 - https://sketch.com --%3E %3Ctitle%3Elogo%3C/title%3E %3Cdesc%3ECreated with Sketch.%3C/desc%3E %3Cg id='logo' stroke='none' stroke-width='1' fill='none' fill-rule='evenodd'%3E %3Cg%3E %3Ccircle id='center' fill='%23101735' cx='492.990024' cy='569.101187' r='150'%3E%3C/circle%3E %3Cpath d='M108.866321,404.911634 L111.100003,400.579689 L188.686098,445.373945 L188.686098,445.373945 C230.478433,469.502709 255.334119,514.916706 253.132304,563.124056 C253.037451,565.200801 252.990024,567.193178 252.990024,569.101187 C252.990024,686.267591 336.949699,783.824162 447.988557,804.888713 L447.988557,984.088383 C285.605879,976.764225 133.493697,930.00302 0.998013023,853.15477 C0.694801371,701.516521 35.5435533,547.972139 108.866321,404.911634 Z' id='left' fill='%232291FF'%3E%3C/path%3E %3Cpath d='M827.2442,318.535078 L829.878934,322.635476 L752.292922,367.429877 L752.292922,367.429877 C710.918555,391.317431 659.777268,390.398472 619.317981,365.139739 L618.095232,364.366873 C616.344145,363.246356 614.642409,362.209095 612.990024,361.25509 C511.520942,302.671888 385.054636,326.604813 311.292771,412.23501 L156.101304,322.635175 C243.63555,185.669729 360.188033,77.3173179 492.987418,0.998535873 C624.462593,76.5533505 740.011552,183.505446 827.2442,318.535078 Z' id='top' fill='%23FFAB0F'%3E%3C/path%3E %3Cpath d='M542.859552,983.856849 L537.991053,984.088396 L537.991053,894.499739 L537.991053,894.499739 C537.991053,846.724709 564.357494,802.894534 606.461842,780.48513 L607.742537,779.812632 C609.588478,778.856404 611.33764,777.901288 612.990024,776.947284 C714.459107,718.364082 756.965739,596.874585 719.688746,490.179838 L874.880212,400.580003 C949.728645,544.869606 985.288344,699.983223 984.984609,853.150255 C853.812679,929.233689 703.414968,975.825976 542.859552,983.856849 Z' id='right' fill='%23FF4D6F'%3E%3C/path%3E %3C/g%3E %3C/g%3E %3C/svg%3E)
After migrating Pandify’s URL scheme to HTTPS, I noticed that the site’s Facebook likes had disappeared! This post describes how I fixed that.
Background
When configuring the Facebook like button you specify the ‘URL to like,’ which is the URL that new likes will get attributed to:
However, the like button’s count reflects the likes for the current page’s URL, and NOT for the URL you configured the like button with. If a page’s URL changes at all, including the URL scheme, that page’s like button count will change to reflect the new URL’s like count.
At a high level, here’s what I wanted to do:
- 301 redirect HTTP to HTTPS
- Preserve Facebook likes from the non-HTTPS URL
- Allow new likes from the HTTPS URL to increase the like count
Solution
Facebook shares some insight on this issue:
…you can’t move the likes, shares or comments directly to the new URL but you can use the old URL as the canonical source for the number of likes or shares at the new URL.
There are three ways to declare the ‘canonical source’ to Facebook:
- HTTP 301 or 302 redirect
<meta property="og:url" content="..." /><link rel="canonical" href="...">
Option #1 is a no-go because Pandify’s Nginx server redirects HTTP to HTTPS. Again, this is what causes the Facebook likes to disappear.
I want the canonical URL to be the HTTPS URL. Left with option #2, I added a <meta> tag to Pandify’s HTML template that points to the non-HTTPS URL (which has the Facebook likes associated with it).
<!-- Preserve Facebook likes from the non-HTTPS URL. -->
<meta property="og:url" content="http://pandify.com" />This tag tells Facebook to use the non-HTTPS URL as the ‘canonical source’ for likes. However, this doesn’t restore the likes yet, and Facebook’s Sharing Debugger shows a new problem when debugging https://pandify.com:
Circular Redirect: We could not resolve the canonical URL because the redirect path contained a cycle.
What’s happening? Facebook’s scraper is following the <meta> tag’s og:url (the non-HTTPS URL) and getting redirected by Nginx to the HTTPS URL, causing a redirect loop!
My solution is to detect the Facebook scraper’s user agent and NOT redirect to the HTTPS site, but instead return 200 OK. I do this via Pandify’s Nginx server block configuration for non-HTTPS requests:
server {
listen 80;
server_name pandify.com www.pandify.com;
location / {
if ($http_user_agent ~* "facebookexternalhit") {
# Preserve Facebook likes from the non-HTTPS URL.
add_header Content-Type text/html;
# NOTE: Add other Open Graph tags to keep Facebook's Sharing Debugger happy.
return 200 '<meta property="og:url" content="http://pandify.com" />';
}
return 301 https://pandify.com$request_uri;
}
}Voila! After restarting Nginx and forcing Facebook’s Sharing Debugger to ‘Scrape Again’ for https://pandify.com, the likes from http://pandify.com returned.
https://pandify.com debug info