Modify detection of HTTPS

michalbundyra · michalbundyra · commit ae3aec809b4d · 2019-07-11T08:36:29.000+01:00
This modifies the detection of HTTPS by checking whether the lower-case value of the HTTPS-key of the server variable equals 'on'. Before that checked whether the value did *not* match 'off' which meant that the nginx-default for non-HTTPS connections (which, according to the [documentation](http://nginx.org/en/docs/http/ngx_http_core_module.html#var_https) is an empty string) did in fact match and returned that the connection *is* encrypted. This fixes #362 # Conflicts: # src/functions/marshal_uri_from_sapi.php
diff --git a/src/functions/marshal_uri_from_sapi.php b/src/functions/marshal_uri_from_sapi.php
@@ -171,7 +171,7 @@ function marshalUriFromSapi(array $server, array $headers)
     } else {
         $https = false;
     }
-    if (($https && 'off' !== strtolower($https))
+    if (($https && 'on' === strtolower($https))
         || strtolower($getHeaderFromArray('x-forwarded-proto', $headers, false)) === 'https'
     ) {
         $scheme = 'https';

Original file line number	Diff line number	Diff line change
`@@ -171,7 +171,7 @@ function marshalUriFromSapi(array $server, array $headers)`
`171`	`171`	`} else {`
`172`	`172`	`$https = false;`
`173`	`173`	`}`
`174`		`- if (($https && 'off' !== strtolower($https))`
	`174`	`+ if (($https && 'on' === strtolower($https))`
`175`	`175`	`\|\| strtolower($getHeaderFromArray('x-forwarded-proto', $headers, false)) === 'https'`
`176`	`176`	`) {`
`177`	`177`	`$scheme = 'https';`