MellonIdPMetadataFile "${saml_idp_meta}"
MellonEndpointPath ${saml_sp}
MellonVariable "saml-sesion-cookie"
- # Comment out the next line if you want to allow logins on bare HTTP
+ # Comment out the next two lines if you want to allow logins on bare HTTP
MellonsecureCookie ${saml_secure_on}
+ ${ssl_require}SSLRequireSSL
MellonUser "NAME_ID"
MellonIdP "IDP"
MellonSessionLength 3600
${sp} SSLRequireSSL
${sp} Require all granted
${sp}</Directory>
+
+# Redirect requests to the secure port
+${ssl_rewrite}RewriteEngine on
+${ssl_rewrite}RewriteCond %{SERVER_PORT} !^443$$
+${ssl_rewrite}RewriteRule ^${saml_base}(.*) https://${sp_hostname}${saml_base}$$1 [L,R=301,NC]