Home / server / Questions / 774110
In Process
mick
Asked: 2016-05-02 00:52:25 +0800 CST

automatic redirect in HTTPS for users which recognised CaCert authority

  • 772

I use CaCert certificates for my domains.

I want to redirect my users to HTTPS only if they recognised the CaCert authority.

What is the best way to do this ?

https certificate-authority

2 Answers

  1. I've done a little trick like this to open an image with https, and if success redirect to https version :

    <script>
function redirectHTTPS() {
  if (window.location.protocol !== 'https:') {
    window.location = 'https://' + window.location.hostname + window.location.pathname + window.location.hash;
  }
}
</script>

<img src="https://www.example.net/images/logo.png" alt="test HTTPS" onLoad="redirectHTTPS()" height="0" width="0"/>
    • 0

  2. In the http page, include a javascript file only available in https:

    <script src="https://example.net/redirect.js"></script>

    The content of the js file:

    window.location = 'https://' + window.location.hostname + window.location.pathname + window.location.hash;

    Note that this solution is faster for users who can connect to https (because it blocks dom parsing) but it will be a little slower than an image based solution for user who can't connect to https (but it will slow by just a little, the time to the handshake to fail)

    That solution works for CaCert but also if you want to redirect users who can't connect to https for others reason (old browsers without SNI, ...)

    • 0