How can I force users to access my page over HTTPS instead of HTTP?

https ssl php apache

The way I've done it before is basically like what you wrote, but doesn't have any hardcoded values:

if($_SERVER["HTTPS"] != "on")
{
    header("Location: https://" . $_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]);
    exit();
}

You could do it with a directive and mod_rewrite on Apache:

<Location /buyCrap.php>
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
</Location>

You could make the Location smarter over time using regular expressions if you want.

Related

How do I use the new computeIfAbsent function?
Visual Studio window which shows list of methods
React onClick - pass event with parameter
Best way to create an empty map in Java
What is the default access modifier in Java? [duplicate]
How do I get the opposite (negation) of a Boolean in Python?
MySQL: ignore errors when importing?
Is it possible to have empty RequestParam values use the defaultValue?
How can I get a collection of keys in a JavaScript dictionary? [duplicate]
Resharper Ctrl-T mapping lost
Mapping a function on the values of a map in Clojure
How can I refresh the list of remote branches in my Visual Studio 2017 Team Explorer panel?