dienub

OK, time for full disclosure: I am an idiot.

After messing around with the is_ssl function in wp-includes/functions.php and forcing is_ssl to be false no matter what, I happily concluded that finally everything went back to it’s normal non-ssl former self.

Looking at the logic of the function, I concluded that it would only use SSL if the server told it that the connection was SSL. So I checked over some of the changes I had made last night (tired and sick) and noticed that my global PHP fastcgi config had the following line:

fastcgi_param HTTPS on;

Everything’s back to normal now. Thanks!

I’ve checked the wp_options table for clues and it seems SSL isn’t forced there either:

mysql> select * from wp_options where option_name like '%ssl%';
+-----------+--------------------+--------------+----------+
| option_id | option_name        | option_value | autoload |
+-----------+--------------------+--------------+----------+
|       307 | ssl_host           |              | yes      |
|       308 | ssl_port           |              | yes      |
|       311 | ssl_host_diff      | 0            | yes      |
|       312 | ssl_host_subdomain | 0            | yes      |
|       315 | ssl_admin          | 0            | yes      |
|       316 | ssl_proxy          | 0            | yes      |
|       320 | ssl_host_mapping   | a:0:{}       | yes      |
+-----------+--------------------+--------------+----------+
7 rows in set (0.00 sec)

Before everything switched over to https, I had not edited wp-config.php. Afterwards, some googling suggested that adding the following options, could help:

define(‘force_SSL’, false);
define(‘FORCE_SSL_ADMIN’, false);

It did not help, and all my sites (and admin pages) are forced HTTPS.

I’ve also tried checking in a different browser to see if it’s my cache that does this, but the problem persists.