Change Request: Force SSL for /keys and /verify

Mon Nov 16 19:50:26 UTC 2009

Thanks to Sijis for pointing this need out.

diff --git a/modules/fedora-web/files/redirects.conf b/modules/fedora-web/files/redirects.conf
index a88613f..a679ebd 100644
--- a/modules/fedora-web/files/redirects.conf
+++ b/modules/fedora-web/files/redirects.conf
@@ -9,3 +9,8 @@ RewriteRule ^/([^/]+/)?legal/trademarks/guidelines$ http://fedoraproject.org/wik

 # Comment this out when there is a prerelease available
 #RewriteRule  ^(/.*)?/get-prerelease$ $1/get-fedora [R=302]
+
+RewriteEngine On
+RewriteCond %{HTTPS} off
+RewriteRule ^/([^/]+/)?(keys|verify)$ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
+

Thanks,
Ricky
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
Url : http://lists.fedoraproject.org/pipermail/infrastructure/attachments/20091116/6e1662ca/attachment.bin 
