-
Notifications
You must be signed in to change notification settings - Fork 1
/
ForceHttpsPlugin.php
57 lines (52 loc) · 1.66 KB
/
ForceHttpsPlugin.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
<?php
/**
* force https plugin - a plugin to make sure that https is used
*
* Checks the URL and make sure that we are using https
*
* @author Alejandro Liu Ly
* @link https://www.linkedin.com/in/alejandro-liu-ly/
* @license http://opensource.org/licenses/MIT The MIT License
* @version 1.0.0
*/
final class ForceHttpsPlugin extends AbstractPicoPlugin
{
/**
* This plugin is enabled by default?
*
* @see AbstractPicoPlugin::$enabled
* @var boolean
*/
protected $enabled = true;
/**
* This plugin depends on ...
*
* @see AbstractPicoPlugin::$dependsOn
* @var string[]
*/
protected $dependsOn = array();
/**
* Triggered after Pico has evaluated the request URL
*
* @see Pico::getRequestUrl()
* @param string &$url part of the URL describing the requested contents
* @return void
*/
public function onRequestUrl(&$url)
{
if ($this->is_ssl()) return;
$new_uri = 'https://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'];
header('Location: '.$new_uri);
echo 'Redirecting to <a href="'.$new_uri.'">'.$new_uri.'</a>';
exit;
}
private function is_ssl() {
if (isset($_SERVER['HTTPS'])) {
if ('on' == strtolower($_SERVER['HTTPS']) || '1' == $_SERVER['HTTPS'] ) return true;
}
if (isset($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https') return true;
if (isset($_SERVER['HTTP_X_FORWARDED_SSL']) && $_SERVER['HTTP_X_FORWARDED_SSL'] == 'on') return true;
if (isset($_SERVER['REQUEST_SCHEME']) && $_SERVER['REQUEST_SCHEME'] == 'https') return true;
return false;
}
}