Apache在浏览器支持时重定向到HTTPS

tjjdgumg  于 2023-10-23  发布在  Apache
关注(0)|答案(1)|浏览(159)

如何自动重定向所有不安全(http)的网页到他们的https对应http://example.com -> https://example.com,但只对支持https的浏览器这样做。所以我的网站仍然可以在较旧的浏览器中运行?

apache

1条答案

按热度按时间
xuo3flqw

xuo3flqw1#

此重定向代码可以直接添加到vhost文件中,也可以添加到.htaccess文件中:

  1. RewriteEngine on
  3. # rewrite to https.
  4. # -----------------
  5. # %{HTTP:X-Forwarded-Proto} !https: This condition checks if the X-Forwarded-Proto header is not set to https. 
  6. # The X-Forwarded-Proto #header is typically set by proxies or load balancers to indicate the original protocol 
  7. # used for the request. By checking this header, # you can ensure that the redirect only occurs if the request 
  8. # is not already using HTTPS.
  9. RewriteCond %{HTTP:X-Forwarded-Proto} !https
  11. # %{HTTP:Upgrade-Insecure-Requests} ^1$: This condition checks if the Upgrade-Insecure-Requests header is set to 1. 
  12. # The Upgrade-Insecure-Requests header is sent by modern browsers that support HTTPS and can automatically upgrade 
  13. # an insecure request to a secure one. By checking this header, you can verify if the browser supports HTTPS and 
  14. # wants to upgrade the request to HTTPS.
  15. RewriteCond %{HTTP:Upgrade-Insecure-Requests} ^1$
  17. # RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R,L]
  18. RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R=301,L]

在内部,它检查Upgrade-Insecure-Requests头,这是浏览器发送的内容。基于此请求标头,它重定向页面。

展开查看全部
赞(0)分享  回复(0)举报  2023-10-23
我来回答

相关问题

    查看更多

    热门标签

    更多
    JavaquerypythonNode开发语言requestUtil数据库Table后端算法LoggerMessageElementParser

    最新问答

    更多
    • 蜀ICP备13028337号-1 大数据知识库 https://www.saoniuhuo.com © All rights reserved
    • 本站内容来源互联网,如果侵犯您的权益请联系我们删除, 联系方式:448109455@qq.com