Securing your site with SSL has many advantages. It provides data encryption, gives users peace of mind, and is a tried and tested solution. This documentation outlines the options Modulus has for securing your project with SSL.
Please note that all SSL traffic will have the
x-forwarded-proto set to
https. This is useful for determining if a connection is encrypted.
All projects hosted on the *.onmodulus.net domain can be accessed using SSL.
For example, the following two project URLs are available, with the second one providing secure communication between the client and the application server.
This feature is always available and there are no configuration changes required to enable it. The *.onmodulus.net wildcard certificate is used for this feature, so a domain-specific certificate is not required.
*.mod.bz domains also have this feature. You do not need to add an SSL cert entry for a mod.bz custom domain.
All Modulus projects also have the option to provide SSL for any custom domains attached to the project. For more information on how to set this up, or troubleshooting help, check out our SSL Setup Guide.
Auto-Redirecting to SSL
If your project needs to be SSL-only, you have the option to redirect all non-SSL traffic to SSL-enabled routes. To do this all you have to do is check the option in your project's admin page. Once enabled, all non-SSL traffic will be redirected to the https equivalent route, with the proper 302 header.
Go to top