Redirect to https automatically

netfrugal

I'm sure this can be configured on the server side, or even with the .htaccess file.

But, I'm looking for an option with php.

I have some domains that have ssl and non-ssl. I want to redirect any visitors that come to the non ssl page to be redirected to the ssl pages.

I've got this working for any urls that lack the "www." And then I redirect the visitors to the url with "www" in it.

<?
if (!strstr($_SERVER['HTTP_HOST'],"www.")){
header("Location: https://www.mysite.com/");
} 
?>

I tried it with https, but it didn't recognize it.

Any ideas?

bradgrafelman

netfrugal wrote:
I'm sure this can be configured ... with the .htaccess file.

Quite right - using mod_rewrite.

Anyway, if you wanted a strictly PHP solution, you could probably do something like:

if($_SERVER['SERVER_PORT'] == 80) { // 80 = http

netfrugal

It's funny, that would make sense.

I echo'd the $_SERVER['SERVER_PORT']; on both non secure and secure pages, but the response is both "80". Is that not normal? Or is that a configuration issue on the apache or php side? I was expecting 443 for anything with https.

not sure what do do here

NogDog

Another possibility:

<?php
if(empty($_SERVER['HTTPS']))
{
   header('Location: https://www.example.com' . $_SERVER['PHP_SELF']);
   exit;
}

Note that if running PHP ISAPI module on IIS, the if condition would be changed to if($_SERVER['HTTPS'] == 'off').

netfrugal

Something seems off.

<? echo $_SERVER["SERVER_PORT"]; ?>

If I go to my url: https://www.mysite.com, then wouldn't the server port be 443?
The code above gives me "80" for both secure and nonsecure.

Wow, am I off my rocker? or shouldn't that say 443?

netfrugal

I keep getting this error in the server logs:

Undefined index: HTTPS in /var/www/html/myrootsite

Here's the code:

<? $_SERVER['HTTPS']; ?>