NGINX rewrite rules for sub subdomains

No, sorry, that isn’t going to be possible.

Assuming the user connects to your server at https://www.sub.domain.com with HTTPS, the sequence of events will be:

  1. the user’s client makes a connection and initiates an SSL negotiation; they will send SNI (= server name indication) that they’re connecting to www.sub.domain.com
  2. the server can use the SNI to choose which certificate it will respond with, but cannot use it to redirect the client. So it picks the best one it’s got – ‘sub.domain.com’ without the ‘www’
  3. the client validates the certificate: chain, valid date, URL – and decides that it does not match and creates a browser warning.
  4. if the client clicks through the error, we then have an established secure connection and only then can we send HTTP redirects.

So you’d need a redirect at step 2 but that’s not possible. (If instead they do connect over HTTP not HTTPS then you can redirect from here, yes, but that’s not the certificate warning case you asked about.)

What options you do have is going to depend on the amount of control you have over your hosting environment.

  • if you have a shell account onto the server and full control over the web server for your sites (which probably means root access, but may not on well designed shared hosting), then you can get a separate SSL certificate from Let’s Encrypt or similar to use instead, which you will be able to configure with all the ‘www’ versions of the domains provided your server is set up to serve them
  • if you can’t make Let’s Encrypt’s validation work but can install your own SSL certificates, you can go to a third party certificate authority and buy one that covers everything you need. This might cost a few dollars, or maybe tens of dollars at most. Depending on how much flexibility you have with the configuration you might be able to use the existing free certificate for sub.domain.com and just buy one for www.sub.domain.com
  • or you can try and get better help from your web host. I don’t know where they get their certificates from but it ought to be possible to do this for you
  • or you can put a CDN in front of your site, e.g. CloudFront or similar; then you’re relying on them to handle the initial SSL and you might be able to convince them to support www too
  • or you can just try and quietly drop support for www.sub.domain.com – maybe it’s not worth worry about it no-one actually uses that, and it should be easy to convince anyone that looks that “This certificate was issued by sub.domain.com not www.sub.domain.com” is OK to click through

or there’s probably more!

Related Posts:

  1. Nginx Wildcard SSL with WordPress Multisite Subdomains
  2. WordPress Network (multisite) — how to ensure each site has their own admin URL?
  3. Help with multisite redirect issues using Cherokee OR solid nginx config?
  4. How to reliably flush rewrite rules on multisite?
  5. WordPress Multisite, NGINX and WordPress Subdirectory Install
  6. WordPress Multisite with multiple domains using Nginx
  7. WordPress Multisite with NGINX, subfolders, and FROM a subfolder
  8. NGinx + WordPress Subdomain Multi with core in Subdirectory
  9. NGINX Multisite Rewrite rules
  10. Nginx rules for subdomain multisite install (Bedrock)
  11. Rewrite rules in multisite
  12. add_rewrite_rule not registering on Multisite
  13. Add Rewrite Rule to point to a file on the server
  14. Multisite WordPress nginx uploaded files throw 404
  15. WordPress Installation for multi-domains with nginx and php-fpm
  16. Multisite installation on IIS gives 404 trying to access the admin dashboard
  17. how do I configure nginx for wordpress multisite, it occurs ERR_TOO_MANY_REDIRECTS
  18. Subdirectory multisite – only root admin available on NGINX
  19. How to exclude a directory from WordPress permalinks in a Multisite environment?
  20. Custom rewrite rule sends 404 header on multisite
  21. WordPress multisite subdirectory on nginx behind reverse proxy
  22. Multisite setup on VVV with bedrock
  23. How to run a subdirectory multisite install under a subdomain
  24. Create rewriterules for different domains in htaccess file with WP multisite
  25. Mapping subdomain to point to sudirectory site in WordPress Multisite Network
  26. add_rewrite_rule on multisite doesn’t work
  27. ReWriteRules and WordPress Multi-Sites with Sub Directories
  28. .htaccess rules for blocking bots with an extra condition
  29. URL without www redirect directly with submission page – Multiwordpress install
  30. Nginx config, how can I redirect primary multisite domain, but not its sub-folders, nor other domains?
  31. Nginx — WordPress multisite with root folder in own directory
  32. Multisite sub-directories IIS 7.5 change media/uploads location
  33. add_rewrite_rule not working in WordPress Multisite
  34. Move wp-content htacess
  35. WordPress in subdirectory, Multisite using subdomains Nginx
  36. Some permalinks are not working and show 404
  37. Why WordPress w/ Nginx Multisite Only Lets Admin Upload ZIP Plugins But Not Themes? [closed]
  38. Setup another new subdomain root on top of multisite configuration
  39. WordPress multisite second site admin resulting in too many redirects error
  40. Possible to reverse proxy WP multisite to a separate server with NGINX?
  41. Rewriting request to another site
  42. Multisite wp-admin redirecting to main wp-admin using NGINX
  43. wordpress.mydomian.com 404 Error
  44. using htaccess to check for cookie on permalink then conditionall rewrite with query parameter
  45. Nginx rules for subdomain multisite install (Bedrock)
  46. WordPress Multisite FQDN Admin Access
  47. Multisite custom rewrite urls
  48. Using www along with non-www for main domain in multisite installation
  49. Why does defining MULTISITE true change the database connection in use
  50. How can I write a rewrite rule to appear to move a multisite?
  51. WordPress on Nginx – Missing admin/toolbar
  52. Nginx Multisite redirects (incorrectly) on Chrome IE and Mobile, but works (correctly) on Firefox
  53. wordpress multisite is broken in nginx but working in apache
  54. Create site programmatically for WPMU
  55. Using one media library for a multisite network with WordPress 3.5 media library
  56. Troubleshooting a Network site displaying a blank page [closed]
  57. Run a function when a new site is created in WordPress Multisite
  58. Sub-directory blog on a sub-domain WordPress network site
  59. Customizing Deleted/Archived blogs warning pages
  60. SQL Query to Get list of all users along with their blogs
  61. Synchronizing Two WordPress Sites Content
  62. Multisite Independent User Base
  63. Why is my multisite installation not showing all the available sites?
  64. PHP Notices appear when browsing any page in admin, but only for child theme, using code from WP Codex
  65. What is the most efficient way to have two “blogs” on one site?
  66. Preview posts returns 404
  67. How can I have multiple URLs pointing to single WordPress installation?
  68. Redirect subdomain homepage to domain specific page in wordpress multisite
  69. Create a network of blogs with WordPress 3
  70. create new site subsite in wordpress multisite by subscriber user instead of network admin
  71. Retrieving multisite blog IDs, somehow failing to foreach them properly
  72. What sites are you registered to when joining a multisite?
  73. ERR_TOO_MANY_REDIRECTS IN MULTISITE NETWORK DASHBOARD
  74. WordPress Multisite new sites in directory
  75. How to configure Multisite Network with randomized hostnames?
  76. wp_insert_site() is triggering database error in a unit test
  77. Multisite: How to get a list of installed languages
  78. “You must be logged in to comment” but I am already logged in
  79. Is the Multi site functionality a viable option for Country and Language targeting?
  80. WordPress multisite .htaccess causes 500 error on old *.php URLs
  81. Site redirecting to http://example.com/wp-signup.php?new=example.com
  82. Multisite, with virtual root
  83. Domain Mapping for WordPress MU and https redirection – How to?
  84. WordPress MU subdomain vhost
  85. How do I stop exactly one blog from network ever setting cookies?
  86. Two Websites with the same administration Panel In WordPress
  87. Creating a multilingual multisite
  88. Hiding media uploaded by other users in wordpress multisite?
  89. Multisite Create New Blog Plugin
  90. Configure WordPress Multisite Pages with Custom Permalinks
  91. Multisite WordPress on a site that is more than 30 days old
  92. Displaying Multisite ID number
  93. In Multisite: Site / Blog IDstill exists after deleting site
  94. Is Multisite the RIGHT option for my case?
  95. Setting up multisite with NginX
  96. Multiple domain with one database
  97. How to set up wp multisite?
  98. WordPress Multisite – is this possible?
  99. Generate aggregated feed from member blogs
  100. WordPress MultiSite Link Cloaking/Redirect Solution?