How to Redirect HTTP to HTTPS using web.config?

Redirect HTTP Requests to HTTPS Using web.config

You're seeking a solution to enforce HTTPS for all resources in your website via a web.config file, independent of PHP. To accomplish this, you can utilize the URL Rewrite module in IIS.

Solution:

1. Ensure you have the URL Rewrite module v2 installed.
2. Add the following code to your web.config file:

<configuration>
    <system.webServer>
        <rewrite>
            <rules>
                <clear />
                <rule name="Redirect to HTTPS" stopProcessing="true">
                    <match url=".*" />
                    <conditions>
                        <add input="{HTTPS}" pattern="off" ignoreCase="true" />
                    </conditions>
                    <action type="Redirect" url="https://{HTTP_HOST}{REQUEST_URI}" redirectType="Permanent" appendQueryString="false" />
                </rule>
            </rules>
        </rewrite>
    </system.webServer>
</configuration>

Explanation:

• The element removes any existing rewrite rules.
• The element defines a rule to redirect non-HTTPS requests to HTTPS.
• The element specifies that the rule only applies when HTTPS is turned off ({HTTPS} = "off").
• The element defines the redirect action to change the URL to HTTPS and use a permanent (301) redirect.

Note: This solution operates at the URL rewriting level, before any code execution, and is not specific to any particular technology like ASP.NET or PHP.

The above is the detailed content of How to Redirect HTTP to HTTPS using web.config?. For more information, please follow other related articles on the PHP Chinese website!