Azure web.config Permanent redirection and get 307 status code instead of 301
I'm trying to redirect all http traffic to https while returning 301 status code. For some reason, I get 307 status instead and I dont know why. I tried to search to see if I missed something in my config, but it's seem similar to everything I saw.
My web.config
<rewrite>
<rules>
<rule name="ForceWWW" stopProcessing="true">
<match url=".*" ignoreCase="true" />
<conditions>
<add input="{HTTP_HOST}" pattern="^MY_DOMAINE" />
</conditions>
<action type="Redirect" url="https://www.MY_DOMAINE/{R:0}" redirectType="Permanent" />
</rule>
<rule name="HTTP to HTTPS redirect" stopProcessing="true">
<match url="(.*)" />
<conditions>
<add input="{HTTPS}" pattern="off" ignoreCase="true" />
</conditions>
<action type="Redirect" url="https://{HTTP_HOST}/{R:1}" redirectType="Permanent" />
</rule>
</rules>
<outboundRules>
<rule name="Add Strict-Transport-Security when HTTPS" enabled="true">
<match serverVariable="RESPONSE_Strict_Transport_Security" pattern=".*" />
<conditions>
<add input="{HTTPS}" pattern="on" ignoreCase="true" />
</conditions>
<action type="Rewrite" value="max-age=31536000" />
</rule>
</outboundRules>
</rewrite>
UPDATE
I just found something interesting. Exemple my domaine is domaine.com
If I search:
domaine.com the redirection is 301
http://www.domaine.com the redirection is 307
www.domaine.com the redirection is 307
UPDATE
I only got the problem with Chrome. Other browers have the 301 status with the redirection.
Solution
You specify the Strict_Transport_Security in the response, which activates HSTS
Chrome doesn't even call the server and redirects directly through a 307 http code. More info
- How to 301 redirect an entire domain while preserving the path
- Get previous page URL, Open New Window, then Redirect through Javascript
- Pipe | Redirection < > Precedence
- How to redirect a URL in Nginx
- How to redirect the user back to the home page using FastAPI, after submitting an HTML form?
- Sessions don't work. How to debug a php session?
- How to send RedirectResponse from a POST to a GET route in FastAPI?
- 301 redirect - Redirect parent but not it's children
- Pinterest redirect URI
- Redirect in web.config from one domain to another including sub path
- How do I redirect to another webpage?
- How can I redirect to a view without a controller in an ASP.NET MVC application?
- How does one setup OpenAPI redirect response with parameters?
- GCP - How do you create a URL Redirect path rule with gcloud url-maps?
- How to redirect to the same page in PHP
- How to refresh the current page (aka. redirect to the same URL)?
- React Router conditional redirect
- Django redirecting http -> https
- How do I use JavaScript to detect the name of the network my computer is connected to?
- how to redirect in node.js
- How to set the DefaultRoute to another Route in React Router
- I want to redirect an old URL "more" to "details" in Apache
- RequestDispatcher.forward() vs HttpServletResponse.sendRedirect()
- Spotify ios SDK Login: Invalid Redirect URI
- Redirect a .pdf or .doc to a webpage
- Apache HTTPD as a reverse proxy - how to redirect only URL with hostname onlye, and leave other calls with specific directives
- How can I start a Copilot/Claude chat with a prompt using a GET request?
- RedirectToAction redirects to the same URL resulting in infinite redirection loop
- How to redirect in NextJS if not logged using nextAuth
- How to redirect to an "about:" URL