Apache with mixed HTTP only and HTTPS virtualhosts

https debian virtualhost apache-2.4

Of course redirecting from https to http is possible with:

<VirtualHost *:443>
    ServerName www.example.com
    ServerAlias example.com

    SSLEngine on
    # All other SSL settings, just like in your working TLS VirtualHost.

    Redirect / http://www.example.com/
</VirtualHost>

You just have to understand that:

  • This will first give a warning "Your connection is not private", because the hostname in HTTP Host: header doesn't match the your certificate, i.e. NET::ERR_CERT_COMMON_NAME_INVALID. Of course this is something you already get.
  • Normal users don't write http:// or https:// in the address bar, just the www.example.com, which gets by default completed with http://. (Actually, some users don't even know about the address bar, but uses Google search instead, then picking the first result.)

I'd rather create a catch-all virtualhost with some default page explaining that there is no TLS site configured for this domain. Make sure this comes before the working virtualhost by using a filename that gets first on apache2/sites-enabled, like 001-tls, and use <VirtualHost _default_:443>.

Related

How do i install AD FS management tools on windows 10 pro to remotely manage my AD FS server
VMWare old snapshot consolidation
Server Restarts and Respective Orders
Slow AD group sync
Apache Server Joomla files in /var/www/
Why does my apache refuse the "Content-Security-Policy" headers?
Using FilesMatch to increase security
Some advise needed on how to setup reverse PTR on web and mail server
Apache segfault glibc segfault
Where I config CNAME in VPS Server without Cpanel
How do I change physical path of virtual directory in IIS6 through command line?
wget works with company proxy but apt-get and dpkg doesn't