Default HTTP configuration should enforce HTTPS

[tiran]

The community portal's default configuration for Apache should enforce HTTPS and reject plain HTTP connection. Users can still opt-out from HTTPS. The default configuration shall always be secure.