trying to force a redirect to https from application controller

Question

Possible Duplicate:
Why am I getting infinite redirect loop with force_ssl in my Rails app?

I have this in my application controller:

before_filter :redirect_to_ssl!

def redirect_to_ssl!
  redirect_to "https://" + request.host + request.fullpath if !request.ssl? && Rails.env.production?
end

However, when I view my site (in production mode) with https:// it goes in a redirect loop... It appears that request.ssl? returns false even though I am using the https protocol..... Now, when I view my site, the browser does warn me that my ssl certificate can't be verified-- I am wondering if that is why request.ssl? returns false? What is a good workaround? Should I just check to see if the request.protocol == "https://" ?

score 4 · Answer 1 · answered Oct 18 '12 at 02:24

4

Don't do this in the controller.

Instead, in config/environments/production.rb (and whichever other environments you want to use SSL), do this:

config.force_ssl = true

Read more info on configuring Rails 3 to use HTTPS.

answered Oct 18 '12 at 02:24

GladstoneKeep

3,832
2
26
38

1

unfortunately this also results in a redirect loop... – patrick Oct 18 '12 at 18:36
Did you remove the redirect from your `ApplicationController`? If you have any other redirects, mind posting the code? – GladstoneKeep Oct 18 '12 at 19:13
yes I removed it from app controller... No other redirects.. The problem must lie in the fact that the SSL cert can't be verified.. – patrick Oct 18 '12 at 20:10
This did not work for me. – karlihnos Nov 03 '16 at 10:43

trying to force a redirect to https from application controller

1 Answers1