Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
U
U
User0232014-11-20 16:29:37
linux
User023, 2014-11-20 16:29:37

How to set up a redirect from www.examle.ru to examle.ru so that the ssl certificate does not swear?

There is a domain example.ru. Bought an ssl certificate for it. and if you open https://examle.ru, then everything works ok. Problems with www.examle.ru. From www.example.ru there is a redirect to examle.ru. And when you open the https://www.examle.ru
page , the browser swears that the certificate is not valid, then you click continue and the site opens normally without www. And how to make it so that first there is a redirect from www.examle.ru to examle.ru, and only then to https://examle.ru, so that the browser does not swear at the certificate?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

3 answer(s)
Report
S
Stanislav Chernov, 2014-11-20
@uinx

answer here:
stackoverflow.com/questions/10294481/how-to-redire...

#
# Redirect all www to non-www
#
server {
    server_name          www.example.com;
    ssl_certificate      ssl/example.com/crt;
    ssl_certificate_key  ssl/example.com/key;
    listen               *:80;
    listen               *:443 ssl spdy;
    listen               [::]:80 ipv6only=on;
    listen               [::]:443 ssl spdy ipv6only=on;

    return 301 https://example.com$request_uri;
}

#
# Redirect all non-encrypted to encrypted
#
server {
    server_name          example.com;
    listen               *:80;
    listen               [::]:80;

    return 301 https://example.com$request_uri;
}

#
# There we go!
#
server {
    server_name          example.com;
    ssl_certificate      ssl/example.com/crt;
    ssl_certificate_key  ssl/example.com/key;
    listen               *:443 ssl spdy;
    listen               [::]:443 ssl spdy;

    # rest goes here...
}

Report
P
Puma Thailand, 2014-11-20
@opium

You have a certificate for only one domain without www.
Usually, a certificate is issued for two domains with and without www, but the request must be sent to the domain with www, and you sent it without www.
reissue the certificate.

Report
V
Vlad Zhivotnev, 2014-11-21
@inkvizitor68sl

_Before_ connecting to a host, the certificate is checked. Prior to the connection, the browser does not know that a redirect will be given there. Only after an encrypted connection is established (well, that is, all that canoe with certificate verification), the browser makes an http request (and receives a 301 in your case).
Accordingly, both names must be in your certificate.
The road to you is in StartSSL or in namecheap for geotrust - they give out to both names (www.domain + domain).

Similar questions
B
bituke2021-05-26 10:08:52
How to quickly deploy someone else's django project? 4Reply
E
elementalist2021-06-02 17:15:04
2 subnets on Mikrotik - LAN and video surveillance. How to get access from LAN to the DVR? 3Reply
G
Godless2016-11-14 15:26:30
Admin / web resource. Is there a ready solution? 4Reply
C
crossfire2014-11-17 01:06:38
How to understand nginx logs on the server (sent by logwatch)? What is the type of attack? 2Reply
T
T_y_l_e_r2016-11-15 13:27:25
What does this iptables rule do? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question