1. 首頁
  2. 問答
  3. 強制https協議

強制https協議

2012-11-30 166 views
3

如何強制我的網站在整個網站中使用https://?我的網站是用CentOS上的CodeIgniter,MySQL,& Apache構建的,任何人都可以請賜教。強制https協議

編輯

我使用笨,它有這個的.htaccess。因爲我在我的評論中提到下面,我想要做的相反(在網站的某些部分迫使https):

.htaccess我的系統上:

Options -Indexes 
<IfModule mod_rewrite.c> 
    RewriteEngine On 
    RewriteBase/

    #Removes access to the system folder by users. 
    #Additionally this will allow you to create a System.php controller, 
    #previously this would not have been possible. 
    #'system' can be replaced if you have renamed your system folder. 
    RewriteCond %{REQUEST_URI} ^system.* 
    RewriteRule ^(.*)$ /index.php?/$1 [L] 

    #When your application folder isn't in the system folder 
    #This snippet prevents user access to the application folder 
    #Submitted by: Fabdrol 
    #Rename 'application' to your applications folder name. 
    RewriteCond %{REQUEST_URI} ^application.* 
    RewriteRule ^(.*)$ /index.php?/$1 [L] 

    #Checks to see if the user is attempting to access a valid file, 
    #such as an image or css document, if this isn't true it sends the 
    #request to index.php 
    RewriteCond %{REQUEST_FILENAME} !-f 
    RewriteCond %{REQUEST_FILENAME} !-d 
    RewriteRule ^(.*)$ index.php?/$1 [L] 
</IfModule> 

<IfModule !mod_rewrite.c> 
    # If we don't have mod_rewrite installed, all 404's 
    # can be sent to index.php, and everything works as normal. 
    # Submitted by: ElliotHaughin 

    ErrorDocument 404 /index.php 
</IfModule>

如果我添加什麼@Dale建議:

RewriteEngine On 
RewriteCond %{HTTPS} off 
RewriteCond ^(login|register|userportal) 
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

我得到回覆。有什麼想法嗎?

來源

2012-11-30 fishcracker

回答

7

我已經在過去使用該情況,.htaccess文件

RewriteEngine On 
RewriteCond %{HTTPS} off 
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

可能有更好的實現,但它總是爲我工作

如果你要刪除的WWW部分我已經使用這種

RewriteCond %{HTTP_HOST} ^www\.(.+) 
RewriteCond %{HTTPS}s/%1 ^(on(s)|offs)/(.+) 
RewriteRule^http%2://%3%{REQUEST_URI} [L,R=301]

這裏的合治

RewriteEngine On 
RewriteCond %{HTTPS} off 
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} 

RewriteCond %{HTTP_HOST} ^www\.(.+) 
RewriteCond %{HTTPS}s/%1 ^(on(s)|offs)/(.+) 
RewriteRule^http%2://%3%{REQUEST_URI} [L,R=301]

這涉及的協議,然後再刪除W公司

更新:

強制執行,你可以使用類似

RewriteEngine On 
RewriteCond %{HTTPS} off 
RewriteCond ^(login|register|userportal) 
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

你當然會刪除此特定的目錄https協議(下面)如果你使用上述

RewriteEngine On 
RewriteCond %{HTTPS} off 
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

來源

2012-11-30 13:01:07 Dale

+0

是否有任何調整在這裏,以防萬一我想強制www.site.com到site.com?仍然在'https'協議中? – fishcracker

+0

@fishcracker我添加了更多的代碼來處理www – Dale

+0

如果我做了相反的事情呢?我只想在某些網址上強制使用https,例如http://mysite.com/login,http://mysite.com/register,&http://mysite.com/userportal及其細分(userportal/profile ,userportal /註銷)?謝謝! – fishcracker

相關問題

 相關問題