logo
Apache Lounge
Webmasters

 

About Forum Index Downloads Search Register Log in RSS X


Keep Server Online

If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.

or

Bitcoin

A donation makes a contribution towards the costs, the time and effort that's going in this site and building.

Thank You! Steffen

Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
Post new topic   Forum Index -> Apache View previous topic :: View next topic
Reply to topic   Topic: Non-HTTPS virtualhost seem forced to use https
Author
nicksimoneau



Joined: 05 Jan 2019
Posts: 3
Location: Canada, Victoriaville

PostPosted: Sat 05 Jan '19 23:39    Post subject: Non-HTTPS virtualhost seem forced to use https Reply with quote

Hi, I have 5 virtual host with SSL and 1 without SSL. Everything was working great until I had to wipe the whole OS and reinstall it.

All my 5 virtual host with SSL are working great but now my non SSL virtual host seem forced to use the HTTPS protocol without I ask to do it.

The certificate used is localhost.localdomain (generic certificate)

I have to say the folded called in the virtual host for this domain seem not used, it seem to use the generic apache path (/var/www) instead of (/var/www/technick.ca/public_html/)

Anyone have a idea ?

I use Centos 7 (last version) with everything updated
Back to top
nicksimoneau



Joined: 05 Jan 2019
Posts: 3
Location: Canada, Victoriaville

PostPosted: Sun 06 Jan '19 4:38    Post subject: Update Reply with quote

I have do some cleanup in the ssl.conf file.
Now my comodo certificate are now taken but my http://technick.ca is redirect to https://aftersunproduction.com because it seem technick.ca use the ssl of aftersunproduction but in fact technick.ca as no config line in ssl.conf...

weird !
Back to top
James Blond
Moderator


Joined: 19 Jan 2006
Posts: 7288
Location: Germany, Next to Hamburg

PostPosted: Mon 07 Jan '19 17:09    Post subject: Reply with quote

if you use HSTS aka Strict-Transport-Security it is likely you will be redirected to https.
Back to top
Jan-E



Joined: 09 Mar 2012
Posts: 1248
Location: Amsterdam, NL, EU

PostPosted: Mon 07 Jan '19 21:49    Post subject: Reply with quote

James Blond wrote:
if you use HSTS aka Strict-Transport-Security it is likely you will be redirected to https.

It is not HSTS. The redirect is sent by the server:

Code:
D:\>curl --head http://aftersunproduction.com/
HTTP/1.1 301 Moved Permanently
Date: Mon, 07 Jan 2019 19:46:23 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.13
X-Powered-By: PHP/7.2.13
Location: https://aftersunproduction.com/
Content-Type: text/html; charset=UTF-8
Back to top
nicksimoneau



Joined: 05 Jan 2019
Posts: 3
Location: Canada, Victoriaville

PostPosted: Tue 08 Jan '19 23:47    Post subject: Reply with quote

Totally agree but the trouble here is for http://technick.ca who is redirect to aftersunproduction.com

But if you use http://www.technick.ca the result is good.
Back to top


Reply to topic   Topic: Non-HTTPS virtualhost seem forced to use https View previous topic :: View next topic
Post new topic   Forum Index -> Apache