phranque - 10:45 pm on Jul 18, 2013 (gmt 0)
By the way, is that normal to configure server to redirect a request made for https://www.example.com to http://www.example.com? Is that set by default?
it wouldn't be normal if www.example.com was intended to be secure content.
on some sites, everything uses secure protocol.
on other sites, it might be a specific secure url, subdirectory, or subdomain.
you would ideally design your url structure so that you can easily distinguish secure and non-secure content and then use mod_rewrite techniques (for apache) or various techniques as your environment requires to make sure all non-canonical request are redirected to the canonical url.
it's not done by default in any server environment i've seen.