Re: Auto HTTPS

Balazs Nagy Wed, 14 Jun 2000 09:10:08 -0700
"Airey, John" wrote:
> 
> A user redirect in the head a web page at http://www/mydomain.com/michel
> such as
> 
> <META HTTP-EQUIV="refresh" CONTENT="1; URL=https://www/mydomain.com/michel">
> 
> Would achieve this (redirecting after 1 second). However, the secure
> document root would have to be different!

That does not achieve the goal.

> 
> I don't think (AFAIK) there's a way for a web server to do this.


1) It would be really nice to respond UNDER the question, to make the thread
readable. (No offense.)

2) The auto redirect IS possible:
There are two virtual host definitions, one for the port 80 (unsecure) and one
for the port 443 (secure). In the virtual host :80 you could use something
like:
Redirect /michel https://www.domain.com/michel
In the virtual host :443 you might want to put a few redirect rules to switch
back to the :80 virtual host. There is a detailed example earlier on this list
(april-may).

Here is an example for a signup script:
RedirectMatch ^/(signup.pl.*)           https://www.domain.com/$1
that line redirects the signup.pl script to the secure site, while passing all
the info to it.
So if the user does:
http://www.domain.com/signup.pl?name=Joe
It becomes:
https://www.domain.com/signup.pl?name=Joe


> -----Original Message-----
> From: michel [mailto:[EMAIL PROTECTED]]
> Sent: 14 June 2000 16:46
> To: [EMAIL PROTECTED]
> Subject: Auto HTTPS
> 
> Hi, I have a site with SSL. I want that if a user came in
> http://www/mydomain.com/michel via automatic the user is redirect to
> https://www/mydomain.com/michel
> 
> I have see manual, but I'm a newbie in regular expression.
> In httpd.conf I have:
> <Directory /usr/local/apache-1.3.12/htdocs/michel>
>         Order allow,deny
>             Allow from all
>         RewriteEngine        on
>         RewriteCond  %{HTTPS} !=on
>         RewriteRule  (.*) https://%{SERVER_NAME}/ [R,L]
>         #RewriteRule   * https://%{SERVER_NAME}/$1
>         </Directory>
> 
> out of every <IfModule>
> 
> Tnx in advance
> 
> both them (Windows and M. Lewinski) suck a lot and both them are
> are giving Bill some trouble.
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]
Re: Auto HTTPS

Reply via email to
