diff --git a/README.md b/README.md
new file mode 100644
index 0000000..a3d7a6d
--- /dev/null
+++ b/README.md
@@ -0,0 +1,187 @@
+# Rack::SslEnforcer
+
+Rack::SslEnforcer is a simple Rack middleware to enforce SSL connections. As of Version 0.2.0, Rack::SslEnforcer marks
+Cookies as secure by default (HSTS must be set manually).
+
+Tested against Ruby 1.8.7, 1.9.2, 1.9.3, ruby-head, REE and the latest versions of Rubinius & JRuby.
+
+## Installation
+
+The simplest way to install Rack::SslEnforcer is to use [Bundler](http://gembundler.com/).
+
+Add Rack::SslEnforcer to your `Gemfile`:
+
+```ruby
+ gem 'rack-ssl-enforcer'
+```
+
+## Basic Usage
+
+If you don't use Bundler, be sure to require Rack::SslEnforcer manually before actually using the middleware:
+
+```ruby
+ require 'rack/ssl-enforcer'
+ use Rack::SslEnforcer
+```
+
+To use Rack::SslEnforcer in your Rails application, add the following line to your application config file (`config/application.rb` for Rails 3, `config/environment.rb` for Rails 2):
+
+```ruby
+config.middleware.use Rack::SslEnforcer
+```
+
+If all you want is SSL for your whole application, you are done! Otherwise, you can specify some options described below.
+
+## Options
+
+### Host contraints
+
+You can enforce SSL connections only for certain hosts with `:only_hosts`, or prevent certain hosts from being forced to SSL with `:except_hosts`. Constraints can be a `String`, a `Regex` or an array of `String` or `Regex` (possibly mixed), as shown in the following examples:
+
+```ruby
+config.middleware.use Rack::SslEnforcer, :only_hosts => 'api.example.com'
+# Please note that, for instance, both http://help.example.com/demo and https://help.example.com/demo would be accessible here
+
+config.middleware.use Rack::SslEnforcer, :except_hosts => /[help|blog]\.example\.com$/
+
+config.middleware.use Rack::SslEnforcer, :only_hosts => [/[secure|admin]\.example\.org$/, 'api.example.com']
+```
+
+### Path contraints
+
+You can enforce SSL connections only for certain paths with `:only`, or prevent certain paths from being forced to SSL with `:except`. Constraints can be a `String`, a `Regex` or an array of `String` or `Regex` (possibly mixed), as shown in the following examples:
+
+```ruby
+config.middleware.use Rack::SslEnforcer, :only => '/login'
+# Please note that, for instance, both http://example.com/demo and https://example.com/demo would be accessible here
+
+config.middleware.use Rack::SslEnforcer, :only => %r{^/admin/}
+
+config.middleware.use Rack::SslEnforcer, :except => ['/demo', %r{^/public/}]
+```
+
+### Method contraints
+
+You can enforce SSL connections only for certain HTTP methods with `:only_methods`, or prevent certain HTTP methods from being forced to SSL with `:except_methods`. Constraints can be a `String` or an array of `String`, as shown in the following examples:
+
+```ruby
+# constraint as a String
+config.middleware.use Rack::SslEnforcer, :only_methods => 'POST'
+# Please note that, for instance, GET requests would be accessible via SSL and non-SSL connection here
+
+config.middleware.use Rack::SslEnforcer, :except_methods => ['GET', 'HEAD']
+```
+
+Note: The `:hosts` constraint takes precedence over the `:path` constraint. Please see the tests for examples.
+
+### Force-redirection to non-SSL connection if constraint is not matched
+
+Use the `:strict` option to force non-SSL connection for all requests not matching the constraints you set. Examples:
+
+```ruby
+config.middleware.use Rack::SslEnforcer, :only => ["/login", /\.xml$/], :strict => true
+# https://example.com/demo would be redirected to http://example.com/demo
+
+config.middleware.use Rack::SslEnforcer, :except_hosts => 'demo.example.com', :strict => true
+# https://demo.example.com would be redirected to http://demo.example.com
+```
+
+### Automatic method contraints
+
+In the case where you have matching URLs with different HTTP methods – for instance Rails RESTful routes: `GET /users`, `POST /users`, `GET /user/:id` and `PUT /user/:id` – you may need to force POST and PUT requests to SSL connection but redirect to non-SSL connection on GET.
+
+```ruby
+config.middleware.use Rack::SslEnforcer, :only => [%r{^/users/}], :mixed => true
+```
+
+The above will allow you to POST/PUT from the secure/non-secure URLs keeping the original schema.
+
+### HTTP Strict Transport Security (HSTS)
+
+To set HSTS expiry and subdomain inclusion (defaults respectively to `one year` and `true`).
+
+```ruby
+config.middleware.use Rack::SslEnforcer, :hsts => { :expires => 500, :subdomains => false }
+config.middleware.use Rack::SslEnforcer, :hsts => true # equivalent to { :expires => 31536000, :subdomains => true }
+```
+Please note that the strict option disables HSTS.
+
+### Redirect to specific URL (e.g. if you're using a proxy)
+
+You might need the `:redirect_to` option if the requested URL can't be determined.
+
+```ruby
+config.middleware.use Rack::SslEnforcer, :redirect_to => 'https://example.org'
+```
+
+### Custom HTTP port
+
+If you're using a different port than the default (80) for HTTP, you can specify it with the `:http_port` option:
+
+```ruby
+config.middleware.use Rack::SslEnforcer, :http_port => 8080
+```
+
+### Custom HTTPS port
+
+If you're using a different port than the default (443) for HTTPS, you can specify it with the `:https_port` option:
+
+```ruby
+config.middleware.use Rack::SslEnforcer, :https_port => 444
+```
+
+### Secure cookies disabling
+
+Finally you might want to share a cookie based session between HTTP and HTTPS.
+This is not possible by default with Rack::SslEnforcer for [security reasons](http://en.wikipedia.org/wiki/HTTP_cookie#Cookie_theft_and_session_hijacking).
+
+Nevertheless, you can set the `:force_secure_cookies` option to `false` in order to be able to share a cookie based session between HTTP and HTTPS:
+
+```ruby
+config.middleware.use Rack::SslEnforcer, :only => "/login", :force_secure_cookies => false
+```
+
+But be aware that if you do so, you have to make sure that the content of you cookie is encoded.
+This can be done using a coder with [Rack::Session::Cookie](https://github.com/rack/rack/blob/master/lib/rack/session/cookie.rb#L28-42).
+
+## Deployment
+
+If you run your application behind a proxy (e.g. Nginx) you may need to do some configuration on that side. If you don't you may experience an infinite redirect loop.
+
+The reason this happens is that Rack::SslEnforcer can't detect if you are running SSL or not. The solution is to have your front-end server send extra headers for Rack::SslEnforcer to identify the request protocol.
+
+### Nginx
+
+In the `location` block for your app's SSL configuration, include the following proxy header configuration:
+
+`proxy_set_header   X-Forwarded-Proto https;`
+
+This makes sure that Rack::SslEnforcer knows it's being accessed over SSL. Just restart Nginx for these changes to take effect.
+
+## TODO
+
+* Cleanup tests
+
+## Contributors
+
+* [Dan Mayer](http://github.com/danmayer)
+* [Rémy Coutable](http://github.com/rymai)
+* [Thibaud Guillaume-Gentil](http://github.com/thibaudgg)
+* [Paul Annesley](https://github.com/pda)
+* [Saimon Moore](https://github.com/saimonmoore)
+
+## Credits
+
+Flagging cookies as secure functionality and HSTS support is greatly inspired by [Joshua Peek's Rack::SSL](https://github.com/josh/rack-ssl).
+
+## Note on Patches / Pull Requests
+
+* Fork the project.
+* Code your feature addition or bug fix.
+* **Add tests for it.** This is important so we don't break it in a future version unintentionally.
+* Commit, do not mess with Rakefile or version number. If you want to have your own version, that's fine but bump version in a commit by itself so we can ignore it when merging.
+* Send a pull request. Bonus points for topic branches.
+
+## Copyright
+
+Copyright (c) 2010-2012 Tobias Matthies. See LICENSE for details.
diff --git a/README.rdoc b/README.rdoc
deleted file mode 100644
index e4599bd..0000000
--- a/README.rdoc
+++ /dev/null
@@ -1,130 +0,0 @@
-= Rack::SslEnforcer
-
-Rack::SslEnforcer is a simple Rack middleware to enforce SSL connections. As of Version 0.2.0, Rack::SslEnforcer marks
-Cookies as secure by default (HSTS must be set manually).
-
-Tested on Ruby 1.8.7, 1.9.2, REE, JRuby and Rubinius.
-
-== Installation
-
-  gem install rack-ssl-enforcer
-
-
-== Basic Usage
-
-  require 'rack/ssl-enforcer'
-  use Rack::SslEnforcer
-
-Or, if you are using Bundler, just add this to your Gemfile:
-
-  gem 'rack-ssl-enforcer'
-
-To use Rack::SslEnforcer in your Rails application, add the following line to your application
-config file (<tt>config/application.rb</tt> for Rails 3, <tt>config/environment.rb</tt> for Rails 2):
-
-  config.middleware.use Rack::SslEnforcer
-
-If all you want is SSL for your whole application, you are done! However, you can specify some
-
-
-== Options
-
-You might need the :redirect_to option if the requested URL can't be determined (e.g. if using a proxy).
-
-  config.middleware.use Rack::SslEnforcer, :redirect_to => 'https://example.org'
-
-You can also define specific regex patterns or paths or hosts or methods to redirect.
-
-  config.middleware.use Rack::SslEnforcer, :only => /^\/admin\//
-  config.middleware.use Rack::SslEnforcer, :only => "/login"
-  config.middleware.use Rack::SslEnforcer, :only => ["/login", /\.xml$/]
-  config.middleware.use Rack::SslEnforcer, :only_hosts => 'api.example.com'
-  config.middleware.use Rack::SslEnforcer, :only_hosts => [/[www|api]\.example\.org$/, 'example.com']
-  config.middleware.use Rack::SslEnforcer, :except_hosts => 'help.example.com'
-  config.middleware.use Rack::SslEnforcer, :except_hosts => /[help|blog]\.example\.com$/
-  config.middleware.use Rack::SslEnforcer, :only_methods => 'POST'
-  config.middleware.use Rack::SslEnforcer, :only_methods => ['POST', 'PUT']
-  config.middleware.use Rack::SslEnforcer, :except_methods => 'GET'
-  config.middleware.use Rack::SslEnforcer, :except_methods => ['GET', 'HEAD']
-  
-Note: hosts options take precedence over the path options. See tests for examples.
-
-Use the :strict option to force http for all requests not matching your :only specification
-
-  config.middleware.use Rack::SslEnforcer, :only => ["/login", /\.xml$/], :strict => true
-  config.middleware.use Rack::SslEnforcer, :only_hosts => 'api.example.com', :strict => true
-
-Or in the case where you have matching urls with different methods (Rails RESTful routes: get#users post#users || get#user/:id put#user/:id) you may need to post and put to secure but redirect to http on get.
-
-  config.middleware.use Rack::SslEnforcer, :only => [%r{^/users/}], :mixed => true
-
-The above will allow you to post/put from the secure/non-secure urls keeping the original schema.
-
-To set HSTS expiry and subdomain inclusion (defaults: one year, true). Strict option disables HSTS.
-
-  config.middleware.use Rack::SslEnforcer, :hsts => { :expires => 500, :subdomains => false }
-  config.middleware.use Rack::SslEnforcer, :hsts => true # equivalent to { :expires => 31536000, :subdomains => true }
-
-Finally you might want to share a cookie based session between http and https.
-This is not possible by default with Rack::SslEnforcer for security reasons.
-See: [http://en.wikipedia.org/wiki/HTTP_cookie#Cookie_theft_and_session_hijacking]
-
-Nevertheless, you can set the option :force_secure_cookies to false in order to be able to share a cookie based session between http and https:
-
-  config.middleware.use Rack::SslEnforcer, :only => "/login", :force_secure_cookies => false
-
-But be aware that if you do so, you have to make sure that the content of you cookie is encoded.
-This can be done using a coder with Rack::Session::Cookie.
-See: [https://github.com/rack/rack/blob/master/lib/rack/session/cookie.rb#L28-42]
-
-
-== Deployment
-
-If you run your application behind a proxy (e.g. Nginx) you may need to do some configuration on that side. If you don't you may experience an infinite redirect loop.
-
-The reason this happens is that Rack::SslEnforcer can't detect if you are running SSL or not. The solution is to have your front-end server send extra headers for Rack::SslEnforcer to identify the request protocol.
-
-=== Nginx
-
-In the `location` block for your app's SSL configuration, include the following proxy header configuration:
-
-  proxy_set_header   X-Forwarded-Proto https;
-
-This makes sure that Rack::SslEnforcer knows it's being accessed over SSL. Just restart Nginx for these changes to take effect.
-
-
-== TODO
-
-* Add configuration option to specify local http / https ports
-* Cleanup tests
-
-
-== Contributors
-
-* {Dan Mayer}[http://github.com/danmayer]
-* {Rémy Coutable}[http://github.com/rymai]
-* {Thibaud Guillaume-Gentil}[http://github.com/thibaudgg]
-* {Paul Annesley}[https://github.com/pda]
-* {Saimon Moore}[https://github.com/saimonmoore]
-
-
-== Credits
-
-Flagging cookies as secure functionality and HSTS support is greatly inspired by {Joshua Peek's Rack::SSL}[https://github.com/josh/rack-ssl]
-
-
-== Note on Patches/Pull Requests
-
-* Fork the project.
-* Make your feature addition or bug fix.
-* Add tests for it. This is important so I don't break it in a
-  future version unintentionally.
-* Commit, do not mess with rakefile, version, or history.
-  (if you want to have your own version,
-  that is fine but bump version in a commit by itself I can ignore when I pull)
-* Send me a pull request. Bonus points for topic branches.
-
-
-== Copyright
-
-Copyright (c) 2010 Tobias Matthies. See LICENSE for details.
diff --git a/rack-ssl-enforcer.gemspec b/rack-ssl-enforcer.gemspec
index 6ed3cf9..926d294 100644
--- a/rack-ssl-enforcer.gemspec
+++ b/rack-ssl-enforcer.gemspec
@@ -21,6 +21,6 @@ Gem::Specification.new do |s|
   s.add_development_dependency "rack",       "~> 1.2.0"
   s.add_development_dependency "rack-test",  "~> 0.5.4"
 
-  s.files        = Dir.glob("{lib}/**/*") + %w[LICENSE README.rdoc]
+  s.files        = Dir.glob("{lib}/**/*") + %w[LICENSE README.md]
   s.require_path = 'lib'
 end