stackoom
  简体   繁体   中英

How to set HTTPS-only header on .htaccess?

 原文  2018-02-28 22:42:44       apache/ .htaccess/ mamp/ mamp-pro

Question

I'm trying to set HTTPS-only header with .htaccess.

This works on MAMP Pro, but on the live server the header is missing on 301 redirect responses: 

Header always set Strict-Transport-Security '...' env=HTTPS

The issue can be fixed with this: 

Header always set Strict-Transport-Security '...' "expr=%{HTTPS} == 'on'"

But it doesn't work with MAMP: 500 Internal Server Error is returned.

Can I make expressions (like that "expr=%{HTTPS} == 'on'" ) work on MAMP? How?

1 answers

solution1
 0  2018-03-01 00:02:29

In my experience, MAMP/MAMP Pro does not necessarily work with .htaccess. Mainly due to the fact that MAMP makes your machine a local server, so depending on your .htaccess some rules may be conflicting with MAMP's setup. Every time I run a local instance of one of my sites on MAMP I have to temporarily remove any and all .htaccess files.

In terms of getting your server to force ssl connections, I used these lines of code at the top of .htaccess below "Options -Indexes": 

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to prompt only once with .htaccess for http and https? How to apply an htaccess rule only on https htaccess HTTPS only no redirect apache htaccess Header Set only working for static files how to remove a https redirection for only one .php file in htaccess How to set all link to https using php or .htaccess? Force HTTPS on .htaccess but only on production Determine HTTPS in htaccess to Set Environment How to set HTTP headers in .htaccess only for IE 9 how to set htaccess to only allow www and dev
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM