Thanks for posting your questions here. Have you had a change to review the
app.yaml Reference article? In it, you can see the use of the
secure attribute for handlers. Setting the
secure attribute to
always will cause users to be automatically redirected to using
https. Associating it to all URLs with
url: /.* should have that rule apply to every URL at your domain.
Hope this helps!