http 和 https 重定向和 HSTS 配置
通用重定向到 https :
# Enable Rewrite engine
RewriteEngine on
# Check if URL does not contain https
RewriteCond %{HTTPS} off [NC]
# If condition is true, redirect to https
RewriteRule (.*) https://%{SERVER_NAME}/$1 [R=301,L]
通用重定向到 http :
# Enable Rewrite engine
RewriteEngine on
# Check if URL does contain https
RewriteCond %{HTTPS} on [NC]
# If condition is true, redirect to http
RewriteRule (.*) http://%{SERVER_NAME}/$1 [R=301,L]
強制 HTTPS 連線(HSTS):
<IfModule mod_headers.c>
Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains"
</IfModule>
其中,如果 HSTS 僅應用於基本域,或者應用於具有上述配置的域,則可以刪除 includeSubDomains
選項。