I was following the guide on https://www.digitalocean.com/community/tutorials/how-to-install-an-ssl-certificate-from-a-commercial-certificate-authority and it works up to the point where I can get SSL working if I actively go to https, but anyone who goes to http is stuck there.

I've tried:

redirect rules
RedirectMatch permanent /(.*) https://www.example.com/$1
Adding those same things to 443

I've checked other threads like https://webmasters.stackexchange.com/questions/28875/redirect-permanent-and-https and I think I'm officially out of answers.

<VirtualHost *:80>
    ServerName example.com
    Redirect / https://example.com/
</VirtualHost>

<VirtualHost *:443>
        ServerName example.com
        ServerAlias www.example.com turnovers.example.com www.turnovers.example.com example.com.kjr.local

        DocumentRoot /var/www/sales/sales-git
        CustomLog /var/www/sales/logs/access_log combined
        ErrorLog /var/www/sales/logs/error.log

        SSLEngine On
        SSLCertificateFile /home/user/example.com.crt
        SSLcertificateKeyFile /home/user/example.com.key
        SSLCertificateChainFile /home/user/intermediate.crt

        <Directory "/var/www/sales/sales-git/">
                Options -Indexes +FollowSymLinks
                AllowOverride All
                Order allow,deny
                Allow from all
        </Directory>

        SetEnvIfNoCase Host ^turnovers.example.com$ ok
        SetEnvIfNoCase Host ^example.com$ ok
        SetEnvIfNoCase Host ^www.example.com$ ok

        <Location />
                Order Deny,Allow
                Deny from all
                Allow from env=ok
        </Location>
</VirtualHost>

Any help is welcome!!!