Architect: SSL certificate free application and deployment, to solve the problem of page style disorder

Do you want to get a free SSL certificate for your website? Starting July 1, 2018, Chrome will now show all sites that do not use SSL certificates as “unsafe,” and all sites that have SSL certificates will receive an upgrade in their weight ranking.

To apply for the certificate

1. Log in to Ali Cloud Console, choose products and services, and select SSL certificate

2. Go to the SSL certificate page, click “Buy certificate”, select the certificate type for free for one year, and click “Buy now”.

3, return to the SSL certificate page, you can see a new record in the certificate list

4. Click apply, fill in the website domain name, mobile phone number and other information, and submit for review (review soon)

5. After approval, click the “Download” button on the right

6. The download page is displayed. Select the Nginx version and download it to the local PC for future use.

Deployment certificate

1, log in the pagoda control panel, click the “Website” menu, select the website to apply for the certificate, click the right “Settings”

2. In the window that is displayed, select SSL and Other Certificates, decompress the downloaded certificates into two files, paste the downloaded certificates into the key and certificate input boxes respectively, and click Save. The certificate has been successfully deployed.

Open port 443

1. In the pagoda panel, click “Security” and release port 443 in the firewall

2. On the ALicloud ECS console, configure port 443 for the inbound direction of the security group

Resolve style confusion

The reason:

For browser security, cross-protocol HTTP calls under HTTPS are not allowed. Empire CMS introduces static resource tags: [!–news.url–], this tag refers to the website address, and the website address is http:// instead of https://

Because the front-end page is completely static, the static resources such as JS and CSS introduced by the web page still start with HTTP, which is not accessible, so the page must be generated again.

Solutions:

1. In the CMS, change the URL HTTP in System and Basic Information Settings to HTTPS

2. Regenerate the web page