I wonder why it’s there if I’ve turned it off. But I really wouldn’t mind if HTTPS was working. I set it up with a heroku server and no matter what I do it says something like HTTPS is not supported for this setting.
Before getting crazy with HTTPS however, I want to know how I can get my heroku app to always redirect to www. Here’s what my current setting looks like:
Thank you @sdayman . Now to tackle my HTTPS problem, I turned it on again as Full Strict. Visiting this URL https://www.nollywooddb.com/ , I get a 525 Error that the SSL configuration used is not compatible with Cloudflare. What can be done to fix that? What I noticed however, is that the HTTP version uses HTTP 1.1 meanwhile the HTTPS version used HTTP v2
I’d have to see the TLS certificate on the origin server (does it even have one?) to see what the problem is. It sounds like Cloudflare doesn’t like whatever it is. Have you tried using the Full (not strict) setting?
There’s no cert from the origin server. I just switched to Flexible because it works. Full gives the same error. I’d suppose Flexible means it should proceed whether or not there’s TLS cert from origin server. I’m using heroku and I don’t think it offers certs for free. I’ll have to purchase it I guess
You can use Full mode (or even Full(strict) mode last I checked) with Heroku on Cloudflare w/ any plan. Here’s what you need to do:
• Point www.example.com CNAME my-app.herokuapp.com [orange-cloud]
• Go to Crypto --> Origin Certificates --> Create Certificate (keep the default settings). These are free
• Keep the module with the Public and Private Key open.
• Go to your Heroku app --> Settings --> Configure SSL —> Paste Contents:
Voila! Full mode means that the Origin Server needs to have an SSL certificate served. That certificate can be self-signed, from Let’s Encrypt or (for optimal performance and security directly from Cloudflare)!
@franklin this is really useful and helpful information but I can’t configure SSL yet on Heroku because I’m not using a paid dyno. I’m still on the free dyno because my app is at alpha and I’m not willing to put money into it yet. I believe your answer will remain valid for me to reference when I do make an upgrade on heroku. Then I’ll try to change from Flexible to Full HTTPS