A critical vulnerability was discovered in React Server Components (Next.js). Our systems remain protected but we advise to update packages to newest version. Learn More.
AI OnAI Off
Is it possible to force HTTPS within the CMS?
This is code, but only in web.config.
You can put this in the system.webserver inside the location /EPiServer and it will redirect it to https for that url and all below it:
<rewrite>
<rules>
<clear />
<rule name="Redirect to https" stopProcessing="true">
<match url="(.*)" />
<conditions>
<add input="{HTTPS}" pattern="off" ignoreCase="true" />
</conditions>
<action type="Redirect" url="https://{HTTP_HOST}{REQUEST_URI}" redirectType="Permanent" appendQueryString="false" />
</rule>
</rules>
</rewrite>
Dec 05, 2014 12:17
This topic was created over six months ago and has been resolved. If you have a similar question, please create a new topic and refer to this one.
Hello,
We have HTTPS set up and working on our site. We force HTTPS on some pages by redirecting from HTTP to HTTPS in code.
Is there any way to configure EPiServer to force HTTPS in the CMS in a similar way, so that when the user goes to the EPiServer login page on HTTP it automatically switches over to HTTPS?
Thanks