-
Notifications
You must be signed in to change notification settings - Fork 7
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Can't seem to enforce HTTPS #10
Comments
Hey ya. That definitely doesn't seem right. When you say you can access the address via http, do you mean the source address (external facing) or internal address (only accessible inside your network)? |
Thanks for the reply, I access my servers via registered domains. Haven't tried LAN IPs yet. |
Yeah, i completely removed the http listener, so it becomes impossible to connect via insecure means. The router, however, accepts the connection and proceeds to relay the connection to the server via https. *the client keeps operating in http, though (if accessed through http://domain.something). A secure connection is only established if the client connects through https://domain.something .
|
The issue seems to stem from I ended up bodging in https re-routing by removing the http server's ability to call |
If the code is |
So it appears that this is my fault, putting the incorrect config field name in the examples! |
Are you able to try it with the correct name "onlySecure"? |
I completely missed that. A re-route option would be great for people that don't want their clients to get 404s if they don't specifically type in Thanks. |
@Scharkee Agreed on the reroute! If you get a chance it would be great to have a pull request with that feature. Me = swamped at the moment :( |
@Scharkee Auto-redirecting insecure connections is now done. You have to specify it manually in each ssl section as "insecureRedirect". It can either be a boolean or a string. If set to true, will take the host name and prepend "https://" to it and redirect user there. If a string, will simply redirect user to whatever that string is. Uses 302 redirect so it is not permanent. |
If i set up the target to be
"target": "http://localhost:10202"
, and set"enable"
,"generate"
and"secureOnly"
totrue
, i can:routerTable
routerTable
and if i redirect insecure connections to https:// from the application itself, it gets redirected back to http:// indefinitely(until the browser drops out).
Am i missing something here?
The text was updated successfully, but these errors were encountered: