Thanks a lot for your feedbacks, you’re all obviously much more knowledgable than I am (:-)) and I enjoyed reading your debate !
My problem is that my hosting doesn’t allow a SSL certificate if they dont manage the nameservers as well. Since I need to change these nameservers in order to use Cloudflare, I am facing these options :
- not using Cloudflare, so I can have a SSL certificate directly on our website
- using Cloudflare (and thus their nameservers), and have “flexible SSL” with a SSL certificate from Cloudflare.
- changing hostings : well, I am the CFO and administrator of a rather small company so I don’t know if I will have the time to do that, especially considering we have ≈100 emails users (these will be the most painful to transfer to another hostings)
As such, and even if I understand the concerns and problems you wrote about “Flexible SSL”, I still think it would suit me best
By the way, if anyone find it useful : I found this article about how to properly set “Flexible SSL” with a Wordpress. Since I didn’t do any of this, my guess is that this will explain why I had the “redirect loop” in the 1st place.
So, i temporarily disabled Cloudflare for the time being (so my website currently works with both http and https), and I will follow what the article says before putting Cloudflare back on.
I hope it will work, then
Anyways, thanks a lot to all for your valuable feedbacks !