Force SSL for Heroku apps running in EU region

2019-04-23 05:46发布

站内问答 / 后端开发
1125 2 5

I'm struggling to enforce an SSL connection for a rails app running on Heroku (EU region).

I've added the cert (inc Heroku SSL add-on) to a custom domain successfully (if I explicitly state https://..com it works perfectly)

But I want to redirect all http requests to a https connection.

For apps in the US regions this require pointing custom domain DNS records to .herokussl.com NOT .herokuapp.com. Docs: https://devcenter.heroku.com/articles/ssl-endpoint#dns-and-domain-configuration

For apps in EU regions, custom DNS records should still point to .herokuapp.com which does not appear to enforce a SSL connection by default.

Therefore, my question is: how can I make all connections to my Heroku app running in Europe be forced to run through SSL?

2条回答
Root(大扎)
2楼-- · 2019-04-23 06:07

FYI your question mentions herokussl.com which is part of the deprecated Heroku SSL Endpoint service. Heroku now recommends using the Heroku SSL service:

The SSL Endpoint add-on is only recommended if you need to support legacy browser clients which do not support SNI. Our default recommendation is to use the Heroku SSL described in this document.

Also note that appname.herokuapp.com domains are already SSL-enabled and can be accessed by using https, for example, https://appname.herokuapp.com.

查看更多
0人赞 添加讨论(0) 举报
3楼-- · 2019-04-23 06:19

production.rb

Rails.application.configure do
    config.force_ssl = true
end

This will redirect all http traffic to https

Edit: Its worth noting that this is a Rails thing rather than a heroku one.

Revision:

As this answer/question regularly gets seen and upvoted, it's also possible within a controller on a per request basis:

class AccountsController < ApplicationController
  force_ssl if: :ssl_configured?

  def ssl_configured?
    !Rails.env.development?
  end
end
查看更多
0人赞 添加讨论(0) 举报
登录 后发表回答
相关问题
查看全部
相关文章
查看全部
收藏的人(5)