Google Chrome redirecting localhost to https

by

I believe this is caused by HSTS – see http://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security

If you have (developed) any other localhost sites which send a HSTS header …

e.g. Strict-Transport-Security: max-age=31536000; includeSubDomains; preload

… then depending on the value of max-age, future requests to localhost will be required to be served over HTTPS.

To get around this, I did the following.

  • In the Chrome address bar type the following:

    chrome://net-internals/#hsts

  • At the very bottom of a page there is QUERY domain textbox – verify that localhost is known to the browser. If it says “Not found” then this is not the answer you are looking for.
  • If it is, DELETE the localhost domain using the textbox above
  • Your site should now work using plain old HTTP

This is not a permanent solution, but will at least get it working between projects. If anyone knows how to permanently exclude localhost from the HSTS list please let me know 🙂

UPDATE – November 2017

Chrome has recently moved this setting to sit under the section

Delete domain security policies

enter image description here

UPDATE – December 2017

If you are using .dev domain see other answers below as Chrome (and others) force HTTPS via preloaded HSTS.

More Related Contents:

  1. Can Google Chrome open local links?
  2. How to change chrome packaged app id Or Why do we need key field in the manifest.json?
  3. chrome extension mv3 – Modularize service worker js file
  4. Detect Chrome extension first run / update
  5. Chrome stalls when making multiple requests to same resource?
  6. Disable developer mode extensions pop up in Chrome
  7. Modifying the built-in newtab page
  8. Chrome Extension Content Script on https://chrome.google.com/webstore/
  9. Is it possible to run Google Chrome in headless mode with extensions?
  10. Using ECMAScript 6
  11. How to download a CRX file from the Chrome web store for a given ID? [closed]
  12. Getting around Chrome’s Malicious File Warning
  13. How can I enable my chrome extension in incognito mode?
  14. Send desktop notifications in Chrome or Firefox from a closed web app?
  15. Any way to start Google Chrome in headless mode?
  16. Why do browser implementations of HTTP/2 require TLS?
  17. Disable-web-security in Chrome 48+
  18. Chrome not rendering SVG referenced via element
  19. HTML 5 Video “autoplay” not automatically starting in CHROME
  20. Prevent chrome.notifications API from hiding my notification after a few seconds
  21. Non-Authoritative-Reason header field [HTTP]
  22. How does Netflix prevent users from taking screenshots of chrome browser?
  23. Chrome developer tools workspace mappings
  24. CSS3 – How to style the selected text in textareas and inputs in Chrome?
  25. Chrome displays different object contents on expand
  26. Run script each time Chrome extension icon clicked
  27. Chrome’s remote debugging (USB debugging) not working for Samsung Galaxy S3 running android 4.3
  28. Chrome Console SameSite Cookie Attribute Warning
  29. How can i temporarily disable websocket in Google Chrome?
  30. Chrome video autoplay

Leave a Comment