Force HTTPS SSL Access for a URL with Apache

The situation is: you have an web application or URL that you would like to force your users (or yourself) to use the secure https protocol rather than the unencrypted http protocol. This is easy to do with Apache and .htaccess.

Create or add to the .htaccess file in the root of the web directory you would like to force redirect for. Add the following lines:

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

This says that if https is off, reload the page at the same location using HTTPS instead.

8 replies
  1. barf
    barf says:

    Thanks, worked a treat. I’d tried lots of RewriteCond using server-port but couldn’t get it to work.

  2. barf
    barf says:

    Thanks, worked a treat. I’d tried lots of RewriteCond using server-port but couldn’t get it to work.

  3. gloryforixseal
    gloryforixseal says:

    I found lots of interesting information here. The post was professionally written and I feel like the author has extensive knowledge in the subject. Keep it that way.

  4. gloryforixseal
    gloryforixseal says:

    I found lots of interesting information here. The post was professionally written and I feel like the author has extensive knowledge in the subject. Keep it that way.

Comments are closed.