Well see how can we make one directory with https:// and the rest without
the https:/ - In other words, I have set up the <virtual host> with the
following and it works fine since the .htaccess didn't work back those days:
I have the following after the rewrite rule in a <v... host>:
RewriteCond %{SERVER_PORT} !^443$
RewriteRule ^/folderToBeSecured/(.*)?$
https://%{SERVER_NAME}/folderToBeSecured/$1 [L,R]
Now, the biggest problem is this work pretty well, however if a client
clicks on home or services from that page in that secured area then the
https will continue on, and this is a burden on the machine.
For example, if the folderToBeSecured is ssl and the site is www.domain.com
then filling the secure feedback.html in www.domain.com/ssl/feedback.html
will be encrypted, but let's say we are done and then we decided to go back
home, then the url will still carry on https://www.domain.com - I know we
can have the url explicitly with http:// but when designing 30+ pages with
static footers and headers then it is an annoying issue.
So, given the above and solution to the first part, can someone share a
solution for the second part?!!
Kal
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Thomas
Sent: Fri, August 24, 2001 6:43 AM
To: [EMAIL PROTECTED]
Subject: Re: [cobalt-developers] Forcing HTTPS for certain parts of a
site
It seems to me that the best way to do it would be to put a rewrite rule in
an .htaccess file in the directory you want controlled
Something similar to:
RewriteRule ^/.* https://server/$1
It is strange that this comes up, because I have been trying to make this
work for a week.
Using different Rewriterules but alas, I do not have a firm grasp on the
exact mechanics of this.
Perhaps some of out more knowledgable people can come up with the propper
rule to make this occur.
-Thomas
----- Original Message -----
From: "Peter Dickson" <[EMAIL PROTECTED]>
To: "Cobalt Developers List" <[EMAIL PROTECTED]>
Cc: "Chris Moules" <[EMAIL PROTECTED]>; "Anthony Marsh"
<[EMAIL PROTECTED]>
Sent: Wednesday, August 22, 2001 1:28 AM
Subject: [cobalt-developers] Forcing HTTPS for certain parts of a site
> How do I force HTTPS when browsing certain areas of a site? e.g. if I try
> and browse to http://www.domain.com/adminstrate I want the browser to
> automatically go to https://www.domain.com/adminstrate.
>
> TIA
>
>
> P.
>
> ---
> Peter Dickson
>
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> Kyros Solutions Ltd
> 110 The Custard Factory Gibb Street Birmingham B9 4AA
> t: +44 (0)121 683 1330 w: http://www.kyros.co.uk
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> ~ passionate about helping people use information technology effectively ~
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>
>
> ---
> Fingerprint: 02DB 023B C11B 412C D015 0AF3 F074 8590 72D2 BC98
>
>
> _______________________________________________
> cobalt-developers mailing list
> [EMAIL PROTECTED]
> http://list.cobalt.com/mailman/listinfo/cobalt-developers
>
_______________________________________________
cobalt-developers mailing list
[EMAIL PROTECTED]
http://list.cobalt.com/mailman/listinfo/cobalt-developers
_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com
_______________________________________________
cobalt-developers mailing list
[EMAIL PROTECTED]
http://list.cobalt.com/mailman/listinfo/cobalt-developers
