Comments on: Smart HTTP and HTTPS .htaccess Rewrite http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html Advanced Web Development Wed, 18 Nov 2009 23:28:48 -0500 hourly 1 By: Sven http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-104814 Sven Thu, 01 Oct 2009 13:49:55 +0000 http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-104814 Nice. Thanks :) Nice. Thanks :)

]]> By: raystrach http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-104405 raystrach Thu, 24 Sep 2009 07:40:57 +0000 http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-104405 i am not a htacess expert, but i would be checking all your frames, images and includes and making sure they are coming from a secure server. then again you might have google ads which do not have the option of coming from a secure server in which case you are stuffed. other ad providers may have the option of sourcing ads from a secure server, not just an ordinary server. i am not a htacess expert, but i would be checking all your frames, images and includes and making sure they are coming from a secure server.

then again you might have google ads which do not have the option of coming from a secure server in which case you are stuffed. other ad providers may have the option of sourcing ads from a secure server, not just an ordinary server.

]]> By: JN http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-91639 JN Thu, 30 Jul 2009 06:56:37 +0000 http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-91639 What I am trying to do is this: If the request is coming through <code>https</code>, I'd like all the internal content to ensure that it has https in it... This is mainly to get rid of that stupid <em>IE 8 security warning</em> about site containing non secure items which is bs... Any ideas? What I am trying to do is this: If the request is coming through https, I’d like all the internal content to ensure that it has https in it… This is mainly to get rid of that stupid IE 8 security warning about site containing non secure items which is bs…

Any ideas?

]]> By: raystrach http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-72435 raystrach Thu, 30 Apr 2009 00:56:42 +0000 http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-72435 Thanks for posting this. It helped me out a great deal with having non-secure domains pointing to sub domains on my secure domain. However, I started to have problems logging in from certain pages (there was no apparent pattern) and i discovered my form post requests were being lost. I tried for hours trying to see why the form would not process until i realized that it was probably something in <code>htaccess</code>. Although i really don't know exactly what the syntax means, (i am no htaccess expert) the following code looked suspicious <pre>RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /([^/]+/)*index\.php\ HTTP/ RewriteRule ^(([^/]+/)*)index\.php$ http%{ENV:smartspace}://%{HTTP_HOST}/$1 [R=301,L]</pre> Sure enough, I removed the code and it worked! It must have been stripping the post variables out as well as the index name in redirecting the page. Now it all seems to be working well (obviously it is not redirecting to the plain directory, but that's ok). I will keep you posted if I have stuffed something else up but have not yet discovered it. Someone might like to tell me exactly why the post variables are disappearing because it worked when I switched the method to <code>GET</code>. cheers Thanks for posting this. It helped me out a great deal with having non-secure domains pointing to sub domains on my secure domain.

However, I started to have problems logging in from certain pages (there was no apparent pattern) and i discovered my form post requests were being lost. I tried for hours trying to see why the form would not process until i realized that it was probably something in htaccess.

Although i really don’t know exactly what the syntax means, (i am no htaccess expert) the following code looked suspicious 

RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /([^/]+/)*index\.php\ HTTP/
RewriteRule ^(([^/]+/)*)index\.php$ http%{ENV:smartspace}://%{HTTP_HOST}/$1 [R=301,L]

Sure enough, I removed the code and it worked! It must have been stripping the post variables out as well as the index name in redirecting the page. Now it all seems to be working well (obviously it is not redirecting to the plain directory, but that’s ok). I will keep you posted if I have stuffed something else up but have not yet discovered it.

Someone might like to tell me exactly why the post variables are disappearing because it worked when I switched the method to GET.

cheers

]]> By: lrwing http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-63702 lrwing Wed, 11 Feb 2009 13:20:24 +0000 http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-63702 I dont understand this line, i dont know how to interpret it. Can you please explain how to read this? <pre>RewriteCond %{SERVER_PORT}s ^(443(s)|[0-9]+s)$</pre> I dont understand this line, i dont know how to interpret it. Can you please explain how to read this?

RewriteCond %{SERVER_PORT}s ^(443(s)|[0-9]+s)$
]]> By: Tung http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-46228 Tung Wed, 22 Oct 2008 05:09:47 +0000 http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-46228 OK! My fault is the .htaccess rules work on the wrong scope. And the solution is as follows: Put the following rules inside of httpd-ssl.conf <pre> RewriteEngine on RewriteCond %{HTTPS} =on RewriteRule ^/repos$ /repos/ [R] </pre> Then browsing <code>https://hostname/repos</code> will be directed to <code>https://hostname/repos/</code> Where is the global area that rewrite rules will take effect on http and https both ? OK! My fault is the .htaccess rules work on the wrong scope.
And the solution is as follows:

Put the following rules inside of httpd-ssl.conf

RewriteEngine on
RewriteCond %{HTTPS} =on
RewriteRule ^/repos$ /repos/ [R]

Then browsing https://hostname/repos will be directed to https://hostname/repos/

Where is the global area that rewrite rules will take effect on http and https both ?

]]> By: Tung http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-46196 Tung Mon, 20 Oct 2008 11:37:08 +0000 http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-46196 Hello, My goal is to redirect 'https://hostname/repos' to 'https://hostname/repos/' on <strong>Apache 2.2</strong> I try a lot of methods, but I can't do it. <pre> RewriteEngine on # rewrite '/repos' to '/repos/' # These two rules both work with http only, not with https. #RewriteRule ^(/repos)$ $1/ [R] #(/repos) means group, $1 = /repos #RewriteRule ^/repos$ /repos/ [R]   # redirect 'http://hostname/repos[/...]' to https RewriteCond %{HTTPS} !=on RewriteRule ^/repos$ https://%{SERVER_NAME}%{REQUEST_URI}/ [L,R] RewriteRule ^/repos/.*$ https://%{SERVER_NAME}%{REQUEST_URI} [L,R]   # Notice: 'https://hostname/repos/' is our goal # (1)Redirecting 'http://hostname/repos' to 'http://hostname/repos/' is skip # (2)Redirecting 'http://hostname/repos' to 'https://hostname/repos/' is OK (done) # (3)Redirecting 'http://hostname/repos/' to 'https://hostname/repos/' is OK (done) # (4)Redirecting 'http://hostname/repos/...' to 'https://hostname/repos/...' is OK (done)   # (5)Redirecting 'https://hostname/repos' to 'https://hostname/repos/' is fail # it can't add a slash at last #RewriteCond %{HTTPS} =on #RewriteRule ^/repos$ https://%{SERVER_NAME}%{REQUEST_URI}/ [L,R]   # (5)Redirecting 'https://hostname/repos' to 'https://hostname/repos/' is fail # it can't add a slash at last #RewriteCond %{HTTPS} =on #and #RewriteCond %{THE_REQUEST} ^GET\ /repos\ HTTP/ #RewriteRule ^.*$ https://%{SERVER_NAME}%{REQUEST_URI}/ [L,R=301]   # So browsing 'https://hostname/repos' will return '404 Not Found' </pre> DO you have any good idea? Thank you! Hello,

My goal is to redirect ‘https://hostname/repos’ to ‘https://hostname/repos/’ on Apache 2.2
I try a lot of methods, but I can’t do it.

RewriteEngine on
# rewrite '/repos' to '/repos/'
# These two rules both work with http only, not with https.
#RewriteRule ^(/repos)$ $1/ [R]  #(/repos) means group, $1 = /repos
#RewriteRule ^/repos$ /repos/ [R]
 
# redirect 'http://hostname/repos[/...]' to https
RewriteCond %{HTTPS} !=on
RewriteRule ^/repos$ https://%{SERVER_NAME}%{REQUEST_URI}/ [L,R]
RewriteRule ^/repos/.*$ https://%{SERVER_NAME}%{REQUEST_URI} [L,R]
 
# Notice: 'https://hostname/repos/' is our goal
# (1)Redirecting 'http://hostname/repos' to 'http://hostname/repos/' is skip
# (2)Redirecting 'http://hostname/repos' to 'https://hostname/repos/' is OK (done)
# (3)Redirecting 'http://hostname/repos/' to 'https://hostname/repos/' is OK (done)
# (4)Redirecting 'http://hostname/repos/...' to 'https://hostname/repos/...' is OK (done)
 
# (5)Redirecting 'https://hostname/repos' to 'https://hostname/repos/' is fail
#  it can't add a slash at last
#RewriteCond %{HTTPS} =on
#RewriteRule ^/repos$ https://%{SERVER_NAME}%{REQUEST_URI}/ [L,R]
 
# (5)Redirecting 'https://hostname/repos' to 'https://hostname/repos/' is fail
#  it can't add a slash at last
#RewriteCond %{HTTPS} =on  #and
#RewriteCond %{THE_REQUEST} ^GET\ /repos\ HTTP/
#RewriteRule ^.*$ https://%{SERVER_NAME}%{REQUEST_URI}/ [L,R=301]
 
# So browsing 'https://hostname/repos' will return '404 Not Found'

DO you have any good idea? Thank you!

]]> By: Tung http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-46181 Tung Sun, 19 Oct 2008 18:55:48 +0000 http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-46181 I want to redirect 'https://hostname/mypath' to 'https://hostname/mypath/' (add a slash) on Apache 2.2 But the following rule works with http only, not https. <pre> RewriteEngine on RewriteRule ^/mypath$ /mypath/ [R] </pre> Any idea? I want to redirect ‘https://hostname/mypath’ to ‘https://hostname/mypath/’ (add a slash)
on Apache 2.2

But the following rule works with http only, not https.

RewriteEngine on
RewriteRule ^/mypath$ /mypath/ [R]

Any idea?

]]> By: Carlos M.S. http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-45944 Carlos M.S. Mon, 06 Oct 2008 18:29:56 +0000 http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-45944 Hello, I have migrated a <strong>moodle https site to a new moodle http site</strong> and I need to change/rewrite all the links to <pre>https:// to http://</pre> How can i do it? Hello, I have migrated a moodle https site to a new moodle http site and I need to change/rewrite all the links to 
https:// to http://

How can i do it?

]]> By: anthylon http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-45915 anthylon Sun, 05 Oct 2008 14:22:46 +0000 http://www.askapache.com/htaccess/http-https-rewriterule-redirect.html#comment-45915 Hello, I have multiple domain on my single shared account (monsterhost). It works fine but I am having small issue. Lets say my main domain is mydomain.com. Each domain is pointing to separated subfolder (example: myseconddomain.com is pointing to mydomain.com/myseconddomain/). It is all working well but I wish to block all access for requests like this: mydomain.com/myseconddomain/. Please, advise. Thank you. Hello,

I have multiple domain on my single shared account (monsterhost). It works fine but I am having small issue. Lets say my main domain is mydomain.com. Each domain is pointing to separated subfolder (example: myseconddomain.com is pointing to mydomain.com/myseconddomain/). It is all working well but I wish to block all access for requests like this: mydomain.com/myseconddomain/.

Please, advise.

Thank you.

]]>