Force HTTPS SSL Access for a URL with Apache

1 minute read

Up next

New systemBash Theme

The situation is: you have an web application or URL that you would like to force your users (or yourself) to use the secure https protocol rather than the unencrypted http protocol. This is easy to do with Apache and .htaccess.

Create or add to the .htaccess file in the root of the web directory you would like to force redirect for. Add the following lines:

RewriteEngine On RewriteCond %{HTTPS} off RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

This says that if https is off, reload the page at the same location using HTTPS instead.

8 comments

barf says:

June 17, 2008 at 2:09 am

Thanks, worked a treat. I’d tried lots of RewriteCond using server-port but couldn’t get it to work.
barf says:

June 16, 2008 at 10:09 pm

Thanks, worked a treat. I’d tried lots of RewriteCond using server-port but couldn’t get it to work.
Jim says:

August 22, 2008 at 1:46 pm

This is just the tip I needed. Thanks!
Jim says:

August 22, 2008 at 9:46 am

This is just the tip I needed. Thanks!
damupi says:

December 3, 2008 at 9:47 am

tks 4 the code
damupi says:

December 3, 2008 at 5:47 am

tks 4 the code
gloryforixseal says:

June 25, 2009 at 1:02 am

I found lots of interesting information here. The post was professionally written and I feel like the author has extensive knowledge in the subject. Keep it that way.
gloryforixseal says:

June 24, 2009 at 9:02 pm

I found lots of interesting information here. The post was professionally written and I feel like the author has extensive knowledge in the subject. Keep it that way.