tags:

views:

2969

answers:

2
+1  Q: 

http to https to http using mod_rewrite and IBM http server

Ok I have an apache IBM HTTP Server WAS 6.1 setup

I have my certs correctly installed and can successfully load http and https pages.

After a successful j_security_check authentication via https I want the now authorized page (and all subsequent pages) to load as http

I want this all to work with mod_rewrite because I don't want to change application code for something that really should be simple to do on the webserver.

I would think this would work but it doesn't and I fear it's because j_security_check is bypassing mod_rewrite somehow.

RewriteCond %{HTTPS} =off
RewriteCond %{THE_REQUEST} login\.jsp.*action=init [OR]
RewriteCond %{THE_REQUEST} login\.jsp.*action=submit
RewriteRule .* https://%{SERVER_NAME}%{REQUEST_URI} [R,L]     <<-- this rule is working

RewriteCond %{HTTPS} =on
RewriteCond %{THE_REQUEST} !login\.jsp.*action=init [OR]
RewriteCond %{THE_REQUEST} !login\.jsp.*action=submit
RewriteRule .* http://%{SERVER_NAME}%{REQUEST_URI} [R,L] <--- this rule is not working or the condition is not returning true

I know the [R,L] will force the executed rule to be the last rule to run on a request and redirect accordingly.

I found this little jewel after a little googleing.

mod_rewrite: My rules are ignored. Nothing is written to the rewrite log.
The most common cause of this is placing mod_rewrite directives at global scope (outside of any VirtualHost containers) but expecting the directives to apply to requests which were matched by a VirtualHost container.

In this example, the mod_rewrite configuration will be ignored for requests which are received on port 443:

    RewriteEngine On
    RewriteRule ^index.htm$ index.html

    <VirtualHost *:443>
    existing vhost directives
    </VirtualHost>

Unlike most configurable features, the mod_rewrite configuration is not inherited by default within a <VirtualHost > container. To have global mod_rewrite directives apply to a VirtualHost, add these two extra directives to the VirtualHost container:

    <VirtualHost *:443>
    existing vhost directives
    RewriteEngine On
    RewriteOptions Inherit
    </VirtualHost>

Adding the Inherit declaration to my single virtualhost declaration that points to the machine ip and port 443 did NOT help one bit.

Now I know that my app server communicates on 9080 and 9443 respectively but I can't find a single virtualhost in the web server httpd.conf

I did some testing with different rewrite rules while not authenticated and saw that my mod rewrite code worked.. So how do I make websphere use mod rewrite after authentication? It's like the web server is only used for unauthenticated requests and after that some blackbox container serves up everything somehow.

A: 

Wild guess: should the second logical OR be an AND (i.e. no [OR] and the RewriteCond defaults to AND)?

RewriteCond %{THE_REQUEST} !login\.jsp.*action=init
RewriteCond %{THE_REQUEST} !login\.jsp.*action=submit
Maglob  2008-10-30 21:44:16
A: 

This is the solution for http to https to http

You have to put the condition and the rewrite rule in the virtual host like the arcticle said but for some reason inheritance didn't want to work.

RewriteEngine on
RewriteCond %{HTTPS} !=on
RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /path/login\.jsp\ HTTP/1\.1
RewriteRule .* https://%{SERVER_NAME}%{REQUEST_URI} [R,L]

   <VirtualHost 000.000.000.000:443>
    ServerName servername
    ServerAlias url.com machinename
    DocumentRoot d:/ibmhttpserver61/htdocs/en_US
    ErrorLog d:/ibmhttpserver61/logs/secerr.log
    TransferLog d:/ibmhttpserver61/logs/sectrans.log
    SSLEnable
    Keyfile d:/ibmhttpserver61/ssl/ctxroot.kdb
    SSLV2Timeout 100
    SSLV3Timeout 1000 

    RewriteEngine On
    RewriteCond %{REQUEST_URI} /path/secure/index.jsf
    RewriteRule ^(.*)$ http://url/path/secure/index.jsf [R,L]    

    </VirtualHost>
mugafuga  2008-10-31 14:44:12

related questions

How to use apache's mod_rewrite rewriterule without changing relative paths
Do you have to restart apache to make re-write rules in the .htaccess take effect?
Apache Redirect only when entering a password
Apache mod_rewrite RewriteRule question
Apache Mod-Rewrite Primers?
apache mod_rewrite one rule for any number of possibilities
Getting IIS6 to play nice with WordPress Pretty Permalinks
How do I use mod_rewrite to change the path and filename of a URL
Mod-rewrites on apache: change all URLs
What are the bare basics you put down when you start a new PHP project?
How to rewrite an URL on a JBoss server?
.htaccess mod rewrite 301-redirect
How to make a web app appear at the root of the site?
How do I use .htaccess to redirect to a URL containing HTTP_HOST?
Using Apache mod_rewrite to remove sub-directories from URL
mod_rewrite equivalent for IIS 7.0
Apache rewrite based on subdomain
Apache - how do I build individual and/or all modules as shared modules
Any negative impacts when using Mod-Rewrite?
mod_rewrite rule to redirect all requests except for one specific path
mod_rewrite to alias one file suffix type to another
Mod-Rewrite loading files behind the DocumentRoot
Using mod_rewrite to Mimic SSL Virtual Hosts?
Block user access to internals of a site using HTTP_REFERER
.htaccess directives to *not* redirect certain URLs