Apache2 https redirect to http without ssl cert

Apache2https

We have an apache server which hosts multiple domains from, which some have https enabled and some do not.

Now the problem is that if I access https://exampleWithoutHttps I will come to the content of https://exampleWithHttps.

I would like to forward the user from https://exampleWithoutHttps to http://exampleWithoutHttps on all domains whithout https. I have tried to create a redirect rule in virtualhost *:443 but this creates the following error:

Server should be SSL-aware but has no certificate configured

The problem is that I cant change "Listen 443" to "Listen 443 http" as this would break my hosts with ssl enabled.

Is there a way I could have a redirect without a ssl certificate ?

Or if not possible can you propose an alternative which would ensure that https://exampleWithoutHttps does not show the content of https://exampleWithHttps.

My ports.conf

NameVirtualHost *:80
Listen 80
NameVirtualHost *:443
Listen 443

mi site condfig:

<VirtualHost *:80>
 DocumentRoot /path/to/dr
 ServerName  exampleWithoutHttps.com
 ServerAlias www.exampleWithoutHttps.com
</VirtualHost>

<VirtualHost *:443>
 ServerName  exampleWithoutHttps.com
 ServerAlias www.exampleWithoutHttps.com
 Redirect permanent /   http://www.exampleWithoutHttps.com/
</VirtualHost>

Best Answer

Configure any certificate for your VirtualHost *:443 and you are done.

Could be simply a self-signed certificate that you generate for yourself. Of course user will see a security warning. This is expected. Users specifically want https where s stands for secure. You don't hold a valid certificate for exampleWithoutHttps.com, hence you cannot give them security - it's correct they are warned about that.
You could also get a valid cert for free from a couple of vendors.

Place the VirtualHost *:443 of ServerName exampleWithoutHttps.com before VirtualHost *:443 of ServerName exampleWithHttps.com. I mean place it textually as the first one in the Apache's configuration files. This ensures user will not see content from exampleWithHttps.

Related Solutions

Apache SSL – Is It Bad to Redirect HTTP to HTTPS?

The [R] flag on its own is a 302 redirection (Moved Temporarily). If you really want people using the HTTPS version of your site (hint: you do), then you should be using [R=301] for a permanent redirect:

RewriteEngine on
RewriteCond %{SERVER_PORT} !^443$
RewriteRule ^/(.*) https://%{HTTP_HOST}/$1 [NC,R=301,L]

A 301 keeps all your google-fu and hard-earned pageranks intact. Make sure mod_rewrite is enabled:

a2enmod rewrite

To answer your exact question:

Is it bad to redirect http to https?

Hell no. It's very good.

Ssl – How to redirect http to https for IP and domain on Apache2

If you want redirect all :80 visits excluding those to http://example.com:

<VirtualHost _default_:80>
     RewriteEngine On
     RewriteCond %{HTTP_HOST} !^example.com$
     RewriteRule /.* https://example.com/ [R]
</VirtualHost>

If you want to redirect even the ones that go to http://example.com, do the following:

<VirtualHost _default_:80>
     RewriteEngine On
     RewriteRule /.* https://example.com/ [R]
</VirtualHost>

Obviously, if you have other VirtualHost stanzas, it may never reach the _default_ one.

Hope this helps!

Best Answer

Related Solutions

Apache SSL – Is It Bad to Redirect HTTP to HTTPS?

Ssl – How to redirect http to https for IP and domain on Apache2

Related Topic