Wilco van Esch

This guide applies if you want to secure the Namecheap domain for your Rails app with a free Let's Encrypt SSL certificate and force HTTP access to HTTPS.

The following steps were last verified as valid on 21 April 2017.

Heroku

1. Log in to your Heroku account
2. Select the app you want to set an SSL certificate for
3. Go to Settings
4. Scroll to Domains and certificates
5. Click Configure SSL
6. Choose Automatically configure using Automated Certificate Management
7. Click Continue

Namecheap

8. Log in to your Namecheap account
9. Go to the Dashboard
10. For your app's domain, select Manage
11. Go to Advanced DNS
12. Change the CNAME Record for Host www to www.yourdomain.com.herokudns.com
13. Save your change

Heroku again

14. Click I've done this for the DNS settings change
15. Click Continue
16. Wait for the changes to take effect. You can use Refresh status to view progress or curl -vI https://www.yourdomain.com for more detail

Now the SSL certificate should be applied to your domain.

Rails

17. Edit config\environments\production.rb in your Rails app
18. Find the config.force_ssl toggle
19. Set config.force.ssl = true
20. Deploy the change

Now if you go to yourdomain.com or www.yourdomain.com you'll be brought to https://www.yourdomain.com and the browser's certificate verification will indicate a secure connection.