"non-www to www" and "https" rewrite rule in web.config but not localhost ASP.NET MVC

Question

I have the following rewrite rule in the web.config of my ASP.NET MVC 5 project:

<rule name="Redirect example.com to www.example.com and enforce https" enabled="true" stopProcessing="true">
    <match url="(.*)" />
    <conditions logicalGrouping="MatchAny">
        <add input="{HTTP_HOST}" pattern="^[^www]" />
        <add input="{HTTPS}" pattern="off" />
    </conditions>
    <action type="Redirect" url="https://www.example.com/{R:1}" appendQueryString="true" redirectType="Permanent" />
</rule>

The rule redirects non-www to www and http to https (so something like http://example.com/hey will redirect to https://www.example.com/hey) and works fine. It however also works on localhost, and I can't seem to be able to work around it — I've tried negation rules and regular expressions containing | but can't seem to be able to find the correct combinations. Am I approaching this the wrong way?

dotnetom · Accepted Answer · 2016-04-19T05:12:26.533

In conditions block you can use attribute negate="true". If this attribute is set and condition is matched, then rewrite rule is not applied.

The description of negate attribute from IIS.net:

A pattern can be negated by using the negate attribute of the element. When this attribute is used, the rule action is performed only if the current URL does not match the specified pattern.

Since you are using MatchAny, adding additional attribute will not match, because at least one of the conditions will be met anyway. I recommend using 2 specific rewrite rules with logicalGrouping="MatchAll", where each one is responsible just for single case:

<rule name="enforce https" enabled="true" stopProcessing="true">
    <match url="(.*)" />
    <conditions logicalGrouping="MatchAll">
        <add input="{HTTPS}" pattern="off" />
        <add input="{HTTP_HOST}" matchType="Pattern" 
              pattern="^localhost(:\d+)?$" negate="true" />
    </conditions>
    <action type="Redirect" url="https://{HTTP_HOST}/{R:1}"
          appendQueryString="true" redirectType="Permanent" />
</rule>
<rule name="Redirect example.com to www.example.com"
       enabled="true" stopProcessing="true">
    <match url="(.*)" />
    <conditions logicalGrouping="MatchAll">
        <add input="{HTTP_HOST}" pattern="^[^www]" />
        <add input="{HTTP_HOST}" matchType="Pattern" 
              pattern="^localhost(:\d+)?$" negate="true" />
    </conditions>
    <action type="Redirect" url="https://www.example.com/{R:1}"
         appendQueryString="true" redirectType="Permanent" />
</rule>

Thanks, I'm getting this in Chrome on the live site: "www.example.com redirected you too many times. `ERR_TOO_MANY_REDIRECTS`" - same in Firefox — globetrotter, Apr 19 '16 at 04:07
@globetrotter I think it was issue with `MatchAny` - see if updated answer with `MatchAll` helps — dotnetom, Apr 19 '16 at 04:18
now it works for the live site but tries to add `https` on `localhost` — globetrotter, Apr 19 '16 at 04:27
@globetrotter I updated the answer to also support port on localhost — dotnetom, Apr 19 '16 at 05:12

"non-www to www" and "https" rewrite rule in web.config but not localhost ASP.NET MVC

1 Answers1