ILIAS  release_8 Revision v8.24
Public Member Functions | Data Fields | Protected Attributes | Private Member Functions
ilHTTPS Class Reference

This file is part of ILIAS, a powerful learning management system published by ILIAS open source e-Learning e.V. More...

+ Collaboration diagram for ilHTTPS:

Public Member Functions

 __construct ()
 
 isDetected ()
 check if https is detected More...
 
 checkHTTPS (int $port=443)
 
 enableSecureCookies ()
 
 checkProtocolAndRedirectIfNeeded ()
 

Data Fields

const SETTINGS_GROUP_SERVER = 'server'
 
const SETTING_HTTP_PATH = 'http_path'
 
const SETTINGS_GROUP_HTTPS = 'https'
 
const SETTING_AUTO_HTTPS_DETECT_ENABLED = "auto_https_detect_enabled"
 
const SETTING_AUTO_HTTPS_DETECT_HEADER_NAME = "auto_https_detect_header_name"
 
const SETTING_AUTO_HTTPS_DETECT_HEADER_VALUE = "auto_https_detect_header_value"
 
const SETTING_FORCED = 'forced'
 

Protected Attributes

const PROTOCOL_HTTP = 1
 
const PROTOCOL_HTTPS = 2
 
bool $enabled = false
 
array $protected_classes = []
 
array $protected_scripts = []
 
bool $automatic_detection = false
 
string $header_name = null
 
string $header_value = null
 
ilIniFile $ilias_ini
 
ilIniFile $client_ini
 

Private Member Functions

 readProtectedScripts ()
 
 readProtectedClasses ()
 
 shouldSwitchProtocol ($to_protocol)
 

Detailed Description

This file is part of ILIAS, a powerful learning management system published by ILIAS open source e-Learning e.V.

ILIAS is licensed with the GPL-3.0, see https://www.gnu.org/licenses/gpl-3.0.en.html You should have received a copy of said license along with the source code, too.

If this is not the case or you just want to try ILIAS, you'll find us at: https://www.ilias.de https://github.com/ILIAS-eLearning Class ilHTTPS

Author
Stefan Meyer meyer.nosp@m.@lei.nosp@m.fos.c.nosp@m.om 
     Find usages: (((DIC|GLOBALS)\[['"]https.*)|(global .* $https))

Definition at line 25 of file class.ilHTTPS.php.

Constructor & Destructor Documentation

◆ __construct()

ilHTTPS::__construct ( )

Definition at line 45 of file class.ilHTTPS.php.

46 {
47 global $DIC;
48 $this->ilias_ini = $DIC->iliasIni();
49 $this->client_ini = $DIC->clientIni();
50
51 if ($this->enabled = (bool) $this->ilias_ini->readVariable(
52 self::SETTINGS_GROUP_HTTPS,
53 self::SETTING_FORCED
54 )) {
55 $this->readProtectedScripts();
56 $this->readProtectedClasses();
57 }
58
59 if ($this->automatic_detection = (bool) $this->ilias_ini->readVariable(
60 self::SETTINGS_GROUP_HTTPS,
61 self::SETTING_AUTO_HTTPS_DETECT_ENABLED
62 )) {
63 $this->header_name = $this->ilias_ini->readVariable(
64 self::SETTINGS_GROUP_HTTPS,
65 self::SETTING_AUTO_HTTPS_DETECT_HEADER_NAME
66 );
67 $this->header_value = $this->ilias_ini->readVariable(
68 self::SETTINGS_GROUP_HTTPS,
69 self::SETTING_AUTO_HTTPS_DETECT_HEADER_VALUE
70 );
71 }
72 }
ilHTTPS\readProtectedScripts
readProtectedScripts()
Definition: class.ilHTTPS.php:74
ilHTTPS\readProtectedClasses
readProtectedClasses()
Definition: class.ilHTTPS.php:109
$DIC
global $DIC
Definition: feed.php:28

References $DIC, readProtectedClasses(), and readProtectedScripts().

+ Here is the call graph for this function:

Member Function Documentation

◆ checkHTTPS()

ilHTTPS::checkHTTPS ( int  $port = 443)

Definition at line 116 of file class.ilHTTPS.php.

116 : bool
117 {
118 if (($sp = fsockopen($_SERVER["SERVER_NAME"], $port, $errno, $error)) === false) {
119 return false;
120 }
121 fclose($sp);
122 return true;
123 }
$_SERVER
$_SERVER['HTTP_HOST']
Definition: raiseError.php:10

References $_SERVER.

◆ checkProtocolAndRedirectIfNeeded()

ilHTTPS::checkProtocolAndRedirectIfNeeded ( )

Definition at line 144 of file class.ilHTTPS.php.

144 : bool
145 {
146 // if https is enabled for scripts or classes, check for redirection
147 if ($this->enabled) {
148 if ($this->shouldSwitchProtocol(self::PROTOCOL_HTTPS)) {
149 header("location: https://" . $_SERVER["SERVER_NAME"] . $_SERVER["REQUEST_URI"]);
150 exit;
151 }
152 if ($this->shouldSwitchProtocol(self::PROTOCOL_HTTP)) {
153 header("location: http://" . $_SERVER["SERVER_NAME"] . $_SERVER["REQUEST_URI"]);
154 exit;
155 }
156 }
157 return true;
158 }
ilHTTPS\shouldSwitchProtocol
shouldSwitchProtocol($to_protocol)
Definition: class.ilHTTPS.php:160
exit
exit
Definition: login.php:28

References $_SERVER, exit, and shouldSwitchProtocol().

+ Here is the call graph for this function:

◆ enableSecureCookies()

ilHTTPS::enableSecureCookies ( )

Definition at line 125 of file class.ilHTTPS.php.

125 : void
126 {
127 $secure_disabled = (bool) $this->client_ini->readVariable('session', 'disable_secure_cookies');
128 if (!$secure_disabled && !$this->enabled && $this->isDetected() && !session_id()) {
129 if (!defined('IL_COOKIE_SECURE')) {
130 define('IL_COOKIE_SECURE', true);
131 }
132
133 session_set_cookie_params([
134 'lifetime' => IL_COOKIE_EXPIRE,
135 'path' => IL_COOKIE_PATH,
136 'domain' => IL_COOKIE_DOMAIN,
137 'secure' => IL_COOKIE_SECURE,
138 'httponly' => true,
139 'samesite' => (strtolower(session_get_cookie_params()['samesite'] ?? '')) === 'strict' ? session_get_cookie_params()['samesite'] : 'Lax'
140 ]);
141 }
142 }
ilHTTPS\isDetected
isDetected()
check if https is detected
Definition: class.ilHTTPS.php:88
IL_COOKIE_PATH
const IL_COOKIE_PATH(isset($_GET["client_id"]))
Definition: metadata.php:64

References IL_COOKIE_PATH, and isDetected().

+ Here is the call graph for this function:

◆ isDetected()

ilHTTPS::isDetected ( )

check if https is detected

Returns
bool, if https is detected by protocol or by automatic detection, if enabled, false otherwise

Definition at line 88 of file class.ilHTTPS.php.

88 : bool
89 {
90 if (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] === "on") {
91 return true;
92 }
93
94 if ($this->automatic_detection) {
95 $header_name = "HTTP_" . str_replace("-", "_", strtoupper($this->header_name));
96 /* echo $header_name;
97 echo $_SERVER[$header_name];*/
98 if (isset($_SERVER[$header_name])) {
99 if (strcasecmp($_SERVER[$header_name], $this->header_value) === 0) {
100 $_SERVER["HTTPS"] = "on";
101 return true;
102 }
103 }
104 }
105
106 return false;
107 }
ilHTTPS\$header_name
string $header_name
Definition: class.ilHTTPS.php:40

References $_SERVER, and $header_name.

Referenced by enableSecureCookies().

+ Here is the caller graph for this function:

◆ readProtectedClasses()

ilHTTPS::readProtectedClasses ( )
private

Definition at line 109 of file class.ilHTTPS.php.

109 : void
110 {
111 $this->protected_classes[] = 'ilstartupgui';
112 $this->protected_classes[] = 'ilaccountregistrationgui';
113 $this->protected_classes[] = 'ilpersonalsettingsgui';
114 }

Referenced by __construct().

+ Here is the caller graph for this function:

◆ readProtectedScripts()

ilHTTPS::readProtectedScripts ( )
private

Definition at line 74 of file class.ilHTTPS.php.

74 : void
75 {
76 $this->protected_scripts[] = 'login.php';
77 $this->protected_scripts[] = 'index.php';
78 $this->protected_scripts[] = 'register.php';
79 $this->protected_scripts[] = 'webdav.php';
80 $this->protected_scripts[] = 'shib_login.php';
81 }

Referenced by __construct().

+ Here is the caller graph for this function:

◆ shouldSwitchProtocol()

ilHTTPS::shouldSwitchProtocol (   $to_protocol)
private

Definition at line 160 of file class.ilHTTPS.php.

160 : bool
161 {
162 switch ($to_protocol) {
163 case self::PROTOCOL_HTTP:
164 return (
165 !in_array(basename($_SERVER['SCRIPT_NAME']), $this->protected_scripts) &&
166 !in_array(strtolower($_GET['cmdClass']), $this->protected_classes)
167 ) && $_SERVER['HTTPS'] === 'on';
168
169 case self::PROTOCOL_HTTPS:
170 return (
171 in_array(basename($_SERVER['SCRIPT_NAME']), $this->protected_scripts) ||
172 in_array(strtolower($_GET['cmdClass']), $this->protected_classes)
173 ) && $_SERVER['HTTPS'] !== 'on';
174 }
175
176 return false;
177 }
ilHTTPS\PROTOCOL_HTTPS
const PROTOCOL_HTTPS
Definition: class.ilHTTPS.php:28
ilHTTPS\PROTOCOL_HTTP
const PROTOCOL_HTTP
Definition: class.ilHTTPS.php:27
$_GET
$_GET['client_id']
Definition: saml1-acs.php:21

References $_GET, $_SERVER, PROTOCOL_HTTP, and PROTOCOL_HTTPS.

Referenced by checkProtocolAndRedirectIfNeeded().

+ Here is the caller graph for this function:

Field Documentation

◆ $automatic_detection

bool ilHTTPS::$automatic_detection = false
protected

Definition at line 39 of file class.ilHTTPS.php.

◆ $client_ini

ilIniFile ilHTTPS::$client_ini
protected

Definition at line 43 of file class.ilHTTPS.php.

◆ $enabled

bool ilHTTPS::$enabled = false
protected

Definition at line 36 of file class.ilHTTPS.php.

◆ $header_name

string ilHTTPS::$header_name = null
protected

Definition at line 40 of file class.ilHTTPS.php.

Referenced by isDetected().

◆ $header_value

string ilHTTPS::$header_value = null
protected

Definition at line 41 of file class.ilHTTPS.php.

◆ $ilias_ini

ilIniFile ilHTTPS::$ilias_ini
protected

Definition at line 42 of file class.ilHTTPS.php.

◆ $protected_classes

array ilHTTPS::$protected_classes = []
protected

Definition at line 37 of file class.ilHTTPS.php.

◆ $protected_scripts

array ilHTTPS::$protected_scripts = []
protected

Definition at line 38 of file class.ilHTTPS.php.

◆ PROTOCOL_HTTP

const ilHTTPS::PROTOCOL_HTTP = 1
protected

Definition at line 27 of file class.ilHTTPS.php.

Referenced by shouldSwitchProtocol().

◆ PROTOCOL_HTTPS

const ilHTTPS::PROTOCOL_HTTPS = 2
protected

Definition at line 28 of file class.ilHTTPS.php.

Referenced by shouldSwitchProtocol().

◆ SETTING_AUTO_HTTPS_DETECT_ENABLED

const ilHTTPS::SETTING_AUTO_HTTPS_DETECT_ENABLED = "auto_https_detect_enabled"

Definition at line 32 of file class.ilHTTPS.php.

Referenced by ilHttpConfigStoredObjective\achieve(), and ilHttpConfigStoredObjective\isApplicable().

◆ SETTING_AUTO_HTTPS_DETECT_HEADER_NAME

const ilHTTPS::SETTING_AUTO_HTTPS_DETECT_HEADER_NAME = "auto_https_detect_header_name"

Definition at line 33 of file class.ilHTTPS.php.

Referenced by ilHttpConfigStoredObjective\achieve(), and ilHttpConfigStoredObjective\isApplicable().

◆ SETTING_AUTO_HTTPS_DETECT_HEADER_VALUE

const ilHTTPS::SETTING_AUTO_HTTPS_DETECT_HEADER_VALUE = "auto_https_detect_header_value"

Definition at line 34 of file class.ilHTTPS.php.

Referenced by ilHttpConfigStoredObjective\achieve(), and ilHttpConfigStoredObjective\isApplicable().

◆ SETTING_FORCED

const ilHTTPS::SETTING_FORCED = 'forced'

Definition at line 35 of file class.ilHTTPS.php.

Referenced by ilHttpConfigStoredObjective\achieve(), and ilHttpConfigStoredObjective\isApplicable().

◆ SETTING_HTTP_PATH

const ilHTTPS::SETTING_HTTP_PATH = 'http_path'

Definition at line 30 of file class.ilHTTPS.php.

Referenced by ilHttpConfigStoredObjective\achieve(), and ilHttpConfigStoredObjective\isApplicable().

◆ SETTINGS_GROUP_HTTPS

const ilHTTPS::SETTINGS_GROUP_HTTPS = 'https'

Definition at line 31 of file class.ilHTTPS.php.

Referenced by ilHttpConfigStoredObjective\achieve(), and ilHttpConfigStoredObjective\isApplicable().

◆ SETTINGS_GROUP_SERVER

const ilHTTPS::SETTINGS_GROUP_SERVER = 'server'

Definition at line 29 of file class.ilHTTPS.php.

Referenced by ilHttpConfigStoredObjective\achieve(), and ilHttpConfigStoredObjective\isApplicable().

The documentation for this class was generated from the following file: