At one.com, SSL is included in the Beginner plan and higher. You can see what's included in all our plans in this guide.
An SSL certificate will be issued and activated if your domain uses our name servers. This way, your site, with us, is always accessible via the secured HTTPS, which also applies to add-ons such as Website Builder and Online Shop.
- Why do I need SSL and HTTPS?
- Redirect all traffic to HTTPS
- Frequently asked questions about SSL and HTTPS
Why do I need SSL and HTTPS?
HTTPS is the secure version of the "Hypertext transfer protocol" that your browser uses to communicate with websites. It encrypts the connection between your browser and the server so that others cannot change or intercept content when you are, for example, using public WiFi.
You can verify if you are using HTTPS by the closed padlock that is visible in the address bar of your browser.
To use HTTPS, you need an SSL certificate for your domain. The SSL certificate makes it possible to identify your domain, like a passport.
In 2017, Google announced its initiative to enhance internet security by encouraging the use of HTTPS. As part of this effort, they started marking HTTP websites as insecure while offering SEO benefits and better ranking to websites that use HTTPS.
Because of this, HTTPS has become the obvious choice over HTTP.
Redirect all traffic to HTTPS
Visitors can still access your site over HTTP, for example, if they type in the address or click a link that has HTTP. To make sure that they only use HTTPS, you can create a redirect so that when someone, for example, types http://www.one.com, they get automatically redirected to https://www.one.com.
This is easily done by adding the following code to a .htaccess file on your web space:
#Rewrite everything to https
RewriteEngine On
RewriteCond %{HTTPS} !=on
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
We have created a step-by-step guide on how to do this: How do I force visitors of my site always to use HTTPS?
For WordPress sites, adding the redirect is not enough because the site often contains mixed content. That's why we recommend installing a plugin called Really Simple SSL. Check our guide for step-by-step instructions: Always use HTTPS on your WordPress site.
Frequently asked questions about SSL and HTTPS
HTTPS isn't working for my site. What's wrong?
After activation, it may take a while for the certificate to work. If it has been more than 24 hours since you started using our nameservers, something else might be wrong. Please get in touch with our support.
What type of SSL certificate do I get with one.com?
By default, you get a free Wildcard SSL certificate from Let's Encrypt. The advantage of this type of certificate is that it can be used with multiple subdomains of a domain and that it's easy to implement.
Can I disable SSL on my domain?
No, that isn't possible. As long as your domain is hosted with us, SSL will be enabled. If you really don't want to use HTTPS, you can redirect all traffic to HTTP. However, we don't recommend this.
Isn't HTTPS slowing down my site?
No, not anymore. In the past, this was true, especially on mobile sites, but with the current technology, this is no longer an issue.
Why are images and formatting missing when I use HTTPS on my WordPress site?
That is because your site has mixed content. The links to the images probably use HTTP. Because this is not secure, the content isn't loaded. You can fix this by installing the Really Simple SSL plugin.
Related articles: