Application is installed. Apache server is configured to deliver only https and requests for documents which are not https are rewritten using mod_rewrite to be https. So, for example, a request for
xerte-d.shef.ac.uk/favicon.ico is rewritten to
xerte-d.shef.ac.uk/favicon.ico and the icon file is successfully rendered. Note that in the preceding sentence the requested URL began with http and the rendered document was rendered as https. This detail was removed automatically on submission of the request for assistance.
However, the service does not work. For example, when I click the Logout button, nothing happens at all. I am using Firefox. The status icon just left of the address bar is showing a green padlock and a grey triangle with an exclamation mark. Clicking on this icon show that I have a secure connection but that some parts of the page are being blocked because they are not secure. I expected the work with mod_rewrite to fix this and it hasn't.
If I click the "Disable protection for now" button accessible via the status icon, the icon changes to a green padlock with a red diagonal bar across it and, in the address bar, https becomes strikethrough https. The logout button now works.
The changes that I have made to /etc/apache2/sites-enabled/000-default.conf in order to implement the mod_rewrite are to add these lines: -
RewriteEngine On
RewriteCond %{HTTPS} !=on
RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
These changes were added right at the end of the <VirtualHost *:80> section of the file, just above the line </VirtualHost>
Please find the relevant file attached.
