Use config site/sslproxy to force HTTPS (i.e. using reverse proxy to enable it)

Usage in config.php: $config['site']['sslproxy'] = true; Add this to documentation...
2016-02-10 01:05:02 +01:00 · 2016-02-10 01:05:02 +01:00 · a61235086b
parent ec257d940a
commit a61235086b
3 changed files with 6 additions and 3 deletions
--- a/index.php
+++ b/index.php
@ -266,10 +266,8 @@ function main()

    $args = $r->map($path);

-    $site_ssl = common_config('site', 'ssl');
-
    // If the request is HTTP and it should be HTTPS...
-    if ($site_ssl != 'never' && !GNUsocial::isHTTPS() && common_is_sensitive($args['action'])) {
+    if (GNUsocial::useHTTPS() && !GNUsocial::isHTTPS()) {
        common_redirect(common_local_url($args['action'], $args));
    }

--- a/lib/default.php
+++ b/lib/default.php
@ -56,6 +56,7 @@ $default =
              'inviteonly' => true,
              'private' => false,
              'ssl' => 'never',
+              'sslproxy' => false,   // set to true to force GNU social to think it is HTTPS (i.e. using reverse proxy to enable it)
              'sslserver' => null,
              'dupelimit' => 60, // default for same person saying the same thing
              'textlimit' => 1000, // in chars; 0 == no limit
--- a/lib/gnusocial.php
+++ b/lib/gnusocial.php
@ -426,6 +426,10 @@ class GNUsocial

    static function isHTTPS()
    {
+        if (common_config('site', 'sslproxy')) {
+            return true;
+        }
+
        // There are some exceptions to this; add them here!
        if (empty($_SERVER['HTTPS'])) {
            return false;