Remove www site-wide, force https on certain directories and http on the rest?

.htaccess mod-rewrite ssl https no-www
20,742

Solution 1

Try these rules:

# remove www from host
RewriteCond %{HTTP_HOST} ^www\.(.+)
RewriteCond %{HTTPS}s/%1 ^(on(s)|offs)/(.+)
RewriteRule ^ http%2://%3%{REQUEST_URI} [L,R=301]

# force HTTPS
RewriteCond %{HTTPS} =off
RewriteRule ^(login|foo|bar|…)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

# force HTTP
RewriteCond %{HTTPS} =on
RewriteRule !^(login|foo|bar|…)$ http://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

You also might want to add some additional conditions to only change the protocol on GET and HEAD requests but not on POST requests.

Solution 2

This code works for me:

<IfModule mod_rewrite.c>

   RewriteEngine on

   RewriteCond %{HTTP_HOST} ^www\.(.*)$ [NC]
   RewriteRule ^(.*)$ https://%1/$1 [R=301,L]

   RewriteCond %{HTTPS} !=on
   RewriteRule ^(.*)$ https://%{HTTP_HOST}/$1 [R=301,L]

</IfModule>
Share:
20,742
Anthony
Author by

Anthony

Wondering whether I can become a web designer/developer without losing my soul?

Updated on February 13, 2020

Comments

  • Anthony
    Anthony about 4 years

    Firstly, I would like to remove the www. from my domain name

    http://www.example.com => http://example.com

    I would also like for certain directories to be secure (https), while the rest remain http

    http://example.com/login => https://example.com/login

    Obviously it needs to work for all conditions, for example if someone types in:

    http://www.example.com/login => https://example.com/login

    Also when people navigate away from the login page it returns to http. Currently in the .htaccess is the following which is done automatically by the software I am using and I suppose needs to be there for it to work:

    RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule .* ./index.php

    Any ideas on how I can achieve dream control all these things?

    Thanks in advance!

    ===================

    @Gumbo Following your advice this is my complete .htaccess

    RewriteEngine On


# remove www from host
RewriteCond %{HTTP_HOST} ^www\.(.+)
RewriteCond %{HTTPS}s/%1 ^(on(s)|offs)/(.+)
RewriteRule ^ http%2://%3%{REQUEST_URI} [L,R=301]

# force HTTPS
RewriteCond %{HTTPS} =off
RewriteRule ^(login)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

# force HTTP
RewriteCond %{HTTPS} =on
RewriteRule !^(login)$ http://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]


RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule .* ./index.php


Options -Indexes

    Navigating to http://example/login still goes to http://example/index.php when it should go to https://example/login Do I have the order wrong?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Redirect only one folder to HTTPS, all others to HTTP
Force non-www and https via htaccess
Force SSL/https using .htaccess and mod_rewrite
How do I enable https only on certain pages with htaccess?
RewriteCond not working on force https for HTTP_HOST
Redirect NON-www to www for https
How to setup ssl using only .htaccess file
How do I force HTTPS on a single file? (PHP)
RewriteCond %{SERVER_NAME} syntax
Force HTTPS for specific URL