Monday, November 10, 2025

© Carlos-M-Saraiva.com

UX Designer • Delivering data-driven systems to meaningfully impact human experiences

UX Design WordPress Platform Security Web Development Infrastructure & Hosting Security Implementation Web Development BeingMe Yoga H – Freelance Web Developer – BeingMe Yoga UX Architect & Systems Developer 

POD-H-0.1.1-E01 – SSL – HTTPS Security Integration — BeingMe Yoga — 2025-05 → 2025-10

Carlos Saraiva 91 Views , ,

Project: BeingMe Yoga — Platform Security Layer

Client: BeingMe Yoga / Dale de Klerk

Role: UX Architect & Systems Developer

Timeline: May 2025 – June 2025

Description

Deployed domain-wide SSL encryption and HTTPS routing to secure all user interactions and reinforce platform trust. Configured AutoSSL via Let’s Encrypt for beingme.yoga and all subdomains, establishing valid, auto-renewing certificates. Enabled enforced HTTPS redirects and validated encryption through browser and server diagnostics. Delivered a robust, compliance-ready security layer that enhanced accessibility, user confidence, and ethical web practice.

Objectives

  • Guarantee encrypted communication between client browsers and the web server.
  • Deliver a verifiable, sustainable certificate management solution.
  • Strengthen overall trust and compliance through visible HTTPS security.

Process

  • Installed and configured AutoSSL wildcard certificates (*.beingme.yoga).
  • Activated Force HTTPS Redirect at the domain level for all subdomains.
  • Verified encryption integrity and validity using Safari’s certificate inspector.
  • Documented and timestamped final verification as evidence of delivery.

Outcome

  • All site domains validated and actively secured under HTTPS.
  • Certificates set for automated renewal via Let’s Encrypt (valid through Dec 2025).
  • Browser padlock and encrypted connection verified by end-user testing.
  • Improved user confidence and data security compliance.

Evidence Number

Type

Description

Linked To

H-0.1.1-E01

Screenshot

Safari padlock + certificate details

H-0.1.1 — SSL / HTTPS Integration

H-0.1.1-E02

Screenshot

cPanel AutoSSL status (valid to Dec 2025)

H-0.1.1 — SSL / HTTPS Integration

H-0.1.1-E03

Video

Screen recording: Force HTTPS redirect ON

H-0.1.1 — SSL / HTTPS Integration

H-0.1.1-E04

Screenshot

cPanel → SSL/TLS Status (all subdomains validated)

H-0.1.1 — SSL / HTTPS Integration

H-0.1.1-E05

Text Log

Proof summary & validation notes (2025-11-05 08h48 SAST)

H-0.1.1 — SSL / HTTPS Integration

Evidence Summary & Verification Notes

✅ SSL / HTTPS Proof Summary — “beingme.yoga”
  1. Active Certificate Validation
    • Domain: beingme.yoga
    • Certificate Authority: Let’s Encrypt via AutoSSL
    • Issued for: *.beingme.yoga (wildcard covering all subdomains)
    • Valid until: 5 December 2025
    • Renewal: automatic via AutoSSL
    • Evidence shown in: cPanel > SSL/TLS Status and Manage Installed SSL Websites (multiple subdomains validated)
  2. Encrypted Connection Confirmation
    • Safari security panel confirms: “Safari is using an encrypted connection to beingme.yoga”
    • “This certificate is valid – expires Friday, 05 December 2025 at 7:36:16 PM SAST.”
    → Confirms end-user HTTPS encryption verified.
  3. HTTPS Redirect Configuration
    • cPanel “Domains” interface shows HTTPS Redirect = ON for backup.beingme.yoga.
    • beingme.yoga itself also under AutoSSL management.
    → Confirms secure routing enforced at server level.
  4. Technical Meaning (Client Explanation)
    SSL (Secure Socket Layer) encrypts browser–server data exchange.
    HTTPS (“HTTP Secure”) implements SSL/TLS encryption to protect information such as forms and passwords.
    The browser padlock confirms encryption and verified domain authenticity.

💼 Legal & Evidentiary Interpretation

Invoice Phase: 0.1.1 — Foundation Setup & Infrastructure (Domain, Hosting, CMS, and Security Certificate Setup)
Client Claim: “Site not secure / no SSL.”
Factual Rebuttal: Verified valid AutoSSL certificate (Let’s Encrypt) active through December 2025 across all subdomains.

This confirms that:

  • SSL installation and configuration were completed and verified.
  • Certificates auto-renew through the hosting system.
  • Any “Not Secure” message would result from client-side cache or DNS propagation delays, not from configuration.

Technologies

cPanel • AutoSSL (Let’s Encrypt) • HTTPS Protocol • SSL/TLS Certificates • Safari Certificate Validation

Skills

Web Infrastructure Security • Hosting Configuration • Encryption Deployment • Technical Documentation

Tags

#ssl #https #autossl #web-security #hosting #domain-validation #digital-infrastructure #proof-of-delivery #ux-solutions

🔗 Proof of Delivery: View — H-0.1.1-PD — SSL / HTTPS Integration — Verification Log

Proof of Delivery Table (Excerpt)

Status Evidence Type Evidence Title & Link Related Invoice Deliverable Why It Qualifies as In-Scope / Partially In-Scope Client Issue / Complaint Where It Appears
✅ Delivered Timestamped screenshots, video, system verification (Safari, cPanel AutoSSL, HTTPS redirect settings) SSL / HTTPS Security Integration — Proof of Delivery Phase 0.1.1 — Foundation Setup & Infrastructure
(Domain, Hosting, CMS and Security Certificate Setup)		 SSL activation explicitly included in invoice under “hosting and security setup.” Covers installation of Let’s Encrypt AutoSSL and HTTPS redirection for beingme.yoga and all subdomains. “Site not secure / no SSL.” Issue Tracker #S-02 — Security Layer / Independent Client Analysis §2.1 ‘SSL Certificate Absent or Misconfigured’ → asserted site lacked security layer post-deployment.

Conclusion: Deliverable fulfilled in full. The SSL certificate is valid, active, and auto-renewing for all live domains and subdomains of beingme.yoga. Documented verification provides conclusive evidence of delivery and compliance with invoice scope.

H-0.1.1 – SSL / HTTPS Security Integration — v005c — 2025-11-05—12h09.03-SAST—© Carlos-M-Saraiva.com