Redirect all www and http ==>> non www https on AWS Elastic Beanstalk with Load Balancer

Question 1

Try this rule instead:

RewriteEngine On
RewriteCond %{HTTPS} off [OR]
RewriteCond %{HTTP_HOST} ^www\. [NC]
RewriteCond %{SERVER_NAME} ^(www\.)?(.*)$ [NC]
RewriteRule ^/?(.*)$ https://%2/$1 [L,R=301]

Question 2

Actually RewriteCond %{HTTP:X-Forwarded-Proto} ^http$ [OR] would be better because !=https fails the ELB health checking. So the full working answer is:

RewriteEngine On
RewriteCond %{HTTP:X-Forwarded-Proto} ^http$ [OR]
RewriteCond %{HTTP_HOST} ^www\. [NC]
RewriteCond %{SERVER_NAME} ^(www\.)?(.*)$ [NC]
RewriteRule ^/?(.*)$ https://%2/$1 [L,R=301]

Question 3

To also take into account the ELB health check use:

RewriteEngine On
RewriteCond %{HTTP:X-Forwarded-Proto} !=https [OR]
RewriteCond %{HTTP_HOST} ^www\. [NC]
RewriteCond %{HTTP_USER_AGENT} !ELB-HealthChecker
RewriteCond %{SERVER_NAME} ^(www\.)?(.*)$ [NC]
RewriteRule ^/?(.*)$ https://%2/$1 [L,R=301]

Question 4

Just for anyone looking for a full copy and paste solution using ElasticBeanstalks config files.

Create file inside .ebextensions/, lets call it 01-https.config.
Add the following:

files:
  "/etc/httpd/conf.d/http-redirect.conf":
    mode: "000644"
    owner: root
    group: root
    content: |
      RewriteEngine On
      RewriteCond %{HTTP_HOST} ^www\.(.*)$ [OR,NC]
      RewriteCond %{HTTP:X-Forwarded-Proto} !https
      RewriteCond %{HTTP_USER_AGENT} !ELB-HealthChecker
      RewriteRule (.*) https://example.com%{REQUEST_URI}

This takes into consideration ELB health check and will work for the following examples:

which will be redirected to https://example.com