Normally we do not deal with dumped code that justs puts everything on the table, but it appears that in this case my best guess says that without some assistance you might be unable to separate out the part(s) that need work.

I think it is best if we just ignore the WP plugin instructions - you're on your own with those. I'm going to ignore the conflicting cache rules that you have because those are not related to the question of why your rewrites are not working as expected.

There are only two rewrites in this .htaccess file and one of those is the WordPress default snippet:

# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>

# END WordPress

Don't mess with that one please.

The other one does not really do what you want either and it would appear that only the WP part of your site can possibly be reached by https: URLs.

RewriteEngine on
RewriteCond %{HTTP_HOST} ^example\.com [NC,OR]
RewriteCond %{HTTP_HOST} ^www.example\.com [NC]
RewriteRule ^(.*)$ http://example\.net/$1 [L,R=301,NC]

unless you wanted to redirect all URL requests to http://example.net/page-name

Now if we can determine whether your domain has a .com or .net TLD we may get to a start for a useful canonical rewrite rule. Which one is correct?

My domain is .com

I want to direct all my site pages in any of those 4 versions to this version

https://www

Btw I actually have 2 .htaccess files. One of them is called .htaccess-1516125416. That's the one from where I
pasted the code in my post.

The other file, .htaccess has this code:

RewriteOptions inherit
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>

# END WordPress

# compress text, html, javascript, css, xml:
AddOutputFilterByType DEFLATE text/plain
AddOutputFilterByType DEFLATE text/html
AddOutputFilterByType DEFLATE text/xml
AddOutputFilterByType DEFLATE text/css
AddOutputFilterByType DEFLATE application/xml
AddOutputFilterByType DEFLATE application/xhtml+xml
AddOutputFilterByType DEFLATE application/rss+xml
AddOutputFilterByType DEFLATE application/javascript
AddOutputFilterByType DEFLATE application/x-javascript
 
# Or, compress certain file types by extension:
 
<files *.html>
SetOutputFilter DEFLATE
</files>

# Use PHP71 as default
AddHandler application/x-httpd-php71 .php
<IfModule mod_suphp.c>
  suPHP_ConfigPath /opt/php71/lib
</IfModule>

Thanks!

As far as I know (which is not nearly very much) a .htaccess file with some other characters at the end of it is not the paart your server works with - BUT not all hosting environments are identical so I would not call that an ironclad rule. The one to edit is plain .htaccess with nothing at the end normally.

I would add the rewrite rule at the end, then move the WP section after the rewrite rule.

I would try starting with something like this:

RewriteCond %{HTTP_HOST} !^(www\.example\.com)?$ [NC,OR]
RewriteCond %{HTTPS} =off
RewriteRule (.*) https://www.example.com/$1 [L,R=301]

It helps to understand what this does for you so that you can decide whether this is what you want. The first line, that

RewriteCond %{HTTP_HOST} !^(www\.example\.com)?$ [NC,OR]

part tells the server that if it receives a request that does not (that's the !) begin with (that's the ^) your preferred form of your domain name - that's the "(www\.example\.com)" part, the $ (anchor) is the end of the string for the server to watch for and the "?" represents whatever the rest of the URL requested actually is and captures that part of the requested URL to add it back on again. The bracketed part at the end of that line adds conditions for the rule. Here NC means "No Case" - the letters in the request can be upper or lower case. OR means "or" - because another condition for this rule is on the next line.

That next condition is:

RewriteCond %{HTTPS} =off

which means just what it looks like - "if that requested URL is not requesting https:"

The last line:

RewriteRule (.*) https://www.example.com/$1 [L,R=301]

basically tells the server to take everything it has determined from the first two lines: (.*) and rewrite them as "https://www.example.com/" and that $1 tells it to add back the part it captured with the '?' in the first line and add that string back on to the request. The bracketed stuff at the end defines how to proceed: 'L'= last time to rewrite this request and R=301 says the Rewrite is to be a 301 (permanent) which is necessary to add because Apache's default would be a 302 (temporary). If someone forgets to specify a 301 it will be a 302.

This should not be at the top of your .htaccess file, it is usually at the end, after all the other cache instructions and <files> and plugin settings. The WP snippet of code goes after this rewrite rule because it has its own internal rules.

On a side note, you might find it helpful to separate your htaccess sections rather than run them on all stuck together. I suggest that because it appears that some of those proprietary codes are nested and containing unrelated parts of code. Your file has a no-cache section and further down has cache rules. And more after those. Only the plugin providers can tell you how and where those belong, sorry.

[edited by: phranque at 7:35 pm (utc) on Oct 16, 2019]
[edit reason] typo - $? vs ?$ [/edit]

the "?" represents whatever the rest of the URL requested actually is

Brain fart, not2easy? ;)

The ? means the part in parentheses is optional:
(www\.example\.com)?
In htaccess on shared hosting this bit really isn't necessary--though it does no harm--because a request without a hostname simply won't reach your site. So this bit can be expressed as
!^www\.example\.com$
if you prefer.

Side question.... are you able to edit the webserver config files? I assume Apache because of the htaccess file...

If yes you would be best served having your solution live there rather than the htaccess file.

@not2easy I confirm that code works now.

I edited the .htaccess file, now it looks like this:

RewriteOptions inherit

# compress text, html, javascript, css, xml:
AddOutputFilterByType DEFLATE text/plain
AddOutputFilterByType DEFLATE text/html
AddOutputFilterByType DEFLATE text/xml
AddOutputFilterByType DEFLATE text/css
AddOutputFilterByType DEFLATE application/xml
AddOutputFilterByType DEFLATE application/xhtml+xml
AddOutputFilterByType DEFLATE application/rss+xml
AddOutputFilterByType DEFLATE application/javascript
AddOutputFilterByType DEFLATE application/x-javascript
 
# Or, compress certain file types by extension:
 
<files *.html>
SetOutputFilter DEFLATE
</files>

# Use PHP71 as default
AddHandler application/x-httpd-php71 .php
<IfModule mod_suphp.c>
 suPHP_ConfigPath /opt/php71/lib
</IfModule>

RewriteCond %{HTTP_HOST} !^(www\.example\.com)?$ [NC,OR]
RewriteCond %{HTTPS} =off
RewriteRule (.*) https://www.example.com/$1 [L,R=301]


# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>

# END WordPress

Do I leave this part from the other .htaccess file (.htaccess-1516125416)?

RewriteCond %{HTTP_HOST} ^example\.com [NC,OR]
RewriteCond %{HTTP_HOST} ^www.example\.com [NC]
RewriteRule ^(.*)$ http://example\.net/$1 [L,R=301,NC]

As for the mess I have in these files I'll guess I create a new post or try to figure out
what's going in.

Thanks!

Do I leave this part from the other .htaccess file (.htaccess-1516125416)?

No. The HTTP_HOST should be expressed as a negative: “If the hostname is anything other than this exact form”, with both opening and closing anchors.

Some sources say the HTTP condition should be expressed as !on rather than =off. But since it's supposed to be binary, it's hard to think of a situation where it could matter.

In order to redirect in a single step, you need to have two RewriteConds, separated by OR: one for the hostname, one for http. You've now got that.

<files *.html>
SetOutputFilter DEFLATE
</files>

This doesn't need to be in a Files envelope; just say .html (leading dot optional) after the DEFLATE. As a general rule it's always safer to say Add instead of Set, unless you explicitly want to override something that was previously set.

:: wandering off to refresh memory on difference between* AddOutputFilter and AddOutputFilterByType ::


* Answer: in spite of the similarity in names, one is covered by mod_mime and the other by mod_filter. This will take further study.

Thanks for the correction lucy24, I had written part of my response, then grabbed the wrong lines to paste in - I was a little rushed to get offline because of nearby lightening in a heavy thunderstorm. I'm happy to see it was correctly used.

@karlsult7 - Regarding that old rewrite rule: No, don't use that old Rewrite code. Look at the last line, it wants to rewrite to a .net site which is why I had to ask whether you were aiming for .net or .com for your rule.

A further note about the .html part:

<files *.html>
SetOutputFilter DEFLATE
</files>

Since you have the wordpress section of code, we assume that you have installed WordPress and your recent URLs don't end with .html - but you may have non-WP .html pages. IF not,you can get rid of this .html directive in your .htaccess file. You don't need that unless you still have actual .html pages in addition to your wordpress pages. I bring that up because most WP sites don't hang on to the .html file extensions within WP and you don't need the server looking for them if they aren't there. ;)

your recent URLs don't end with .html

Besides, <Files> and <FilesMatch> refer to the physical file, not the URL. So even if you're being sneaky and disguising your dynamic pages behind .html URLs, <Files> isn't fooled.

And incidentally...

I was a little rushed to get offline because of nearby lightning in a heavy thunderstorm

Mercy sakes, Nancy, haven't you guys had enough weather for one lifetime already?

Hi,

I don't know what happened to .htaccess file, seems some code got between the piece I added, now it looks like this:

I wonder if this is normal?

RewriteOptions inherit

# compress text, html, javascript, css, xml:
AddOutputFilterByType DEFLATE text/plain
AddOutputFilterByType DEFLATE text/html
AddOutputFilterByType DEFLATE text/xml
AddOutputFilterByType DEFLATE text/css
AddOutputFilterByType DEFLATE application/xml
AddOutputFilterByType DEFLATE application/xhtml+xml
AddOutputFilterByType DEFLATE application/rss+xml
AddOutputFilterByType DEFLATE application/javascript
AddOutputFilterByType DEFLATE application/x-javascript
 
# Use PHP71 as default
AddHandler application/x-httpd-php71 .php
<IfModule mod_suphp.c>
 suPHP_ConfigPath /opt/php71/lib
</IfModule>

RewriteCond %{HTTP_HOST} !^(www\.example\.com)?$ [NC,OR]
RewriteCond %{HTTPS} =off
RewriteCond %{REQUEST_URI} !^/\.well-known/acme-challenge/[0-9a-zA-Z_-]+$
RewriteCond %{REQUEST_URI} !^/\.well-known/cpanel-dcv/[0-9a-zA-Z_-]+$
RewriteCond %{REQUEST_URI} !^/\.well-known/pki-validation/(?:\ Ballot169)?
RewriteCond %{REQUEST_URI} !^/\.well-known/pki-validation/[A-F0-9]{32}\.txt(?:\ Comodo\ DCV)?$
RewriteRule (.*) https://www.example.com/$1 [L,R=301]

# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteCond %{REQUEST_URI} !^/\.well-known/acme-challenge/[0-9a-zA-Z_-]+$
RewriteCond %{REQUEST_URI} !^/\.well-known/cpanel-dcv/[0-9a-zA-Z_-]+$
RewriteCond %{REQUEST_URI} !^/\.well-known/pki-validation/(?:\ Ballot169)?
RewriteCond %{REQUEST_URI} !^/\.well-known/pki-validation/[A-F0-9]{32}\.txt(?:\ Comodo\ DCV)?$
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_URI} !^/\.well-known/acme-challenge/[0-9a-zA-Z_-]+$
RewriteCond %{REQUEST_URI} !^/\.well-known/cpanel-dcv/[0-9a-zA-Z_-]+$
RewriteCond %{REQUEST_URI} !^/\.well-known/pki-validation/(?:\ Ballot169)?
RewriteCond %{REQUEST_URI} !^/\.well-known/pki-validation/[A-F0-9]{32}\.txt(?:\ Comodo\ DCV)?$
RewriteRule . /index.php [L]
</IfModule>

# END WordPress

Thanks!

[edited by: not2easy at 1:05 pm (utc) on Oct 20, 2019]
[edit reason] anonymized details for readability/security [/edit]

That looks like something that might occur if you are using CPanel to manage some facet of your domain. The inclusion of ".well-known/" is related to TLS/SSL certificates. Did you recently acquire, alter, update or replace your security?

The "WP snippet" of code now appears to be duplicated. If you did nothing to explain these changes, I would contact your host. I would also take a look at your error logs.

I downloaded backups, full backup, home directory backup and msql backups.
I think '.well-known' appeared exactly at that time.

I from removing some wordpress plugins from wordpress dashboard not cpanel.
I inserted google analytics code in wp... and modify a ton of pages on my site.

But nothing special at all or about security.

A closer look shows that the WP snippet is not actually duplicated, it appears related to a Comodo certificate though. WP plugins can and do overwrite sections of your .htaccess file which is why it is important to understand every plugin that you use and stick to plugins from the WP.org plugins repository because those have been tested and approved. There are some sneaky plugins out there to be careful of.

Any time you aren't sure about a plugin you can check the information at the WP Vulnerability database: [wpvulndb.com...]

ok, I only have about 5 plugins all very popular...

Will try contacting host too.

Thanks!