I have asp.net core 2.2.1 app hosted in IIS.
How do I enforce HTTPS except when the request if from/to localhost.
For condition for UseHttpsRedirection
, you could try MapWhen
like below:
app.MapWhen(context =>
{
var url = context.Request.Path.Value;
return url.Contains("localhost") && !context.Request.IsHttps;
}, subapp =>
{
subapp.UseHttpsRedirection();
});