ilHTTPS Class Reference

HTTPS. More...

Collaboration diagram for ilHTTPS:

Public Member Functions
	__construct ()
	@deprected use ilHTTPS::getInstance() More...
	checkPort ()
	check if current port usage is right: if https should be used than redirection is done, to http otherwise. More...
	__readProtectedScripts ()
	isDetected ()
	check if https is detected More...
	__readProtectedClasses ()
	_checkHTTP ()
	static method to check if http connections are possible for this server More...
	enableSecureCookies ()
	enable secure cookies More...

Static Public Member Functions
static	getInstance ()
	Get https instance. More...
static	_checkHTTPS ()
	static method to check if https connections are possible for this server @access public More...

Data Fields
const	PROTOCOL_HTTP = 1
const	PROTOCOL_HTTPS = 2

Protected Member Functions
	shouldSwitchProtocol ($to_protocol)

Protected Attributes
	$enabled = false
	$protected_classes = array()
	$protected_scripts = array()
	$automaticHTTPSDetectionEnabled = false
	$headerName = false
	$headerValue = false

Static Private Attributes
static	$instance = null

Detailed Description

HTTPS.

Author

Stefan Meyer meyer.nosp@m.@lei.nosp@m.fos.c.nosp@m.om

Version

$Id$

Definition at line 13 of file class.ilHTTPS.php.

Constructor & Destructor Documentation

__construct()

ilHTTPS::__construct

(

)

@deprected use ilHTTPS::getInstance()

Returns

Definition at line 33 of file class.ilHTTPS.php.

    {
        global $ilSetting, $ilIliasIniFile;
 
        if ($this->enabled = (bool) $ilSetting->get('https')) {
            $this->__readProtectedScripts();
            $this->__readProtectedClasses();
        }
 
        if ($this->automaticHTTPSDetectionEnabled = (bool) $ilIliasIniFile->readVariable('https', "auto_https_detect_enabled")) {
            $this->headerName = $ilIliasIniFile->readVariable('https', "auto_https_detect_header_name");
            $this->headerValue = $ilIliasIniFile->readVariable('https', "auto_https_detect_header_value");
        }
    }

References $ilIliasIniFile, $ilSetting, __readProtectedClasses(), and __readProtectedScripts().

Here is the call graph for this function:

Member Function Documentation

__readProtectedClasses()

ilHTTPS::__readProtectedClasses

(

)

Definition at line 152 of file class.ilHTTPS.php.

    {
        $this->protected_classes[] = 'ilstartupgui';
        $this->protected_classes[] = 'ilaccountregistrationgui';
        $this->protected_classes[] = 'ilpersonalsettingsgui';
    }

Referenced by __construct().

Here is the caller graph for this function:

__readProtectedScripts()

ilHTTPS::__readProtectedScripts

(

)

Definition at line 110 of file class.ilHTTPS.php.

    {
        $this->protected_scripts[] = 'login.php';
        $this->protected_scripts[] = 'index.php';
        $this->protected_scripts[] = 'register.php';
        $this->protected_scripts[] = 'webdav.php';
        $this->protected_scripts[] = 'shib_login.php';
        
        return true;
    }

Referenced by __construct().

Here is the caller graph for this function:

_checkHTTP()

ilHTTPS::_checkHTTP

(

)

static method to check if http connections are possible for this server

@access public

Returns

boolean

Definition at line 181 of file class.ilHTTPS.php.

    {
        $port = 80;
 
        if (($sp = fsockopen($_SERVER["SERVER_NAME"], $port, $errno, $error)) === false) {
            return false;
        }
        fclose($sp);
        return true;
    }

References $_SERVER.

_checkHTTPS()

static ilHTTPS::_checkHTTPS ( )

static

static method to check if https connections are possible for this server @access public

Returns

boolean

Definition at line 164 of file class.ilHTTPS.php.

    {
        // only check standard port in the moment
        $port = 443;
 
        if (($sp = fsockopen($_SERVER["SERVER_NAME"], $port, $errno, $error)) === false) {
            return false;
        }
        fclose($sp);
        return true;
    }

References $_SERVER.

Referenced by ilSecuritySettings\validate().

Here is the caller graph for this function:

checkPort()

ilHTTPS::checkPort

(

)

check if current port usage is right: if https should be used than redirection is done, to http otherwise.

Returns

unknown

Definition at line 94 of file class.ilHTTPS.php.

    {
        // if https is enabled for scripts or classes, check for redirection
        if ($this->enabled) {
            if ($this->shouldSwitchProtocol(self::PROTOCOL_HTTPS)) {
                header("location: https://" . $_SERVER["SERVER_NAME"] . $_SERVER["REQUEST_URI"]);
                exit;
            }
            if ($this->shouldSwitchProtocol(self::PROTOCOL_HTTP)) {
                header("location: http://" . $_SERVER["SERVER_NAME"] . $_SERVER["REQUEST_URI"]);
                exit;
            }
        }
        return true;
    }

References $_SERVER, exit, and shouldSwitchProtocol().

Here is the call graph for this function:

enableSecureCookies()

ilHTTPS::enableSecureCookies

(

)

enable secure cookies

@access public

Parameters

return

Definition at line 199 of file class.ilHTTPS.php.

    {
        global $ilClientIniFile;
 
        $secure_disabled = $ilClientIniFile->readVariable('session', 'disable_secure_cookies');
        if (!$secure_disabled && !$this->enabled && $this->isDetected() && !session_id()) {
            if (!defined('IL_COOKIE_SECURE')) {
                define('IL_COOKIE_SECURE', true);
            }
 
            session_set_cookie_params([
                'lifetime' => IL_COOKIE_EXPIRE,
                'path' => IL_COOKIE_PATH,
                'domain' => IL_COOKIE_DOMAIN,
                'secure' => true,
                'httponly' => IL_COOKIE_HTTPONLY,
            ]);
        }
 
        return true;
    }

References IL_COOKIE_PATH, and isDetected().

Here is the call graph for this function:

getInstance()

static ilHTTPS::getInstance ( )

static

Get https instance.

Returns

Definition at line 52 of file class.ilHTTPS.php.

    {
        if (self::$instance) {
            return self::$instance;
        }
        return self::$instance = new ilHTTPS();
    }

References $instance.

Referenced by ilUtil\deliverData(), and ilInitialisation\setSessionCookieParams().

Here is the caller graph for this function:

isDetected()

ilHTTPS::isDetected

(

)

check if https is detected

Returns

boolean true, if https is detected by protocol or by automatic detection, if enabled, false otherwise

Definition at line 126 of file class.ilHTTPS.php.

    {
        if (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] == "on") {
            return true;
        }
 
        if ($this->automaticHTTPSDetectionEnabled) {
            $headerName = "HTTP_" . str_replace("-", "_", strtoupper($this->headerName));
            /* echo $headerName;
             echo $_SERVER[$headerName];*/
            if (strcasecmp($_SERVER[$headerName], $this->headerValue) == 0) {
                $_SERVER["HTTPS"] = "on";
                return true;
            }
            /*
            if(isset($_SERVER[$this->headerName]) && (strcasecmp($_SERVER[$this->headerName],$this->headerValue) == 0))
            {
                $_SERVER['HTTPS'] = 'on';
                return true;
            }
            */
        }
 
        return false;
    }

References $_SERVER, and $headerName.

Referenced by enableSecureCookies().

Here is the caller graph for this function:

shouldSwitchProtocol()

ilHTTPS::shouldSwitchProtocol (   $to_protocol )

protected

Parameters

bool

$to_protocol

Returns

bool

Definition at line 64 of file class.ilHTTPS.php.

    {
        switch ($to_protocol) {
            case self::PROTOCOL_HTTP:
                $should_switch_to_http = (
                    !in_array(basename($_SERVER['SCRIPT_NAME']), $this->protected_scripts) &&
                    !in_array(strtolower($_GET['cmdClass']), $this->protected_classes)
                ) && $_SERVER['HTTPS'] == 'on';
 
                return $should_switch_to_http;
                break;
 
            case self::PROTOCOL_HTTPS:
                $should_switch_to_https = (
                    in_array(basename($_SERVER['SCRIPT_NAME']), $this->protected_scripts) ||
                    in_array(strtolower($_GET['cmdClass']), $this->protected_classes)
                ) && $_SERVER['HTTPS'] != 'on';
 
                return $should_switch_to_https;
                break;
        }
 
        return false;
    }

References $_GET, $_SERVER, PROTOCOL_HTTP, and PROTOCOL_HTTPS.

Referenced by checkPort().

Here is the caller graph for this function:

Field Documentation

$automaticHTTPSDetectionEnabled

ilHTTPS::$automaticHTTPSDetectionEnabled = false

protected

Definition at line 25 of file class.ilHTTPS.php.

$enabled

ilHTTPS::$enabled = false

protected

Definition at line 20 of file class.ilHTTPS.php.

$headerName

ilHTTPS::$headerName = false

protected

Definition at line 26 of file class.ilHTTPS.php.

Referenced by isDetected().

$headerValue

ilHTTPS::$headerValue = false

protected

Definition at line 27 of file class.ilHTTPS.php.

$instance

ilHTTPS::$instance = null

staticprivate

Definition at line 18 of file class.ilHTTPS.php.

Referenced by getInstance().

$protected_classes

ilHTTPS::$protected_classes = array()

protected

Definition at line 22 of file class.ilHTTPS.php.

$protected_scripts

ilHTTPS::$protected_scripts = array()

protected

Definition at line 23 of file class.ilHTTPS.php.

PROTOCOL_HTTP

const ilHTTPS::PROTOCOL_HTTP = 1

Definition at line 15 of file class.ilHTTPS.php.

Referenced by shouldSwitchProtocol().

PROTOCOL_HTTPS

const ilHTTPS::PROTOCOL_HTTPS = 2

Definition at line 16 of file class.ilHTTPS.php.

Referenced by shouldSwitchProtocol().

---

The documentation for this class was generated from the following file:

• Services/Http/classes/class.ilHTTPS.php