- Option 'force_https' replaced by 'force_https' plugin

- added option 'force_https_port' in 'force_https' plugin (#1486091)
author: alecpl <alec@alec.pl> 2009-10-13 08:40:21 +0000
committer: alecpl <alec@alec.pl> 2009-10-13 08:40:21 +0000
commit: 65c0a0e591d917e87d54f499f9b25da522746aed (patch)
tree: d32ec876aabb1b1c0279b0da11a0370b47420d3f /plugins
parent: f281242fa41160daca6f2a4775d6f5dedd61a946 (diff)
1 files changed, 38 insertions, 0 deletions
diff --git a/plugins/force_https/force_https.php b/plugins/force_https/force_https.php
new file mode 100644
index 000000000..67552570e
--- /dev/null
+++ b/plugins/force_https/force_https.php
@@ -0,0 +1,38 @@
+<?php
+
+/**
+ * Enforce secure HTTPs connection for login
+ *
+ * Configuration:
+ * // Port for https connection
+ * $rcmail_config['force_https_port'] = 443;
+ *
+ * @version 1.0
+ * @author Aleksander 'A.L.E.C' Machniak <alec@alec.pl>
+ */
+class force_https extends rcube_plugin
+{
+  function init()
+  {
+    $this->add_hook('startup', array($this, 'redirect'));
+  }
+
+  function redirect($args)
+  {
+    $config = rcmail::get_instance()->config;
+    
+    $port = (int) $config->get('force_https_port', 443);
+
+    // check if https is required (for login) and redirect if necessary
+    if (empty($_SESSION['user_id']) && !$config->get('use_https')
+	&& (!isset($_SERVER['HTTPS']) || $_SERVER['SERVER_PORT'] != $port))
+    {
+      header('Location: https://' . $_SERVER['HTTP_HOST'] . ($port != 443 ? ":$port" : '') . $_SERVER['REQUEST_URI']);
+      exit;
+    }
+	
+    return $args;
+  }
+}
+
+?>
author	alecpl <alec@alec.pl>	2009-10-13 08:40:21 +0000
committer	alecpl <alec@alec.pl>	2009-10-13 08:40:21 +0000
commit	65c0a0e591d917e87d54f499f9b25da522746aed (patch)
tree	d32ec876aabb1b1c0279b0da11a0370b47420d3f /plugins
parent	f281242fa41160daca6f2a4775d6f5dedd61a946 (diff)