httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Octavian R√Ęsnita <orasn...@gmail.com>
Subject Re: [users@httpd] How to Redirect to https after login?
Date Thu, 29 Oct 2009 13:21:15 GMT
From: "Eric Covener" <covener@gmail.com>
>>> When I use a rewrite rule as shown below,
>>> RewriteRule ^/login(.*) https://%{SERVER_NAME}/login$1 [R,L]
>>> the parameters get lost, because the request is translated to a GET 
>>> request.
>>> What do I need to do, to fix this problem?
>>
>> Use the QSA flag, so the query string doesn't get lost.
>
> QSA only does anything when you're explicitly adding a query string in
> your substitution.
>
> OP is redirecting a POST, which is something to be avoided.

Why should a redirect after POST be avoided?

> A simple
> HTML redirect in the output of the form-based login makes a lot of
> sense.

Why? It makes the process dependent on the browser, which should be avoided.

Thanks.

Octavian


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message