Apache rewrite rules and DNS settings for HTTPS sites

For a web application located at:

https://www.domain.com/

With an SSL certificate issued to “www.domain.com”,

What is are the proper rewrite rules, DNS settings, or combination of both which makes each of the below urls redirect seemlessly to https://www.domain.com/:

 1. http://www.domain.com
 2. http://domain.com
 3. https://domain.com

The difficulty is really with #3. https://domain.com tends to cause browser security messages. How do the major HTTPS sites do this? Take Paypal.com, for instance.

As some more assistance for item 3, and maybe 2 as well, how about using Server Name Indication to use two certs on the same host. (ie: www.domain.com and domain.com) Apache’s Wiki has some info on the specifics.

–Christopher Karel

Check more discussion of this question.

Bookmark on Delicious
Digg this post
Recommend on Facebook
share via Reddit
Share with Stumblers
Tweet about it
Print for later
Bookmark in Browser
Tell a friend

Apache rewrite rules behind a nginx proxy
Apache module “mod_jk”. Setup rewrite condition for using https for specific url/context
domain not getting resolved without www. Despite appropriate apache settings and DNS records
Why do some rewrite rules fail while AJP is serving all of my requests to Tomcat?
Apache server rewrite rules: how to avoid “implicitly forcing redirect (rc=302)”?

Apache rewrite rules and DNS settings for HTTPS sites

Related posts:

Leave a comment

Recent Posts

Tags