Hi Sally,
Thank you for letting us know.
Just to confirm, when you installed the plugin it was showing that there was no https, then when you ran a scan, it correctly showed that there was?
Thanks again,
Ryan
Hi
The plugin has been installed for some time, without this error. Then it seems to have run overnight and given this error. When I ran it manually later, the error cleared.
Having the same issue on multiple sites. All have https setup and redirect any http to https in htaccess. But getting email notifications about HTTPS communication warning.
I don’t think this code is working as intended.
security-checks > https > check.php
Although this could be a cloudflare/proxy issue with is_ssl() in that file. Most of the sites are behind cloudflare.
“WordPress is_ssl() doesn’t work behind some load balancers.”
https://developer.wordpress.org/reference/functions/is_ssl/#comment-1093
Thanks for the info @webbernaut!
I’ll look into this today and release a new version with a fix.
I have setup a test environment on SiteGround, with HTTPS and Cloudflare.
I’m just waiting for a domain name to transfer over to SiteGround before I can enable HTTPS on the site to test it.
Once this is done, I can properly test how the plugin behaves when using HTTPS and Cloudflare and fix the issue.
I just thought I’d update you as the domain transfer might take a day or two.
For now, you can ignore the warning in the “Ignore vulnerabilities” metabox, on the right hand side of the report page.
This should be fixed in version 1.14.2.
Thank you for your help.
Getting “Undefined index: HTTP_HOST” in the admin. Also got the email notification that “The website does not seem to be using HTTPS (SSL/TLS) encryption for communications”.
The server is using HTTPS and is also behind Cloudflare.
Plugin version: 1.14.2
I was unable to reproduce the “Undefined index: HTTP_HOST” error locally, but have made a change and released version 1.14.3, which I think should fix the issue. Please let me know if it does not.
