Re: [users@httpd] How to Redirect to https after login?

Thu, 29 Oct 2009 05:43:14 -0700 

I already tried this but it doesn't help, because the login- form uses the
POST method to transfer the data and there is no query string.


Krist van Besien wrote:
> 
> On Thu, Oct 29, 2009 at 11:46 AM, ericdraven <e...@schwagerus.de> wrote:
>>
>> Hello,
>>
>> I need some expert help on the following configuration task:
>>
>> I have a startpage with a standard login form. After a user logs in, he
>> should be
>> redirected to use https for the rest of the session.
> 
> That's a rather odd requirement. Normally the requirement is to be
> redirected to https _before_ logging in. It is, after all, the login
> data, that you need to protect.
> 
> 
>> When I use a rewrite rule as shown below,
>> RewriteRule ^/login(.*) https://%{SERVER_NAME}/login$1 [R,L]
>> the parameters get lost, because the request is translated to a GET
>> request.
>> What do I need to do, to fix this problem?
> 
> Use the QSA flag, so the query string doesn't get lost.
> 
> Krist
> 
> 
> 
> -- 
> krist.vanbes...@gmail.com
> kr...@vanbesien.org
> Bremgarten b. Bern, Switzerland
> --
> A: It reverses the normal flow of conversation.
> Q: What's wrong with top-posting?
> A: Top-posting.
> Q: What's the biggest scourge on plain text email discussions?
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
>    "   from the digest: users-digest-unsubscr...@httpd.apache.org
> For additional commands, e-mail: users-h...@httpd.apache.org
> 
> 
> 

-- 
View this message in context: 
http://www.nabble.com/How-to-Redirect-to-https-after-login--tp26110773p26112248.html
Sent from the Apache HTTP Server - Users mailing list archive at Nabble.com.


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
   "   from the digest: users-digest-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

Reply via email to