Question
Question
How do you redirect an HTTP request with a nonexistent subdirectory to HTTPS 404?
I’m having a similar issue as the user here. I’m running an Ubuntu 14.04.4 droplet and using Apache2 for the webserver.
My current redirect setup goes like this:
- http://example.com –> https://example.com
works - http://doesnt-exist.example.com –> https://example.com
works - https://example.com/doesnt-exist –> https://example.com/404
works - http://example.com/doesnt-exist –> example.comdoesnt-exist
ERROR
The last one is where the problem is. For some reason, my permanent HTTP to HTTPS redirect fails if a subdirectory or file is also part of the URL. On Chrome, I get redirected to a ERR_CONNECTION_REFUSED page for example.comdoesnt-exist (obviously not a real domain) over HTTPS. For that last case, I want to have it arrive at my catch-all 404 page over HTTPS.
Here’s my 000-default.conf file (I’m not using an .htaccess file):
<VirtualHost *:80>
ServerName example.com
Redirect permanent / https://example.com
</VirtualHost>
<VirtualHost *:443>
ServerName example.com
ServerAdmin webmaster@localhost
DocumentRoot /var/www/html
SSLEngine on
SSLCertificateFile <location here>
SSLCertificateKeyFile <location here>
SSLCACertificateFile <location here>
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
ErrorDocument 404 /404.html
ErrorDocument 400 /400.html
</VirtualHost>
<Directory /var/www/>
Options Indexes FollowSymLinks MultiViews
AllowOverride All
Order allow,deny
allow from all
</Directory>
I’m a newbie at this so there’s probably an embarassing mistake in here
I greatly appreciate any help!
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
×
I should clarify, I tried @sierracircle’s solution (shown below) from the linked thread after setting up mod rewrite but didn’t observe any changes after restarting Apache.
Not sure how your SSL is set up, but since I started using LetsEncrypt I no longer have any issues at all with redirects…it sets it all up for you when you install your SSL certs.
Start with your website as non-ssl, install LetsEncrypt, run it as root and near the end it will ask if you want your site to be all HTTPS or both HTTP and HTTPS. I choose “Only HTTPS” and it sets up everything for me. Restart Apache and whamo! works.
Here are my notes for installing LetsEncrypt:
once that is done, SSL your sites like so:
then
and add this to your root’s crontab:
Thanks a lot! I’ve heard of Let’s Encrypt before - I’m definitely going with them once this cert expires.
Anyway, luckily I fiddled with this some more and found a simple solution. For anyone looking at this in the future:
Makes a lot of sense, really stupid that I overlooked this.