d0/d8d/class_8ilHTTPS_8php_source.html

<?php

/* Copyright (c) 1998-2009 ILIAS open source, Extended GPL, see docs/LICENSE */


class ilHTTPS

{

    const PROTOCOL_HTTP = 1;

    const PROTOCOL_HTTPS = 2;


    private static $instance = null;


    protected $enabled = false;


    protected $protected_classes = array();

    protected $protected_scripts = array();


    protected $automaticHTTPSDetectionEnabled = false;

    protected $headerName = false;

    protected $headerValue = false;


    public function __construct()

    {

        global $ilSetting, $ilIliasIniFile;


        if ($this->enabled = (bool) $ilSetting->get('https')) {

            $this->__readProtectedScripts();

            $this->__readProtectedClasses();

        }


        if ($this->automaticHTTPSDetectionEnabled = (bool) $ilIliasIniFile->readVariable('https', "auto_https_detect_enabled")) {

            $this->headerName = $ilIliasIniFile->readVariable('https', "auto_https_detect_header_name");

            $this->headerValue = $ilIliasIniFile->readVariable('https', "auto_https_detect_header_value");

        }

    }


    public static function getInstance()

    {

        if (self::$instance) {

            return self::$instance;

        }

        return self::$instance = new ilHTTPS();

    }


    protected function shouldSwitchProtocol($to_protocol)

    {

        switch ($to_protocol) {

            case self::PROTOCOL_HTTP:

                $should_switch_to_http = (

                    !in_array(basename($_SERVER['SCRIPT_NAME']), $this->protected_scripts) &&

                    !in_array(strtolower($_GET['cmdClass']), $this->protected_classes)

                ) && $_SERVER['HTTPS'] == 'on';


                return $should_switch_to_http;

                break;


            case self::PROTOCOL_HTTPS:

                $should_switch_to_https = (

                    in_array(basename($_SERVER['SCRIPT_NAME']), $this->protected_scripts) ||

                    in_array(strtolower($_GET['cmdClass']), $this->protected_classes)

                ) && $_SERVER['HTTPS'] != 'on';


                return $should_switch_to_https;

                break;

        }


        return false;

    }


    public function checkPort()

    {

        // if https is enabled for scripts or classes, check for redirection

        if ($this->enabled) {

            if ($this->shouldSwitchProtocol(self::PROTOCOL_HTTPS)) {

                header("location: https://" . $_SERVER["SERVER_NAME"] . $_SERVER["REQUEST_URI"]);

                exit;

            }

            if ($this->shouldSwitchProtocol(self::PROTOCOL_HTTP)) {

                header("location: http://" . $_SERVER["SERVER_NAME"] . $_SERVER["REQUEST_URI"]);

                exit;

            }

        }

        return true;

    }


    public function __readProtectedScripts()

    {

        $this->protected_scripts[] = 'login.php';

        $this->protected_scripts[] = 'index.php';

        $this->protected_scripts[] = 'register.php';

        $this->protected_scripts[] = 'webdav.php';

        $this->protected_scripts[] = 'shib_login.php';


        return true;

    }


    public function isDetected()

    {

        if (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] == "on") {

            return true;

        }


        if ($this->automaticHTTPSDetectionEnabled) {

            $headerName = "HTTP_" . str_replace("-", "_", strtoupper($this->headerName));

            /* echo $headerName;

             echo $_SERVER[$headerName];*/

            if (strcasecmp($_SERVER[$headerName], $this->headerValue) == 0) {

                $_SERVER["HTTPS"] = "on";

                return true;

            }

            /*

            if(isset($_SERVER[$this->headerName]) && (strcasecmp($_SERVER[$this->headerName],$this->headerValue) == 0))

            {

                $_SERVER['HTTPS'] = 'on';

                return true;

            }

            */

        }


        return false;

    }


    public function __readProtectedClasses()

    {

        $this->protected_classes[] = 'ilstartupgui';

        $this->protected_classes[] = 'ilaccountregistrationgui';

        $this->protected_classes[] = 'ilpersonalsettingsgui';

    }


    public static function _checkHTTPS()

    {

        // only check standard port in the moment

        $port = 443;


        if (($sp = fsockopen($_SERVER["SERVER_NAME"], $port, $errno, $error)) === false) {

            return false;

        }

        fclose($sp);

        return true;

    }

    public function _checkHTTP()

    {

        $port = 80;


        if (($sp = fsockopen($_SERVER["SERVER_NAME"], $port, $errno, $error)) === false) {

            return false;

        }

        fclose($sp);

        return true;

    }


    public function enableSecureCookies()

    {

        global $ilClientIniFile;


        $secure_disabled = $ilClientIniFile->readVariable('session', 'disable_secure_cookies');

        if (!$secure_disabled && !$this->enabled && $this->isDetected() && !session_id()) {

            if (!defined('IL_COOKIE_SECURE')) {

                define('IL_COOKIE_SECURE', true);

            }


            session_set_cookie_params([

                'lifetime' => IL_COOKIE_EXPIRE,

                'path' => IL_COOKIE_PATH,

                'domain' => IL_COOKIE_DOMAIN,

                'secure' => true,

                'httponly' => IL_COOKIE_HTTPONLY,

            ]);

        }


        return true;

    }

}

$_GET
$_GET["client_id"]
Definition: cfg.phpunit.template.php:12

php
An exception for terminatinating execution or to throw for unit testing.

ilHTTPS
HTTPS.
Definition: class.ilHTTPS.php:14

ilHTTPS\_checkHTTPS
static _checkHTTPS()
static method to check if https connections are possible for this server @access public
Definition: class.ilHTTPS.php:164

ilHTTPS\$protected_scripts
$protected_scripts
Definition: class.ilHTTPS.php:23

ilHTTPS\$instance
static $instance
Definition: class.ilHTTPS.php:18

ilHTTPS\$protected_classes
$protected_classes
Definition: class.ilHTTPS.php:22

ilHTTPS\$headerName
$headerName
Definition: class.ilHTTPS.php:26

ilHTTPS\checkPort
checkPort()
check if current port usage is right: if https should be used than redirection is done,...
Definition: class.ilHTTPS.php:94

ilHTTPS\_checkHTTP
_checkHTTP()
static method to check if http connections are possible for this server
Definition: class.ilHTTPS.php:181

ilHTTPS\getInstance
static getInstance()
Get https instance.
Definition: class.ilHTTPS.php:52

ilHTTPS\isDetected
isDetected()
check if https is detected
Definition: class.ilHTTPS.php:126

ilHTTPS\__readProtectedClasses
__readProtectedClasses()
Definition: class.ilHTTPS.php:152

ilHTTPS\$headerValue
$headerValue
Definition: class.ilHTTPS.php:27

ilHTTPS\enableSecureCookies
enableSecureCookies()
enable secure cookies
Definition: class.ilHTTPS.php:199

ilHTTPS\shouldSwitchProtocol
shouldSwitchProtocol($to_protocol)
Definition: class.ilHTTPS.php:64

ilHTTPS\$automaticHTTPSDetectionEnabled
$automaticHTTPSDetectionEnabled
Definition: class.ilHTTPS.php:25

ilHTTPS\__readProtectedScripts
__readProtectedScripts()
Definition: class.ilHTTPS.php:110

ilHTTPS\$enabled
$enabled
Definition: class.ilHTTPS.php:20

ilHTTPS\PROTOCOL_HTTPS
const PROTOCOL_HTTPS
Definition: class.ilHTTPS.php:16

ilHTTPS\__construct
__construct()
@deprected use ilHTTPS::getInstance()
Definition: class.ilHTTPS.php:33

ilHTTPS\PROTOCOL_HTTP
const PROTOCOL_HTTP
Definition: class.ilHTTPS.php:15

$ilIliasIniFile
$ilIliasIniFile
Definition: imgupload.php:16

exit
exit
Definition: login.php:29

IL_COOKIE_PATH
const IL_COOKIE_PATH(isset($_GET["client_id"]))
Definition: metadata.php:47

$ilSetting
global $ilSetting
Definition: privfeed.php:17

$_SERVER
$_SERVER['HTTP_HOST']
Definition: raiseError.php:10