tags:

views:

33

answers:

2
Q: 

ASP.NET HTTP to HTTPS redirect with www prefix

I am using this simple code to redirect http to https on my billing landing page:

if (!Request.IsSecureConnection)
{
    // send user to SSL 
    string serverName =HttpUtility.UrlEncode(Request.ServerVariables["SERVER_NAME"]);        
    string filePath = Request.FilePath;
    Response.Redirect("https://" + serverName + filePath);
}

I need it to also check for and add www to the url if it is not already in the url. What do I need to add to this code to accomplish this?

A: 

The following code assumes that if the server name doesn't start with a "www." then the remedy is to prepend whatever the current servername is with "www."

if (!Request.IsSecureConnection)
{
    // send user to SSL 
    string serverName = Request.ServerVariables["SERVER_NAME"];
    if (!serverName.ToLowerCaseInvariant().StartsWith("www.")) {
       serverName = string.Format("www.{0}", serverName);
    }
    string filePath = Request.FilePath;
    Response.Redirect("https://" + serverName + filePath);
}

Personally, I don't like this method of doing things. I usually create a setting named something like SecureDomain and then use logic to verify whether the current ServerName matches that. Something like this.

// Suppose the value of GlobalAppSettings.SecureDomain
// is something like www.securestore.com

if (!Request.IsSecureConnection)
{
    // send user to SSL 
    string serverName = Request.ServerVariables["SERVER_NAME"];
    if (string.Compare(serverName, GlobalAppSettings.SecureDomain, true) != 0) {
       serverName = GlobalAppSettings.SecureDomain;
    }
    string filePath = Request.FilePath;
    Response.Redirect("https://" + serverName + filePath);
}
jessegavin  2010-09-29 16:50:01
Hey Jesse, Thanks very much for your assistance. I'm confident that your method would work well, also, but the other response was very simple to just insert inside of what I already had. - Jesse(2)
Prismatics  2010-09-29 17:16:08
A: 

Like this:

if (!serverName.StartsWith("www."))
    serverName = "www." + serverName;
SLaks  2010-09-29 16:50:42
Your example doesn't take case into account. What if the servername was WWW.domain.com, then the result would be www.WWW.domain.com.
jessegavin  2010-09-29 17:00:04
Whoa! That was simple! That worked great, thanks very much.
Prismatics  2010-09-29 17:04:11
@jessegavin at first glance, I thought that would be the case, but it doesn't duplicate the www.
Prismatics  2010-09-29 17:05:02
@Prismatics You're wrong.
jessegavin  2010-09-29 17:33:48
@jessegavin: Domain names are normalized to lowercase. However, you're right; I should have passed `, StringComparison.OrdinalIgnoreCase)`.
SLaks  2010-09-29 17:51:37
Phooey. You're right. Thanks @SLaks. Sorry for accusing you of being wrong @Prismatics.
jessegavin  2010-09-29 18:04:22

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?