I’m not sure if this is a unique setup or not, but it seems like it would be fairly common in a larger organization, dare I say corporate.
I use CloudFlare for DNS and its caching capabilities (SSL is enabled). I have a front end firewall that does SSL Offloading; it has a wildcard SSL cert and all backend web servers only have HTTP enabled. The firewall will redirect any HTTP requests to HTTPS so SSL is forced for all requests.
My issue is the fact that canonical URL under each topic shows the HTTP URL instead of the HTTPS one, which I presume is due to fact that discourse doesn’t know about that the connection is HTTPS.
<link href="http://forums.domain.com/t/slug/2766" rel="canonical"/>
I also noticed that the RSS link on the same page does show HTTPS:
<link href="https://forums.domain.com/t/slug/2766.rss" rel="alternate" title="Post Title" type="application/rss+xml"/>
but other meta tags on the same page are HTTP:
<meta content="http://forums.domain.com/user_avatar/forums.domain.com/markus101/45/2.png" name="twitter:image"/> <meta content="http://forums.domain.com/t/slug/2766/2" property="og:url"/> <meta content="http://forums.domain.com/t/slug/2766/2" name="twitter:url"/>
Is there a way to get these URLs to be HTTPS without adding SSL directly to discourse, I’d like to avoid that to simplify SSL cert management.