« Previous | Next » 

Revision a5c33983

IDa5c3398363278a2c28fd67f4edca58f448c420a1
Parent c4b5ced6

Added by Bastian Waidelich almost 8 years ago

[BUGFIX] Respect X-Forwarded-Proto header consistently

The ``Http\Request`` currently only considers ``X-Forwarded-Proto``
headers in its isSecure() method.

With this change the header is checked in the constructor so that it
overrules the requested protocol if set.

Before::

GET http://acme.com:8080 HTTP/1.1
X-Forwarded-Proto: https
X-Forwarded-Port: 443

Generated URIs like ``http://acme.com:8080``. With this change the
result is ``https://acme.com``.

Change-Id: If12eee73208b29049d543a9563a3b42161b1f024
Fixes: #54453
Releases: 2.0, 2.1, master

  • added
  • modified
  • copied
  • renamed
  • deleted