Overwrite host and webroot when forcessl is enabled by herbrechtsmeier · Pull Request #1872 · owncloud/core

herbrechtsmeier · 2013-02-23T12:43:50Z

This patch enables the use of forcessl together with a multiple domains
reverse SSL proxy (#1099) which have different hostname
and webroot for http and https access. The code assumes that the ssl
proxy (https) hostname and webroot is configured via overwritehost and
overwritewebroot.

karlitschek · 2013-02-23T14:20:52Z

looks good 👍

BernhardPosselt · 2013-02-23T16:52:36Z

Please dont use <>, use !== instead

But this is used all over the code or did you mean line number 17?

@Raydiation Should OC_Config::getValue always use !== instead of <> for strings?

Should I add a patch to this pull request or via separated pull request?

to the pull request.

This patch enables the use of forcessl together with a multiple domains reverse SSL proxy (owncloud#1099) which have different hostname and webroot for http and https access. The code assumes that the ssl proxy (https) hostname and webroot is configured via overwritehost and overwritewebroot.

The not equal comparison (<>) of a variable with an empty string could lead to false positive results as the compare do not check the type and thereby could not make sure that the checked variable is a string. The usage of the not identical comparison operator (!==) make sure that the variable is a string and not empty.

herbrechtsmeier · 2013-03-19T18:51:26Z

@Raydiation Is this pull request okay for you now?

bartv2 · 2013-04-24T12:05:33Z

looks good, but i would do the forcessl check in serverProtocol to make it clearer when the overwriteprotocol is returned

herbrechtsmeier · 2013-04-24T12:27:14Z

@bartv2 You need the forcessl check in all functions except serverProtocol because you need to use the overwrite values for the redirect. This is different for the protocol because it is used to detect http connections. But I can move this to the different functions if this is preferred.

bartv2 · 2013-04-24T14:01:34Z

@herbrechtsmeier hmm, will take an other look

bartv2 · 2013-04-26T12:10:42Z

I see when this would be usefull ...

Overwrite host and webroot when forcessl is enabled

herbrechtsmeier · 2013-05-15T10:36:50Z

This pull request should be back ported to stable5 to close #3048.

herbrechtsmeier · 2013-05-26T11:45:01Z

@bartv2 @karlitschek Is it possible to merged this patches into stable5?

karlitschek · 2013-05-26T11:53:08Z

@bartv2 What do you think?

Backport #1872

herbrechtsmeier mentioned this pull request Feb 23, 2013

Add security section to admin settings to enable the HTTPS enforcement #1150

Merged

BernhardPosselt reviewed Feb 23, 2013
View reviewed changes

herbrechtsmeier added 2 commits March 9, 2013 11:00

herbrechtsmeier mentioned this pull request Apr 24, 2013

Bad redirection when using OC via SSL-Proxy and enforcing HTTPS and trying non-encrypted connection #3048

Closed

VicDeo mentioned this pull request Apr 24, 2013

Updater: After successful Update: Redirected to wrong OC start page when using SSL proxy and HTTPS enforcement. #3055

Closed

bartv2 added a commit that referenced this pull request Apr 26, 2013

Merge pull request #1872 from herbrechtsmeier/forcessl-with-ssl-proxy

710acde

Overwrite host and webroot when forcessl is enabled

bartv2 merged commit 710acde into owncloud:master Apr 26, 2013

bartv2 mentioned this pull request Jun 28, 2013

Backport #1872 #3893

Merged

bartv2 added a commit that referenced this pull request Jul 8, 2013

Merge pull request #3893 from owncloud/backport_1872

3649137

Backport #1872

lock Bot locked as resolved and limited conversation to collaborators Aug 18, 2019

Conversation

herbrechtsmeier commented Feb 23, 2013

Uh oh!

karlitschek commented Feb 23, 2013

Uh oh!

BernhardPosselt Feb 23, 2013

Choose a reason for hiding this comment

Uh oh!

herbrechtsmeier Feb 23, 2013

Choose a reason for hiding this comment

Uh oh!

herbrechtsmeier Mar 5, 2013

Choose a reason for hiding this comment

Uh oh!

BernhardPosselt Mar 5, 2013

Choose a reason for hiding this comment

Uh oh!

herbrechtsmeier Mar 5, 2013

Choose a reason for hiding this comment

Uh oh!

BernhardPosselt Mar 5, 2013

Choose a reason for hiding this comment

Uh oh!

herbrechtsmeier commented Mar 19, 2013

Uh oh!

bartv2 commented Apr 24, 2013

Uh oh!

herbrechtsmeier commented Apr 24, 2013

Uh oh!

bartv2 commented Apr 24, 2013

Uh oh!

bartv2 commented Apr 26, 2013

Uh oh!

herbrechtsmeier commented May 15, 2013

Uh oh!

herbrechtsmeier commented May 26, 2013

Uh oh!

karlitschek commented May 26, 2013

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants