Secure discourse session

mevaha · July 21, 2020, 9:23am

Hello, We had a problem to enable the https on discourse, I would like to know if there any workaround to secure only the session of the forum.

IAmGav · July 21, 2020, 11:11am

Is this on a self-hosted solution or a discourse cloud solution ?

mevaha · July 21, 2020, 12:10pm

is the self-hosted solution

osioke · July 21, 2020, 12:52pm

Did you follow the official install guide?

mevaha · July 21, 2020, 12:54pm

Yes, I search if there is a solution to secure only the sessions.

IAmGav · July 21, 2020, 1:23pm

i don’t think you can just secure the forum sessions only.

rather have everything secure.

get the sysadmin to check the error logs why https is not working and get it working. If you the sysadmin, then google the error and get *nix help.

mevaha · July 21, 2020, 3:58pm

Thanks @IAmGav, There is no way to secure the cookies ?

IAmGav · July 21, 2020, 4:15pm

Yes, lock them up in the cupboard and hope I don’t find the key cause I chocolate chip cookies.

P.s: The traffic you want to secure is from the client to the server (that includes the so called cookies) and back. That is done via https. Even if you somehow, by a miracle, find a way to secure the cookies part only, then it serves no purpose.

On a side note: Seems like you need help. Private message me the https issue and let me see if I can help you.

Topic		Replies	Views
How to set the secure flag for cookie _forum_session support	7	730	September 16, 2020
Trouble enabling https for hosted instance support	4	1010	May 12, 2016
Setting the session token '_t' on the entire domain, not just my subdomain dev	6	5091	May 1, 2016
[Paid] Setting up HTTPs marketplace	3	617	April 4, 2018
Inquiring about the Security Measures in Discourse support	3	639	February 11, 2023

Secure discourse session

Related Topics