[英]Nginx redirect http subdomains to https
I have one domain with 3 subdomains: 我有一个带有3个子域的域:
- example.com (main domain) - api.example.com - blog.example.com - support.example.com (just a cname to point to zendesk)
And I have this 3 configuration on my Nginx : 我在Nginx上有以下3个配置:
api api
# HTTP server
server {
listen 80;
server_name api.example.com;
return 301 https://api.example.com$request_uri;
}
# HTTPS server
server {
ssl on;
listen 443;
server_name api.example.com;
ssl_certificate APIcert.crt;
ssl_certificate_key APIcert.key;
#root configuration.....
}
blog 博客
server {
listen 80;
server_name blog.example.com;
root /var/www/blog;
index index.php index.html index.htm;
site/main domain 站点/主域
server {
listen 80;
listen 443 ssl;
server_name www.example.com;
return 301 https://example.com$request_uri;
location ~ \.(php|html)$ {
deny all;
}
}
server {
listen 80;
server_name example.com;
return 301 https://example.com$request_uri;
location ~ \.(php|html)$ {
deny all;
}
}
server {
ssl on;
listen 443 ssl;
ssl_certificate mycert.crt;
ssl_certificate_key mycert.key;
server_name example.com;
root /var/www/frontend;
.....
}
MY PROBLEM : 我的问题 :
Your web server is setup with Strict-Transport-Security max-age=16070400; includeSubdomains
您的Web服务器设置为Strict-Transport-Security max-age=16070400; includeSubdomains
Strict-Transport-Security max-age=16070400; includeSubdomains
. Strict-Transport-Security max-age=16070400; includeSubdomains
。
This will tell the web browser to request your domain using https only. 这将告诉网络浏览器仅使用https请求您的域。 If you want the subdomain blog
to be accessed through insecure http, you will need to remove includeSubdomains
from the HTTP Strict Transport Security (HSTS) and use a different browser (or clear your Firefox). 如果要通过不安全的http访问子域blog
,则需要从HTTP严格传输安全性(HSTS)中删除includeSubdomains
,并使用其他浏览器(或清除Firefox)。
https://www.ssllabs.com/ssltest/analyze.html?d=alooga.com.br https://www.ssllabs.com/ssltest/analyze.html?d=alooga.com.br
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.