App Engine Flex - PHP - Custom Domain SSL - Not Working

42 views
Skip to first unread message

Bilal Haidar

unread,
Jun 28, 2021, 11:46:06 AM6/28/21
to Google App Engine

Hi,
I've added a subdomain today to my app on App Engine. The app is PHP Laravel.

The app makes use of the default Google Managed SSL.

In addition, I added a middleware to make sure to add the following header:

$response->headers->set('Strict-Transport-Security', 'max-age=31536000; includeSubDomains; preload');

Now, when I access the app via the custom domain, I can see the response header there. However, the app stays on the HTTP and is not being served on HTTPS.

Is there anything else to do to make sure the custom domain is always accessed via SSL?

Thanks
Bill

Elliott (Cloud Platform Support)

unread,
Jul 5, 2021, 9:51:40 AM7/5/21
to Google App Engine
Hello Bill,

I understand that your App Engine application is not defaulting to HTTPS. Looking at the options available, I found this Stackoverflow article here. It suggests to put the following two lines in your app.yaml 

file:

secure: always
redirect_http_response_code: 301

I know that this is for another runtime and that the app uses the default Google Managed SSL but the idea is the same. Can you try this out and let us know if it works for you?

For the benefit of the community, I have found some documentation on how to create a PHP application of Google App Engine.

Also, I have found some information on how to secure your application with SSL in the general documentation.

Bilal Haidar

unread,
Jul 5, 2021, 10:09:23 AM7/5/21
to google-a...@googlegroups.com
Thanks a lot. I read that one and somewhere on google docs I read that doesn’t work with flex anymore. 

What I did I using nginx config file and it works fine. If interested I can share the solution it’s just I’m not on my laptop right now.

Thanks
Bilal 

On 5 Jul 2021, at 4:52 PM, 'Elliott (Cloud Platform Support)' via Google App Engine <google-a...@googlegroups.com> wrote:


--
You received this message because you are subscribed to a topic in the Google Groups "Google App Engine" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/google-appengine/7oOIgrLt8GU/unsubscribe.
To unsubscribe from this group and all its topics, send an email to google-appengi...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-appengine/18904aa3-acf1-4f1b-bc98-af13c4532534n%40googlegroups.com.
Reply all
Reply to author
Forward
0 new messages