How to force SSL / https in Express.js

by

Just in case you’re hosting on Heroku and just want to redirect to HTTPS regardless of port, here’s the middleware solution we’re using.

It doesn’t bother to redirect if you’re developing locally.

function requireHTTPS(req, res, next) {
  // The 'x-forwarded-proto' check is for Heroku
  if (!req.secure && req.get('x-forwarded-proto') !== 'https' && process.env.NODE_ENV !== "development") {
    return res.redirect('https://' + req.get('host') + req.url);
  }
  next();
}

You can use it with Express (2.x and 4.x) like so:

app.use(requireHTTPS);

More Related Contents:

  1. Enabling HTTPS on express.js
  2. Automatic HTTPS connection/redirect with node.js/express
  3. Heroku NodeJS http to https ssl forced redirect
  4. Redirecting to previous page after authentication in node.js using passport.js
  5. Node.js with Express: how to redirect a POST request
  6. How to create .pem files for https web server
  7. Nodejs HTTP and HTTPS over same port
  8. How do I use a self signed certificate for a HTTPS Node.js server?
  9. How do I use the node.js request module to make an SSL call with my own certificate?
  10. static files with express.js
  11. How do I redirect in expressjs while passing some context?
  12. Nodejs – Redirect url
  13. Ignore invalid self-signed ssl certificate in node.js with https.request?
  14. Extend Express Request object using Typescript
  15. res.sendFile absolute path
  16. Avoid “current URL string parser is deprecated” warning by setting useNewUrlParser to true
  17. IIS, Node.js, and Web Application with IISNode not configured right with Virtual Directory
  18. express logging response body
  19. What is the parameter “next” used for in Express?
  20. First Heroku deploy failed `error code=H10`
  21. Force HTTPS for specific URL
  22. Force SSL/HTTPS with mod_rewrite [duplicate]
  23. NodeJS / Express: what is “app.use”?
  24. HTML to PDF with Node.js
  25. Hooking up express.js with Angular CLI in dev environment
  26. How to specify HTTP error code using Express.js?
  27. Express routes parameter conditions
  28. Passing route control with optional parameter after root in express?
  29. Client certificate validation on server side, DEPTH_ZERO_SELF_SIGNED_CERT error
  30. Angular 9 SSR 404 Not Found Page with Status code

Leave a Comment