-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Felix,
On 2/25/20 10:53, Felix Schumacher wrote: > as more and more browsers are marking http as unsecure, we should > redirect all http requests to tomcat.apache.org to https. > > We can enable that by adding a rewrite rule to the .htaccess file > in the xdocs folder of our site repo. > > For JMeter we used the following fragment: > > RewriteEngine On > > # Redirect http to https # From Cordova PMC Member raphinesse # > https://s.apache.org/An8s > > # If we receive a forwarded http request from a proxy... > RewriteCond %{HTTP:X-Forwarded-Proto} =http [OR] > > # ...or just a plain old http request directly from the client > RewriteCond %{HTTP:X-Forwarded-Proto} ="" RewriteCond %{HTTPS} > !=on > > # Redirect to https version RewriteRule ^ > https://%{HTTP_HOST}%{REQUEST_URI} [L] Query string? Or is that part of REQUEST_URI? > Anything against adding this to our .htaccess file? +1 - -chris -----BEGIN PGP SIGNATURE----- Comment: Using GnuPG with Thunderbird - https://www.enigmail.net/ iQIzBAEBCAAdFiEEMmKgYcQvxMe7tcJcHPApP6U8pFgFAl5VQ90ACgkQHPApP6U8 pFiTFhAAtNxy3YoFbWNNRwEOWuRIrakfFaxHYpBz0sVK0B1s/hJtI1XW4V4pMSh8 4Vbwcnkoykt1F4DpZ8x8eDlWwbdhuPmKPwSsGChf2uws/j3Sc8rCpA0Tsb21FtvD hKmA9T+R2/HAM+0eSbWnWE906/BAhGblZrhhYGumAs62I219v5FSBsI3RYSoEEkL Fsn76Wg1z98boii1UERn6ZTJQ/B0TDo02XVjkEmNJRUbL/IPhv0issl7ENVI5pbo EfagIbooXuS9aNIc00Z2+dF2qQL+Ta8Bd2iSpakpeklFXBPpy0DwuZPX7ubH0Jbk 3W+P94Z/L3Eur+YFKr+6E3DGP51kZLjArvA1lcKk0q7PtiJAmcUX0UTCIiVfD0o/ 3zfqibHtBCqjoB/Vkjm4dH7sxURujQO9VtcVNT9bZ8weSiMCblISubd65lAnFEyr H87N55AcqXgAYYfsJd1aMwKYnCt2lY5X7CqBlyF5CajQrB9KW/IgQd9BVSA3vGlw dORLhKumvm+Nlo1Jk3+1Crd5g6dCn2lbjMmeoD6RhqYmZwuSQWA51GEz7n2GVlKb Xs/VgyeNyFUBno7/VN5izniMsNNMav/ucCC9jPzWB8vqbo6RFNL0kIgsDE8H1ySV AKk2T+lDfRKq2KCkU6+ObNUVNy5i+Nr2ZRdm9NfQASDzfneNBJ0= =XSel -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
