httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Eugene <eugene.lyse...@gmail.com>
Subject RE: [users@httpd] Rewrite Conditions & Rules
Date Thu, 03 Mar 2011 16:32:37 GMT
Doesn't it fit your needs?

        RewriteCond %{REQUEST_URI} !^/$
        RewriteCond %{REQUEST_URI} !^/home   
        RewriteCond %{REQUEST_URI} !^/insurance-tips 
        RewriteCond %{REQUEST_URI} !^/add-a-tip  
        RewriteCond %{HTTPS}       off  
        RewriteRule / https://www.website.com%{REQUEST_URI} [R,L]

        RewriteCond %{REQUEST_URI} ^/$
        RewriteCond %{REQUEST_URI} ^/home
        RewriteCond %{REQUEST_URI} ^/insurance-tips
        RewriteCond %{REQUEST_URI} ^/add-a-tip
        RewriteCond %{HTTPS}       on
        RewriteRule / http://www.website.com%{REQUEST_URI} [R,L]


-----Original Message-----
From: Ian Stradling <Ian@impalanetworks.com>
Reply-to: "users@httpd.apache.org" <users@httpd.apache.org>
To: users@httpd.apache.org <users@httpd.apache.org>
Subject: RE: [users@httpd] Rewrite Conditions & Rules
Date: Thu, 3 Mar 2011 16:05:54 +0000

Has anyone ever used mod_rewrite to try and force SSL on certain portions of a website?  

I feel like I'm running around in circles trying to figure it out.  As a point of reiteration,
I'm using the following code:

	RewriteCond %{REQUEST_URI} !^/
	RewriteCond %{REQUEST_URI} !^/home   
	RewriteCond %{REQUEST_URI} !^/insurance-tips 
	RewriteCond %{REQUEST_URI} !^/add-a-tip  
	RewriteCond %{HTTPS} !=on  
	RewriteRule .* https://www.website.com/$1 [R,L]

I've tried implementing a couple of these but it never really does what I think it's supposed
to do.  If someone could please point me in the right direction, I'd appreciate it.

Thanks!

-----Original Message-----
From: Ian Stradling [mailto:Ian@impalanetworks.com] 
Sent: Monday, February 28, 2011 12:40 PM
To: users@httpd.apache.org
Subject: [users@httpd] re: Rewrite Conditions & Rules

Hi Folks,

I'm new to the manual side of web administration, and am using Apache2 in a Debian Linux distribution.

I was asked by my boss to set up a situation where we force SSL on certain portions of a website,
and turn it off when the viewer goes to another page on the site. I have decided to use mod_rewrite
to do so.  I've read through and have come up with the below code.  

This set of code is on the base port 80 site.  I have created this code with the intent to
rewrite the URL to SSL if the page is not the string.  

	RewriteCond %{REQUEST_URI} !^/
	RewriteCond %{REQUEST_URI} !^/home   
	RewriteCond %{REQUEST_URI} !^/insurance-tips 
	RewriteCond %{REQUEST_URI} !^/add-a-tip  
	RewriteCond %{HTTPS} !=on  
	RewriteRule .* https://www.website.com/$1 [R,L]


This set of code, I have written on the 443 SSL site.  

	RewriteCond %{REQUEST_URI} ^/home
	RewriteCond %{REQUEST_URI} ^/insurance-tips
	RewriteCond %{REQUEST_URI} ^/add-a-tip
	RewriteCond %{HTTPS} =on
	RewriteRule ^/(.*) http://www.website.com/$1 [R,L]

When you first go to the site, it behaves as I want it to and leaves everything as HTTP. 
But when you go back to the home page, it is supposed to remove the HTTPS, but it does not.
 I'm hoping that someone can critique my code here and tell me where I've gone wrong.  I appreciate
any feedback.


Thanks!

Ian Stradling




---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message