#1345: Support for X-Forwarded-Proto style HTTPS indicators
-------------------------+--------------------------------------------------
Reporter: david | Owner: david
Type: enhancement | Status: new
Priority: normal | Milestone: 1.0.5
Component: request | Version: 1.0.4
Severity: minor | Keywords:
Has_patch: 0 |
-------------------------+--------------------------------------------------
{{{AgaviWebRequest}}} currently checks if the source for the
{{{HTTPS}}} env var has a value of "on" (for Apache, IIS et cetera) or
boolean {{{true}}} or integer {{{1}}} (if statically set through a
config). Some load balancers (like Amazon EC2's Elastic Load Balancer)
send the name of the protocol used ("http" or "https") in a header like
{{{X-Forwarded-Proto}}} though. The code should thus also check if the
value is "https". A {{{preg_match()}}} will be faster for this than the
current {{{in_array()}}} in combination with the now necessary
{{{strtolower()}}}.
--
Ticket URL: <http://trac.agavi.org/ticket/1345>
Agavi <http://www.agavi.org/>
An MVC Framework for PHP5
_______________________________________________
Agavi Tickets Mailing List
[email protected]
http://lists.agavi.org/mailman/listinfo/tickets
