Hi Franck,
EHRETic wrote:Finally (after 2 years !!!) found some time to look at this more closely... :D
I looked at .htaccess at root folder and it seems it is already one customized by X3.
The .htaccess file in root is entirely 100% FROM X3 (not really customized). The rules there allow virtual page urls to work and image resize url's. This file is required for X3 to work properly.
EHRETic wrote:So, in which section should I add the code of https redirect ?
Ideally, your non-SSL to SSL redirects should be setup in your Apache config, although that is unlikely to expect on shared servers. Also, there is an option Panel Settings > Advanced > Force Url, which basically allows you to set the HTTPS version of your website, and X3 will always redirect to that.
If you need to add to X3's .htaccess, you would just add your custom redirect rule at the top of the file, inside the following tags, so that your rules are inherited into the file after X3 updating:
# custom rules start
... your rules ...
# custom rules end
I have not included the redirect rule, because this may vary from server to server, and I assume you already have a specific rule to add?
EHRETic wrote:Wouldn't be nice to have one section written by yourself to harmonize it ?
Not quite sure what you mean. The entire .htaccess is written by me, and contains all rules necessary for running X3 and a few other strongly recommended rules. We can't include the SSL redirect by default, because most websites still don't have SSL, and those that do will often have the redirect rule set from either Apache or Cloudflare.
EHRETic wrote:Anyway, tendency goes to have everything HTTPS in a near future.
Indeed, and it is strongly recommended for all X3 websites. However, X3 does not have any say in if a website has SSL or not.