• Plugin Name: JSM's Force SSL / HTTPS
  • Stable Version: 1.2.0
  • Author: JS Morisset
  • Description: Simple, fast and effective — force HTTP URLs to HTTPS using WordPress filters and permanent redirects.
  • License: GPLv3
  • Requires At Least: WordPress 3.8
  • Tested Up To: WordPress 4.9.5
  • Last Updated: 5 months ago
  • Plugin Homepage »

A simple, fast and effective way to make sure that all HTTP URLs get rewritten / redirected to HTTPS — including the WordPress upload folder and plugin url paths. Simply activate the plugin and you're done. ;-)

This plugin is significantly different than most other plugins of its type (in a good way) — other plugins generally create an output filter using PHP's output buffer to search / replace URLs within the webpage document. Using an output filter is much slower (and error prone) than hooking WordPress filters and using permanent (301) redirects (which is considered best practive when moving from HTTP to HTTPS).

The plugin defines the following constants (if not already defined), then makes sure that all HTTP requests are rewritten / redirected to their HTTPS equivalent:


The plugin also hooks the WordPress 'upload_dir' and 'plugins_url' filters to make sure that all URLs match the appropriate protocol.

The plugin checks and honors the following proxy / load-balancing web server variables:


There are no plugin settings — simply install and activate the plugin.


Your web server must be configured with an SSL certificate and able to handle HTTPS request. ;-)