@phenomlab Right now i am not facing any issues and everything is working perfectly
i want to summarise all my settings
CF settings
SSL is set to full strict
HSTS is enabled
Automatic HTTPS Rewrites CF setting is ON
disabled page rules for https redirect (earlier i used to use)
Server-side let’s encrypt is enabled
HTTP to HTTPS prediction is off
i want to keep the settings like this since everything is working at the DNS level.
if you suggest using HSTS and SSL from the server-side i will switch to it.
the only problem with flarum www redirection
https://domain.com/ask
shall i define something at subdirectory ht. access for this? or something needs to be done at domain ht access?