commit | 13c0aa635a2d4543be5fb1d5f5fd046bf194ad68 | [log] [tgz] |
---|---|---|
author | Dmitri Shuralyov <dmitshur@golang.org> | Fri Oct 30 16:13:14 2020 -0400 |
committer | Dmitri Shuralyov <dmitshur@golang.org> | Fri Nov 06 23:26:50 2020 +0000 |
tree | e80eb5e77b7be8947b0774aaf97f3324f2e85f7d | |
parent | 3fc9dd7cb6f9a4c0eb233a6a69d80d11156d567b [diff] |
[x/blog] blog: redirect HTTP traffic to HTTPS Set secure to always on all handlers so that HTTP traffic is redirected to an HTTPS URL with the same path. References: • https://cloud.google.com/appengine/docs/standard/go/application-security#https_requests • https://cloud.google.com/appengine/docs/standard/go/config/appref#handlers_secure For golang/go#42281. Change-Id: I2b86928d51d4e692d29ded1b244f3866c9b087e9 Reviewed-on: https://go-review.googlesource.com/c/blog/+/266737 Trust: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Alexander Rakoczy <alex@golang.org> Reviewed-by: Carlos Amedee <carlos@golang.org> X-Blog-Commit: da7da4462ca59a3ef64f17cd35d619fcf1d3c879
diff --git a/blog/app.yaml b/blog/app.yaml index 9e17b15..45a26b9 100644 --- a/blog/app.yaml +++ b/blog/app.yaml
@@ -15,9 +15,10 @@ default_expiration: "7d" +handlers: + # Keep these static file handlers in sync with blog.go. # They're here for improved latency across global regions. -handlers: - url: /favicon.ico static_files: static/favicon.ico upload: static/favicon.ico @@ -31,3 +32,9 @@ http_headers: Content-Type: application/font-woff secure: always + +# This is here to redirect all HTTP traffic to an HTTPS URL +# with the same path. +- url: /.* + script: auto + secure: always