The same site produces “too many redirects” only via cellular, not via WiFi

问题

This bounty has ended. Answers to this question are eligible for a +250 reputation bounty. Bounty grace period ends in 35 minutes. dasblinkenlight wants to draw more attention to this question:

This problem drives me nuts. I am sure that I am not the only one experiencing this issue, though, so I would welcome any thoughts that would lead me closer to solving the issue.

I host a small web site at an external host provider. When I open it from my iPhone, I get different results depending on how my iPhone is connected to the internet:

• When connection is made through WiFi, my page always opens and runs as expected
• When connection is made through Cellular, my page always produces the following error message:

On mobile Safari:

Safari cannot open the page because too many redirects occurred.

On mobile Chrome:

This page isn't working / redirected you too many times.

On mobile Opera:

This site can't be reached / too many HTTP redirects.

As far as I can tell, the only difference that decides the outcome is the internet connection type - WiFi vs. Cellular. I cannot find any other differences.

Since the site works fine through WiFi network, I ruled out a redirect loop on my site (that is the most commonly mentioned cause of "too many redirects" error). I also tried turning off cross-site tracking prevention, but the results remained the same. Am I missing something? What could be the cause of this strange behavior?

In case it is relevant, here are a few things about the web site itself:

• Web site is developed with ASP.NET Core
• I access site using https in both cases (via WiFi and via Cellular)
• Site is on a subdomain, which uses a wildcard certificate from the "top" domain
• Site uses ASP.NET Core "scaffold-ed" authentication, which uses redirects and cookies, and has "remember me" functionality.

回答1:

Doing application side https forcing behind a reverse proxy is tricky. Generally it is better to let the reverse proxy do the forcing, and set the proxy to communicate on https only to avoid any application side forcing. (If the application has https capabilities of course)

If you must do it from the application, then the proxy must include the necessary headers for the application to evaluate the original connection context. And it may have to know the original hostname and basepath if you rewrite that.

Please review the instructions for asp.net core Forwarded Headers Middleware. https://docs.microsoft.com/en-us/aspnet/core/host-and-deploy/proxy-load-balancer

As to why that behaves differently depending on your type of internet connection is a bit of a mystery.

回答2:

Try adding the line below to your Web.Config file. Seems like it could have to do with how mobile networks try and compress your packets as they're sent back to the device.

<system.webServer>
   <httpProtocol>
     <customHeaders>
     <add name="Cache-Control" value="no-transform" />
     </customHeaders>
   </httpProtocol>
</system.webServer>

which I believe is the equivalent of adding Header set Cache-Control "no-transform" to your .htaccess file.

If that doesn't work, try adding the following to all pages that should normally be touched during the request.

<% @Language="VBScript" %>
<% Response.CacheControl = "no-transform" %>

NOTE: This code must be inserted at the beginning of the page, unless buffering is enabled, because it is modifying the HTTP headers.

回答3:

It might be caused by browsers not getting correct content-type

Can you add this to your head in the view or layout(if you are using)

<head>
  <meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
</head>

回答4:

I finally stumbled upon a fix, although I still do not know why the error does not manifest itself on desktops and mobile WiFi connections. The issue has to do with hosting my web application on IIS using out-of-process mode, and calling UseHttpsRedirection() during the setup.

What happens next is described in this answer: IIS, which connects to my out-of-process host (Kestrel) via http, gets redirected, and the browser on my phone somehow detects it. There is also a second redirection (the legitimate one) to the login page, which the phone browser counts as well. Now the phone browser sees two redirections, so it displays an error, because at most one redirection is allowed.

The fix was simply to remove the call to UseHttpsRedirection(). It was unnecessary in out-of-process hosting scenario: IIS front is configured to require https, so clients get redirected anyway.

回答5:

I think your service provider is using an apache server . if yes then please reset .htacess file (it is server configuration file used to controling server settings including redirects).

来源：https://stackoverflow.com/questions/60286204/the-same-site-produces-too-many-redirects-only-via-cellular-not-via-wifi