Force Ruby on Rails app to load on HTTPS version

Question

I have an HTTP and HTTPS version of my Ruby on Rails running, and if someone accesses through the HTTP one, I want to automatically reload the HTTPS version.

I have done this before on Apache with .httaccess. How can I do it on Rails?

Thanks

Try putting `config.force_ssl = true` in `config/application.rb`. — Pavan, Aug 25 '15 at 15:51

score 3 · Accepted Answer · answered Aug 25 '15 at 15:53

3

In your production.rb file (or whichever env you are forcing ssl) add

config.force_ssl = true

answered Aug 25 '15 at 15:53

dinomix

956
4
5

score 2 · Answer 2 · answered Aug 25 '15 at 15:58

2

You can also achieve that by:

class ApplicationController < ActionController::Base
  force_ssl if: :ssl_enabled?

  private

  def ssl_enabled?
    %w(staging production).include?(Rails.env)
  end
end

answered Aug 25 '15 at 15:58

markets

6,709
1
38
48

score 1 · Answer 3 · edited May 23 '17 at 11:43

1

You can achieve it by putting the below code in config/applcation.rb

#config/application.rb
config.force_ssl = true

Check this blog and this SO post for more info.

edited May 23 '17 at 11:43

Community

1
1

answered Aug 25 '15 at 15:54

Pavan

33,316
7
50
76

Force Ruby on Rails app to load on HTTPS version

3 Answers3