Not secure on iOS - fine on Mac

Our site (fridhemslan.se) is secure when using Safari on Mac, but Not secure when opened in Safari on iPhone or iPad. It was fine a few month ago. What has happened?

I see it’s not automatically forwarding to HTTPS. I suggest you use Cloudflare’s TLS/SSL page for Edge Certificates and enable “Always Use HTTPS” and “Automatic HTTPS Rewrites”. That might fix it.

Did that. For some reason “Always Use HTTPS” was not enabled. Did that. Still can’t load on iPhone or iPad. iMac is fine I think - will clear cashes and see what happens.

No, iMac still can download the site, but not iPhone or iPad.

There is a mension of a certificate I could generate and place on the server, but I have no idea where (at my ISP) I can place it. I have 4 folders: cgi-bin, logs, private and public.
The rest is populated by the web app I use to create the site (its files are in public).

I have now narrowed the problem down.
If I use 4G on the iPhone/iPad the site is fine, but if I use wifi it is not.
That does not look like a Cloudflare problem to me. I just wonder why?
Probably a problem with the router…

Sorry for troubling you.

Back again.

I can get to other secure sites on the net via wifi on my iPhone, but not to our site. So wifi is working - just not securely on our site via wifi.

I don’t get it.

Hi @styrelsen,

[email protected] ~ $ dig ns fridhemslan.se +short
leah.ns.cloudflare.com.
burt.ns.cloudflare.com.
[email protected] ~ $ dig fridhemslan.se +short
104.27.143.233
104.27.142.233

Shows that your domain is correctly configured and proxied through Cloudflare.

[email protected] ~ $ curl -I http://fridhemslan.se
HTTP/1.1 301 Moved Permanently
Date: Fri, 01 Nov 2019 12:40:24 GMT
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 01 Nov 2019 13:40:24 GMT
Location: https://fridhemslan.se/
Server: cloudflare
CF-RAY: 52edefe2a955dc03-LHR
[email protected] ~ $ curl -I https://fridhemslan.se
HTTP/1.1 200 OK
Date: Fri, 01 Nov 2019 12:40:43 GMT
Content-Type: text/html
Connection: keep-alive
Set-Cookie: __cfduid=d85bb6c4dfde4d97b51e18fa693f748ce1572612043; expires=Sat, 31-Oct-20 12:40:43 GMT; path=/; domain=.fridhemslan.se; HttpOnly; Secure
Last-Modified: Thu, 31 Oct 2019 22:38:10 GMT
Set-Cookie: TS0194eee0=01a7d14f7fd64f4c0a091a344ec91af8e514a9892f736b03ad2bee884a1663ede2766158f584b769fe7324d4cfaa5898fe95c43268; Path=/
CF-Cache-Status: DYNAMIC
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 52edf059d814dbe7-LHR

Shows the redirect you have now configured to https and the 200 found after the redirect.

The site also loads OK for me.

I suspect the issue on your end may be due to a cached value on the device/network. It should clear with time.

1 Like

I hope so too. Thanks for taking the time to help.

1 Like