[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-developers] Forcing HTTPS for certain parts of a site
- Subject: RE: [cobalt-developers] Forcing HTTPS for certain parts of a site
- From: "KAMRY" <kamry1888@xxxxxxxxx>
- Date: Fri Aug 24 18:20:20 2001
- List-id: Discussion Forum for developers on Sun Cobalt Networks products <cobalt-developers.list.cobalt.com>
Well see how can we make one directory with https:// and the rest without
the https:/ - In other words, I have set up the <virtual host> with the
following and it works fine since the .htaccess didn't work back those days:
I have the following after the rewrite rule in a <v... host>:
RewriteCond %{SERVER_PORT} !^443$
RewriteRule ^/folderToBeSecured/(.*)?$
https://%{SERVER_NAME}/folderToBeSecured/$1 [L,R]
Now, the biggest problem is this work pretty well, however if a client
clicks on home or services from that page in that secured area then the
https will continue on, and this is a burden on the machine.
For example, if the folderToBeSecured is ssl and the site is www.domain.com
then filling the secure feedback.html in www.domain.com/ssl/feedback.html
will be encrypted, but let's say we are done and then we decided to go back
home, then the url will still carry on https://www.domain.com - I know we
can have the url explicitly with http:// but when designing 30+ pages with
static footers and headers then it is an annoying issue.
So, given the above and solution to the first part, can someone share a
solution for the second part?!!
Kal
-----Original Message-----
From: cobalt-developers-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-developers-admin@xxxxxxxxxxxxxxx]On Behalf Of Thomas
Sent: Fri, August 24, 2001 6:43 AM
To: cobalt-developers@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-developers] Forcing HTTPS for certain parts of a
site
It seems to me that the best way to do it would be to put a rewrite rule in
an .htaccess file in the directory you want controlled
Something similar to:
RewriteRule ^/.* https://server/$1
It is strange that this comes up, because I have been trying to make this
work for a week.
Using different Rewriterules but alas, I do not have a firm grasp on the
exact mechanics of this.
Perhaps some of out more knowledgable people can come up with the propper
rule to make this occur.
-Thomas
----- Original Message -----
From: "Peter Dickson" <peter.dickson@xxxxxxxxxxx>
To: "Cobalt Developers List" <cobalt-developers@xxxxxxxxxxxxxxx>
Cc: "Chris Moules" <chris.moules@xxxxxxxxxxx>; "Anthony Marsh"
<ant.marsh@xxxxxxxxxxx>
Sent: Wednesday, August 22, 2001 1:28 AM
Subject: [cobalt-developers] Forcing HTTPS for certain parts of a site
> How do I force HTTPS when browsing certain areas of a site? e.g. if I try
> and browse to http://www.domain.com/adminstrate I want the browser to
> automatically go to https://www.domain.com/adminstrate.
>
> TIA
>
>
> P.
>
> ---
> Peter Dickson
>
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> Kyros Solutions Ltd
> 110 The Custard Factory Gibb Street Birmingham B9 4AA
> t: +44 (0)121 683 1330 w: http://www.kyros.co.uk
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> ~ passionate about helping people use information technology effectively ~
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>
>
> ---
> Fingerprint: 02DB 023B C11B 412C D015 0AF3 F074 8590 72D2 BC98
>
>
> _______________________________________________
> cobalt-developers mailing list
> cobalt-developers@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-developers
>
_______________________________________________
cobalt-developers mailing list
cobalt-developers@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-developers
_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com