1.具体方法是采用rewrite方式,在nginx的配置文件前添加80端口的强制跳转:
server{ listen 80; server_name test.orcy.net; #http强制跳转https rewrite ^(.*)$ https://$host$1 permanent; }
2.完整的配置文件如下:
server{ listen 80; server_name test.orcy.net; #http强制跳转https rewrite ^(.*)$ https://$host$1 permanent; } server { listen 443 ssl; server_name test.orcy.net; #charset koi8-r; #access_log logs/host.access.log main; access_log logs/test.orcy.net-ssl.log main; error_log logs/test.orcy.net-ssl.error.log; location / { root /srv/www/html; index index.php index.html index.htm; } ssl_certificate cert/XXXX.pem; #将domain name.pem替换成您证书的文件名 ssl_certificate_key cert/XXXX.key; #将domain name.key替换成您证书的密钥文件名 ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; #使用此加密套 ssl_protocols TLSv1 TLSv1.1 TLSv1.2; #使用该协议进行配置 ssl_prefer_server_ciphers on; location ~ \.php$ { root /srv/www/html; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } error_page 404 /404.html; location = /404.html { root html; } # redirect server error pages to the static page /50x.html # error_page 500 502 503 504 /50x.html; location = /50x.html { root html; } }
3.如果是非默认80/443端口的http强制跳转https该如何设置呢?
传送门>>《Nginx非80/443端口的http强制跳转https》
声明:本站所有文章,如无特殊说明或标注,均为本站原创发布。任何个人或组织,在未征得本站同意时,禁止复制、盗用、采集、发布本站内容到任何网站、书籍等各类媒体平台。如若本站内容侵犯了原著者的合法权益,可联系我们进行处理。
评论(0)