ILIAS  release_5-2 Revision v5.2.25-18-g3f80b828510
class.ilHTTPS.php
Go to the documentation of this file.
1<?php
2/* Copyright (c) 1998-2009 ILIAS open source, Extended GPL, see docs/LICENSE */
3
13class ilHTTPS
14{
15 const PROTOCOL_HTTP = 1;
16 const PROTOCOL_HTTPS = 2;
17
18 private static $instance = null;
19
20 protected $enabled = false;
21
22 protected $protected_classes = array();
23 protected $protected_scripts = array();
24
25 protected $automaticHTTPSDetectionEnabled = false;
26 protected $headerName = false;
27 protected $headerValue = false;
28
33 function __construct()
34 {
35 global $ilSetting, $ilIliasIniFile;
36
37 if($this->enabled = (bool)$ilSetting->get('https'))
38 {
39 $this->__readProtectedScripts();
40 $this->__readProtectedClasses();
41 }
42
43 if ($this->automaticHTTPSDetectionEnabled = (bool)$ilIliasIniFile->readVariable('https', "auto_https_detect_enabled"))
44 {
45 $this->headerName = $ilIliasIniFile->readVariable('https', "auto_https_detect_header_name");
46 $this->headerValue = $ilIliasIniFile->readVariable('https', "auto_https_detect_header_value");
47 }
48 }
49
54 public static function getInstance()
55 {
56 if(self::$instance)
57 {
58 return self::$instance;
59 }
60 return self::$instance = new ilHTTPS();
61 }
62
67 protected function shouldSwitchProtocol($to_protocol)
68 {
69 switch($to_protocol)
70 {
71 case self::PROTOCOL_HTTP:
72 $should_switch_to_http = (
73 !in_array(basename($_SERVER['SCRIPT_NAME']), $this->protected_scripts) &&
74 !in_array(strtolower($_GET['cmdClass']), $this->protected_classes)
75 ) && $_SERVER['HTTPS'] == 'on';
76
77 return $should_switch_to_http;
78 break;
79
80 case self::PROTOCOL_HTTPS:
81 $should_switch_to_https = (
82 in_array(basename($_SERVER['SCRIPT_NAME']), $this->protected_scripts) ||
83 in_array(strtolower($_GET['cmdClass']), $this->protected_classes)
84 ) && $_SERVER['HTTPS'] != 'on';
85
86 return $should_switch_to_https;
87 break;
88 }
89
90 return false;
91 }
92
98 function checkPort()
99 {
100 // if https is enabled for scripts or classes, check for redirection
101 if ($this->enabled)
102 {
103 if($this->shouldSwitchProtocol(self::PROTOCOL_HTTPS))
104 {
105 header("location: https://".$_SERVER["SERVER_NAME"].$_SERVER["REQUEST_URI"]);
106 exit;
107 }
108 if($this->shouldSwitchProtocol(self::PROTOCOL_HTTP))
109 {
110 header("location: http://".$_SERVER["SERVER_NAME"].$_SERVER["REQUEST_URI"]);
111 exit;
112 }
113 }
114 return true;
115 }
116
117 function __readProtectedScripts()
118 {
119 $this->protected_scripts[] = 'login.php';
120 $this->protected_scripts[] = 'index.php';
121 $this->protected_scripts[] = 'register.php';
122 // BEGIN WebDAV Use SSL for WebDAV.
123 $this->protected_scripts[] = 'webdav.php';
124 // END WebDAV Use SSL for WebDAV.
125 $this->protected_scripts[] = 'shib_login.php';
126
127 return true;
128 }
129
135 public function isDetected ()
136 {
137 if (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] == "on")
138 return true;
139
140 if ($this->automaticHTTPSDetectionEnabled)
141 {
142 $headerName = "HTTP_".str_replace("-","_", strtoupper($this->headerName));
143 /* echo $headerName;
144 echo $_SERVER[$headerName];*/
145 if (strcasecmp($_SERVER[$headerName],$this->headerValue)==0)
146 {
147 $_SERVER["HTTPS"] = "on";
148 return true;
149 }
150 /*
151 if(isset($_SERVER[$this->headerName]) && (strcasecmp($_SERVER[$this->headerName],$this->headerValue) == 0))
152 {
153 $_SERVER['HTTPS'] = 'on';
154 return true;
155 }
156 */
157 }
158
159 return false;
160 }
161
162 function __readProtectedClasses()
163 {
164 $this->protected_classes[] = 'ilstartupgui';
165 $this->protected_classes[] = 'ilaccountregistrationgui';
166 $this->protected_classes[] = 'ilpersonalsettingsgui';
167 }
168
174 public static function _checkHTTPS()
175 {
176 // only check standard port in the moment
177 $port = 443;
178
179 if(($sp = fsockopen($_SERVER["SERVER_NAME"],$port,$errno,$error)) === false)
180 {
181 return false;
182 }
183 fclose($sp);
184 return true;
185 }
192 function _checkHTTP()
193 {
194 $port = 80;
195
196 if(($sp = fsockopen($_SERVER["SERVER_NAME"],$port,$errno,$error)) === false)
197 {
198 return false;
199 }
200 fclose($sp);
201 return true;
202 }
203
211 public function enableSecureCookies()
212 {
213 global $ilLog,$ilClientIniFile;
214
215 $secure_disabled = $ilClientIniFile->readVariable('session','disable_secure_cookies');
216 if(!$secure_disabled and !$this->enabled and $this->isDetected() and !session_id())
217 {
218 #$ilLog->write(__CLASS__.': Enabled secure cookies');
219 session_set_cookie_params(
220 IL_COOKIE_EXPIRE, IL_COOKIE_PATH, IL_COOKIE_DOMAIN, true, IL_COOKIE_HTTPONLY
221 );
222 }
223 return true;
224 }
225}
226?>
$error
$error
Definition: Error.php:17
$_GET
$_GET["client_id"]
Definition: cfg.phpunit.template.php:12
php
An exception for terminatinating execution or to throw for unit testing.
ilHTTPS
HTTPS.
Definition: class.ilHTTPS.php:14
ilHTTPS\_checkHTTPS
static _checkHTTPS()
static method to check if https connections are possible for this server @access public
Definition: class.ilHTTPS.php:174
ilHTTPS\$instance
static $instance
Definition: class.ilHTTPS.php:18
ilHTTPS\checkPort
checkPort()
check if current port usage is right: if https should be used than redirection is done,...
Definition: class.ilHTTPS.php:98
ilHTTPS\_checkHTTP
_checkHTTP()
static method to check if http connections are possible for this server
Definition: class.ilHTTPS.php:192
ilHTTPS\getInstance
static getInstance()
Get https instance.
Definition: class.ilHTTPS.php:54
ilHTTPS\isDetected
isDetected()
check if https is detected
Definition: class.ilHTTPS.php:135
ilHTTPS\__readProtectedClasses
__readProtectedClasses()
Definition: class.ilHTTPS.php:162
ilHTTPS\enableSecureCookies
enableSecureCookies()
enable secure cookies
Definition: class.ilHTTPS.php:211
ilHTTPS\shouldSwitchProtocol
shouldSwitchProtocol($to_protocol)
Definition: class.ilHTTPS.php:67
ilHTTPS\$automaticHTTPSDetectionEnabled
$automaticHTTPSDetectionEnabled
Definition: class.ilHTTPS.php:25
ilHTTPS\__readProtectedScripts
__readProtectedScripts()
Definition: class.ilHTTPS.php:117
ilHTTPS\PROTOCOL_HTTPS
const PROTOCOL_HTTPS
Definition: class.ilHTTPS.php:16
ilHTTPS\__construct
__construct()
@deprected use ilHTTPS::getInstance()
Definition: class.ilHTTPS.php:33
ilHTTPS\PROTOCOL_HTTP
const PROTOCOL_HTTP
Definition: class.ilHTTPS.php:15
$ilLog
$ilLog
Definition: inc.setup_header.php:130
$ilSetting
global $ilSetting
Definition: privfeed.php:17
IL_COOKIE_PATH
const IL_COOKIE_PATH(isset($_GET["client_id"]))
Definition: index.php:26
$_SERVER
if((!isset($_SERVER['DOCUMENT_ROOT'])) OR(empty($_SERVER['DOCUMENT_ROOT']))) $_SERVER['DOCUMENT_ROOT']
Definition: tcpdf_autoconfig.php:54
$ilIliasIniFile
$ilIliasIniFile
Definition: imagemanager.php:34