• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Prevent non-www https connections

M

MoritzCH

New Pleskian
Good morning,


I am using Plesk for a week now and it's really nice but there is something I can't get working.
Recently I bought an SSL certificate for my server hostname I am using for Plesk (let's say it is "www.DOMAIN.com")
What I want to do is to redirect all traffic for this domain to the Plesk Panel Login on Port 8443 (including the www). I already applied this Nginx directive:

return 301 https://www.DOMAIN.com:8443/;

so if you want to open the "non-https" site you will be redirected. Unfortunately if someone uses "https://DOMAIN.com:8443" he won't be redirected and gets this ugly certificate error because my certificate is only valid for "www.DOMAIN.com"
Is there a way around this or do I have to buy another SSL certificate?

My setup:
Apache
Nginx (reverse proxy)

Thank you in advance
Moritz
 
Hi MoritzCH,

for apache ( this can be as well an additional directive at your webserver - settings! ), please use at ".htaccess" :
Code: 
<IfModule mod_rewrite.c>
  RewriteEngine On
  RewriteCond %{HTTP_HOST} ^domain.com/$ [OR]
  RewriteCond %{HTTP_HOST} ^www.domain.com/$
  RewriteRule (.*)$ https://www.domain.com:8443/$1 [R=301,L]
</IfModule>

For NGINX ( this can be an additional directive over your webserver - settings! ), please use:
Code: 
    if ($http_host ~ "^domain.com/$"){
        set $rule_0 1;
    }
    if ($http_host ~ "^www.domain.com/$"){
        set $rule_0 1;
    }
    if ($rule_0 = "1"){
        rewrite /(.*)$ https://www.domain.com:8443/$1 permanent;
    }
 
Hi UFHH01,

tried both seperately but they are not working (or I am doing something wrong)
Read some post and I am not sure if you can rewrite https urls
 
Hi,

just read a few threads where some people said that rewriting a HTTPS URL is not possible and will not be processed by the browser. Whatever, I created the .htaccess file, changed the DOMAIN.COM to the right one and nothing happens.
I did try the Nginx rewrite as well without success. This is why I am asking :)
 
Hi MoritzCH,

it depends on your very own webserver settings, if you allow "www.domain.com" or only "domain.com", or both. Please check your webserver settings for it ( Hosting - settings - preferred domain ). If you choosed "none" or "domain.com", then your visitors are able to open the URL without "www", where you have a missing certificate.
You are not redirecting HTTPS sites ( from domain to domain ), you are just redirecting from HTTP to HTTPS with the settings above. Please keep that in mind, when reading ( strange ) posts.

If you experience issues with your browser, please be aware of caching and browser history. You could check if the desired changes apply, either by the usage of another browser, or delete all your browsers history and depending cookies, close your browser and re-open it again to test the new settings.
An alternative is always to ask a friend, who never visited the URL to test it with his computer and connection, because some router or/and internet provider may keep as well a history for you, to reduce traffic.
 
Good morning UFHH01,

but this is exactly my problem. I choosed the "www" as preferred domain and you can still open a "non-www" domain if you specify a port (like 8443 for Plesk).
I also tried to open the page with my tablet (internet connection = mobile network) but there I have the same problem. Did a server restart, cleared the cache, no success at all.

It's more than like that the "error" is on my site but it's not easy to figure out. Gonna check all my settings, maybe that will help

Thank you for your patience and your help!
 
Hi MoritzCH,

again, please check your "Hosting settings" for the desired domain, because you might have configured the domain with the usage "none" or "domain.com" during the installation. Plesk will automatically add the lines
Code: 
<IfModule mod_rewrite.c>
            RewriteEngine On
            RewriteCond %{HTTP_HOST} ^example.com$ [NC]
            RewriteRule ^(.*)$ https://www.example.com$1 [L,R=301]
        </IfModule>
... to the depending configuration - file located at "/var/www/vhosts/system/example.com/conf/httpd.conf" ( or "httpd_ip_default.conf", if the domain is the standard domain for the choosen IP ), which is pretty much the same, as my suggestion for apache.
For NGINX, Plesk will add
Code: 
    if ($host ~* ^example.com$) {
        rewrite ^(.*)$ https://www.example.com$1 permanent;
    }
at "/var/www/vhosts/system/example.com/conf/nginx.conf" ( or "/var/www/vhosts/system/example.com/conf/nginx_ip_default.conf", if the domain is the standard domain for the choosen IP ), which is again pretty much the same as my suggestion for your additional directive settings over the Plesk Control Panel ( I hope you found this 3 text - boxes ?!? ).

Please check not only your additional directive settings over your Plesk Control Panel, but as well the mentioned configuration files on your server. If Plesk didn't already performed the command "/usr/local/psa/admin/sbin/httpdmng ----reconfigure-domain example.com" by itself, when you added the mentioned suggestions, please check, that the desired code is located inside the files "vhost.conf" and "vhost_ssl.conf" for apache and for nginx at "vhost_nginx.conf" ( all three should be existent with your entries at "/var/www/vhosts/system/example.com/conf/*" ), then you might execute the command:

/usr/local/psa/admin/sbin/httpdmng --reconfigure-all

... to reconfigure your server manually with the new configuration.
 
You must log in or register to reply here.

Similar threads

O
Input Correct http to https redirect between www and non-www domains
Replies
0
Views
757
ondrejvaroscak
O
S
Question Redirect non-www domain to https
Replies
2
Views
646
WebHostingAce
WebHostingAce
L
Issue Get WWW and HTTPS Redirects working together for HSTS Preload
Replies
1
Views
851
Sebahat.hadzhi
Sebahat.hadzhi
D
Issue Lets Encrypt Not Successful over port 80
Replies
8
Views
3K
Daiv
D
C
Question Why does the webserver try to serve from /var/www/vhosts/default/htdocs?
Replies
5
Views
694
Ceriana
C
Back
Top