HTTPS works but canonical links are still pointing to HTTP

buremba · December 29, 2018, 11:59pm

I’m using Ghost 2 and the installed URL is Analyze Your Customer Data in a Seamless Way, Looker Alternative | rakam.io

If you can see the source of the webpage, the canonical urls are pointing to Analyze Your Customer Data in a Seamless Way, Looker Alternative | rakam.io which is incorrect. The reason is that the value of url config is Analyze Your Customer Data in a Seamless Way, Looker Alternative | rakam.io but if I update it to Analyze Your Customer Data in a Seamless Way, Looker Alternative | rakam.io it doesn’t work since Ghost doesn’t support SSL itself. When I point url to HTTPS and try to load the url, it redirects to https://35.202.68.150/blog which is the source url and it doesn’t load since it doesn’t support SSL.

I need to use NGINX to be able to install it to our landing page without messing up the homepage. Any suggestions?

vikaspotluri123 · December 30, 2018, 12:08am

When you configure Ghost to use an SSL url, you need to make sure nginx is configured to tell ghost it terminated the SSL connection. It sounds like you’re using a custom nginx configuration - can you check that the nginx rules in the template are present in your /blog nginx config?

buremba · December 30, 2018, 5:15pm

@vikaspotluri123 thanks for the answer. We actually switched to Netlify recently and here is the redirects rule that we’re using:

[[redirects]]
  from = "/blog/*"
  to = "http://35.202.68.150/blog/:splat"
  status = 200
  headers = {X-Forwarded-For = "35.202.68.150", X-Forwarded-Proto = "https", Host = "https://rakam.io", X-Real-IP: "35.202.68.150"}
  force = true

The url setting of the Ghost is also updated and unfortunately Analyze Your Customer Data in a Seamless Way, Looker Alternative | rakam.io redirects to https://35.202.68.150/blog at the moment even though the value of Ghost settings url is https://rakam.io/blog.

How does Nginx tell Ghost that it terminated the SSL connection? I can set new headers as you can see in Netlify redirects but I still couldn’t figure out how to do it without using Nginx.

vikaspotluri123 · December 30, 2018, 6:19pm

What netlify means by redirect is sending your user from one location to another - for example, http://ghost.org => https://ghost.org.

Netlify does not work as a reverse proxy, which is what nginx is used for, and what you’re trying to do. For /blog/, your redirect should just contain

from = "/blog/*"
to = "https://rakam.io/blog/:splat"

But you should be aware that it’s not possible to point a domain to 2 separate locations (i.e. netlify AND your ghost instance)

jojo786 · January 2, 2019, 6:05am

I have the same setup: ghost not using HTTPS. But HTTPS really is a requirement nowadays, especially with chrome not serving or complaining about http.
So I use cloudflare to do SSL offloading. Setup a free cloudflare account, configure DNS, then have cloudflare provide HTTPS, but connect http only to your blog.

buremba · January 2, 2019, 6:37pm

Do you mind sharing the blog url with me? If you’re using HTTP in Ghost setting called url, that’s also not optimal since in HTML source Ghost will use HTTP canonical links.

jojo786 · January 4, 2019, 7:16am

I use docker, so when I start the container, I specify url as http, like this:

docker run -d --name ghost-v2.1.3-1 -p 4431:2368 --restart always -v /home/yusufm/gitwork/ghost-data-v1:/var/lib/ghost/content -e url=Hacksaw - The Blog ghost:2.1.3

That will expose everything as HTTP, so you dont need to worry about certs and SSL.
Then setup your domains on CloudFlare, and under crypto, set:
SSL: Flexible
Always use HTTPS: On

This will then make all requests to your domain reach cloudflare. CF will use Flexible SSL, so everything to CD will be HTTPS, but plain HTTP to your ghost server: https://support.cloudflare.com/hc/en-us/articles/200170416-What-do-the-SSL-options-mean-

And with Always use HTTPS, CF wil convert even non-HTTPS to HTTPS: https://support.cloudflare.com/hc/en-us/articles/200170536-How-do-I-redirect-all-visitors-to-HTTPS-SSL-

buremba · January 4, 2019, 9:54pm

Hey there, I have looked into your blog but it looks like the canonical links are still pointing to the HTTP. I started to believe that the maintainers intentionally made it hard to maintain your own Ghost instance. Even though the software itself is cool, they don’t support Docker officially, it doesn’t play well with Heroku or any system other than custom Nginx. All that makes sense since they want to monetize their software and make money from their managed solution. However; I can’t afford $200 plan and I don’t think it’s worth that much.

I moved all the posts to Hugo, installed Ghost theme (https://themes.gohugo.io/hugo-casper-two/) setup Forestry.io as an admin panel and now we have Analyze Your Customer Data in a Seamless Way, Looker Alternative | rakam.io in static pages hosted on Netlify for free.

For the record, we were paying $29 to Ghost previously.

system · January 18, 2019, 9:55pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Ghost uses invalid url when used HTTPS Developer help	3	940	November 29, 2018
I need help. How to set canonical ghost to use https Developer help	7	39	August 17, 2024
Https site url and redirect loop Developer help	3	3324	September 27, 2018
SSL configured Ghost generates a few non-HTTPS links in the body Developer help	7	3784	March 12, 2019
Fixing SSL and Security issues Developer help	8	1707	November 23, 2021

HTTPS works but canonical links are still pointing to HTTP

Related topics