Google Chrome redirecting localhost to https
When I debug a Visual Studio project using Chrome the browser tries to redirect to the https equivalent of my web address. I do not have SSL enabled in the web project and the start URL is the http URL. When I debug using FireFox or IE I do not have this problem.
I did re-install Chrome which fixed the problem for a day. Without downloading any addons the problem happened again the next day.
What is making Chrome redirect localhost to https?
Network Inspect Shows: Request URL:data:text/html,chromewebdata Request Headers Provisional headers are shown User-Agent:Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.143 Safari/537.36
No preview and no response data in those tabs.
I believe this is caused by HSTS - see http://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security
If you have (developed) any other localhost sites which send a HSTS header ...
e.g.
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
... then depending on the value of max-age, future requests to localhost will be required to be served over HTTPS.
To get around this, I did the following.
- In the Chrome address bar type the following:
chrome://net-internals/#hsts - At the very bottom of a page there is QUERY domain textbox - verify that localhost is known to the browser. If it says "Not found" then this is not the answer you are looking for.
- If it is, DELETE the localhost domain using the textbox above
- Your site should now work using plain old HTTP
This is not a permanent solution, but will at least get it working between projects. If anyone knows how to permanently exclude localhost from the HSTS list please let me know :)
UPDATE - November 2017
Chrome has recently moved this setting to sit under the section
Delete domain security policies
UPDATE - December 2017
If you are using .dev domain see other answers below as Chrome (and others) force HTTPS via preloaded HSTS.
- I'm getting "Could not read source map for chrome-error://chromewebdata/:" When attempting to run my Flutter app on Chrome
- Available Keyboard Shortcuts for Web Applications
- Why is flexbox behaving differently in chrome vs firefox?
- How do you disable Google Chrome SafeBrowsing while using Puppeteer?
- Lighthouse PWA audit looks like it does not work in Chrome 126 (shows empty screen)
- Export Chrome Bookmarks to CSV file using PowerShell
- Why isn't localStorage persisting in Chrome?
- Google Chrome localhost | NET::ERR_CERT_AUTHORITY_INVALID
- Paused in debugger in chrome?
- CURL does not work with URLs with curly braces in parameters
- How do I view the storage of a Chrome Extension I've installed?
- Accessing `window`/DOM/HTML of the webpage from the extension
- Colors in JavaScript console
- css transform, jagged edges in chrome
- Your connection is not private NET::ERR_CERT_COMMON_NAME_INVALID
- Why do fonts appear jagged in Chrome?
- TCP server in WebExtension
- How to communicate between service work on chrome extension
- ERR_INTERNET_DISCONNECTED when Chrome console is open
- Hide scroll bar, but while still being able to scroll
- Why are images zoomed in browsers, and how to circumvent this issue?
- What does V8's ignition really do?
- 100vh height when address bar is shown - Chrome Mobile
- Why is my localhost self-signed SSL certificate suddenly invalid in Chrome?
- Cursor .svg not working in Chrome 61.0.3163.100
- What's the net::ERR_HTTP2_PROTOCOL_ERROR about?
- React doesn't render autocomplete off
- How can I pick color from any website I visit using Chrome DevTools?
- How to disable Google Chrome auto update?
- Extracting Sound from Google Translate