重定向到https的Django中间件

Question

I'm trying to build some middleware in my Django project that redirects the user to a 'https' link if their request isn't initially to https. The code below is not redirecting the user under any of the tests that I've run (ie user enters 'www.example.com', ' http://example.com ,', http://www.example.com ', etc.

Can any of you spot the problem with this code? Normally, I'd use print statements to see what the path is being set to, but I can't do that on my live server (or at least I don't know how to):

from django.http import HttpResponseRedirect

from django.utils.deprecation import MiddlewareMixin

class RedirectMiddleware(MiddlewareMixin):

    def process_request(self, request):

        host = request.get_host()

        if host == 'www.example.com' or 'example.com':

           path = request.build_absolute_uri()
           domain_parts = path.split('.')

           if domain_parts[0] == 'http://www':
               path = path.replace("http://www","https://www")
               return HttpResponseRedirect(path)

           elif domain_parts[0] == 'www':
               path = path.replace("www","https://www")
               return HttpResponseRedirect(path)

           elif domain_parts[0] == 'http://example':
               path = path.replace("http","https")
               return HttpResponseRedirect(path)

           elif domain_parts[0] == 'example':
               path = path.replace("example","https://www.example")
               return HttpResponseRedirect(path)

           else:
               pass

       else:
           pass

Thanks again guys

Answer 1

You can add the following to your settings file

SECURE_SSL_REDIRECT = True

See https://docs.djangoproject.com/en/2.1/ref/middleware/#ssl-redirect

You'll also need to add the following to your middlewares

'django.middleware.security.SecurityMiddleware',

It's a settings available from Django 1.8+