Hello all,
I'm validating my websites using the tool on https://internet.nl.
I have 3 domains:
- normalsite.nl (Normal domain)
- aliassite.nl (Pointer domain that behaves as alias for normalsite.nl)
- redirectsite.nl (Pointer that redirect the browser to normalsite.nl)
However, I fail the scan on some tests.
The fact is that redirecting doesn't work as I thought.
What I thought that would happen:
http://redirectsite.nl => https://redirectsite.nl (Secure) => https://normalsite.nl (Secure)
But what actually happens:
http://redirectsite.nl => http://normalsite.nl => https://normalsite.nl (Secure)
AND
https://redirectsite.nl (Secure) => https://normalsite.nl (Secure)
This will cause that I get the following error:
- HTTPS-redirect (because the domain is not first directing to its HTTPS version, but first to the HTTP version of normalsite.nl)
How to fix this?
Also, is it possible to set HSTS for a redirect pointer?
Thanks in advance
Ben
I'm validating my websites using the tool on https://internet.nl.
I have 3 domains:
- normalsite.nl (Normal domain)
- aliassite.nl (Pointer domain that behaves as alias for normalsite.nl)
- redirectsite.nl (Pointer that redirect the browser to normalsite.nl)
However, I fail the scan on some tests.
The fact is that redirecting doesn't work as I thought.
What I thought that would happen:
http://redirectsite.nl => https://redirectsite.nl (Secure) => https://normalsite.nl (Secure)
But what actually happens:
http://redirectsite.nl => http://normalsite.nl => https://normalsite.nl (Secure)
AND
https://redirectsite.nl (Secure) => https://normalsite.nl (Secure)
This will cause that I get the following error:
- HTTPS-redirect (because the domain is not first directing to its HTTPS version, but first to the HTTP version of normalsite.nl)
How to fix this?
Also, is it possible to set HSTS for a redirect pointer?
Thanks in advance
Ben