTPS troubleshooting guide for some tips you can debug a secure connection on your own.