Hi Deepak, I would suggest
===
RewriteCond %{HTTPS} off
RewriteRule ^\/?(.*)$ https://%{HTTP_HOST}/$1 [R=301,L]
===
1st statement just checks if https is not active, independent of the
ports used.
2nd statement does a 301 redirect telling Google that it is permanent. Regards, Michael Am 01.10.18 um 08:32 schrieb Deepak Dixit:
Thanks Jacques, Following rule should work. ============= RewriteCond %{SERVER_PORT} 80 RewriteRule ^(.*)$ https://ofbiz.apache.org/$1 [R,L] ============= Please confirm if it looks good. Thanks & Regards -- Deepak Dixit On Mon, Oct 1, 2018 at 11:45 AM, Jacques Le Roux < jacques.le.r...@les7arts.com> wrote:That's quite a good idea Deepak Jacques Le 01/10/2018 à 07:30, Deepak Dixit a écrit :We have .htaccess file, we can write redirect rule in this file. Thanks & Regards -- Deepak Dixit On Sun, Sep 30, 2018 at 3:51 PM, Ashish Vijaywargiya < ashish.vijaywarg...@hotwaxsystems.com> wrote: Few important articles from Google's official security blog site:https://security.googleblog.com/2014/08/https-as-ranking-signal_6.html https://security.googleblog.com/2015/12/indexing-https- pages-by-default.html https://security.googleblog.com/2017/04/next-steps-toward- more-connection.html https://security.googleblog.com/2018/02/a-secure-web-is-here -to-stay.html Kind Regards Ashish Vijaywargiya HotWax Systems - est. 1997 <http://www.hotwaxsystems.com/> On Sun, Sep 30, 2018 at 3:31 PM Ashish Vijaywargiya < ashish.vijaywarg...@hotwaxsystems.com> wrote: Thanks, Jacques, Please feel free to get it done and let me know if somehelp is required from my side. Thanks! -- Kind Regards Ashish Vijaywargiya HotWax Systems - est. 1997 <http://www.hotwaxsystems.com/> On Sun, Sep 30, 2018 at 1:38 PM Jacques Le Roux < jacques.le.r...@les7arts.com> wrote: We can handle it ourselves. It's puppetised. The file isinfrastructure-puppet\data\roles\tlpserver.yaml at https://github.com/apache/infrastructure-puppet.git inorigin/deployment branchOFBiz block is ofbiz: vhost_name: '*' port: 80 servername: 'www.ofbiz.org' docroot: '/www/ofbiz.apache.org' manage_docroot: false serveraliases: - 'ofbiz.org' serveradmin: 'us...@infra.apache.org' access_log_file: '/x1/logs/weblog.log' error_log_file: '/x1/logs/errorlog.log' custom_fragment: | Redirect permanent / http://ofbiz.apache.org/ UseCanonicalName On RewriteEngine On RewriteOptions inherit # bigfiles.ofbiz.org RewriteCond ${lowercase:%%{}{HTTP_HOST}} ^bigfiles(?:\.\w+)?\.ofbiz\.org$ RewriteRule (.*) http://ofbiz-bigfiles.apache.org/ [L] So we should add a ssl block and redirect http block to https as explained at https://wiki.apache.org/httpd/RedirectSSL We can do a PR for that. Then it's better with an INFRA Jira becauseit's then seen and prioritised by the Infra teamJacques Le 30/09/2018 à 08:03, Taher Alkhateeb a écrit :+1 I'm not sure any effort is needed from our side? We just need tocoordinatewith infra right? On Sun, Sep 30, 2018, 8:01 AM Ashish Vijaywargiya < ashish.vijaywarg...@hotwaxsystems.com> wrote: Hello Team,I think we should put some effort and make it work like if some userhits http://ofbiz.apache.org(default port http) then the user is redirected to https://ofbiz.apache.org(Secure port https)For now, the user sees a message "Not Secure" in the Google Chromebrowser URL if the user comes to the official ofbiz website. This message canconfuse the end user and he can move away if he is the new uservisiting the project website.This issue can be easily addressed by setting up the apacheredirects.Thischange will also help the project URLs from SEO point of view.Please share your thoughts then we can plan the things accordingly. Thanks! -- Kind Regards Ashish Vijaywargiya HotWax Systems - est. 1997 <http://www.hotwaxsystems.com/>
smime.p7s
Description: S/MIME Cryptographic Signature
