Change Request: Force SSL for /keys and /verify

Tue Nov 17 14:18:10 UTC 2009

On Mon, Nov 16, 2009 at 02:50:26PM -0500, Ricky Zhou wrote:
> Thanks to Sijis for pointing this need out.
> 
> diff --git a/modules/fedora-web/files/redirects.conf b/modules/fedora-web/files/redirects.conf
> index a88613f..a679ebd 100644
> --- a/modules/fedora-web/files/redirects.conf
> +++ b/modules/fedora-web/files/redirects.conf
> @@ -9,3 +9,8 @@ RewriteRule ^/([^/]+/)?legal/trademarks/guidelines$ http://fedoraproject.org/wik
> 
>  # Comment this out when there is a prerelease available
>  #RewriteRule  ^(/.*)?/get-prerelease$ $1/get-fedora [R=302]
> +
> +RewriteEngine On
> +RewriteCond %{HTTPS} off
> +RewriteRule ^/([^/]+/)?(keys|verify)$ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
> +
> 
+1

-Toshio
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091117/3e6e7186/attachment.sig>