|
41 | 41 | define('HTTPS_REDIRECT', true); |
42 | 42 |
|
43 | 43 |
|
| 44 | +/** |
| 45 | + * If true the framework will remove the 'www.' prefix from the domain name by redirecting to the domain without 'www.'. |
| 46 | + */ |
| 47 | +define('WWW_REDIRECT', true); |
| 48 | + |
| 49 | + |
44 | 50 | // Cookie settings for remembering users language |
45 | 51 | define('LANGUAGE_COOKIE_NAME', 'L'); // name of cookie to store users last visited language (empty or false to disable) |
46 | 52 | define('LANGUAGE_COOKIE_EXPIRE_SEC', 5184000); // 60 days |
|
110 | 116 | // INTERAL PROCESSING OF REQUESTS |
111 | 117 | // --------------------------------------------------------------------------------------- |
112 | 118 |
|
| 119 | +$IS_HTTPS = (isset($_SERVER['HTTPS']) && strtolower($_SERVER['HTTPS']) !== 'off') || |
| 120 | + (!empty($_SERVER['HTTP_X_FORWARDED_PROTO']) && strtolower($_SERVER['HTTP_X_FORWARDED_PROTO']) == 'https' || |
| 121 | + !empty($_SERVER['HTTP_X_FORWARDED_SSL']) && strtolower($_SERVER['HTTP_X_FORWARDED_SSL']) !== 'off'); |
| 122 | + |
| 123 | +// check if www. prefix should be removed |
| 124 | +if(WWW_REDIRECT && str_starts_with($_SERVER['SERVER_NAME'], 'www.') && empty($_POST)){ |
| 125 | + header("Location: ".(($IS_HTTPS || HTTPS_REDIRECT) ? 'https' : 'http'). |
| 126 | + "://".substr($_SERVER['SERVER_NAME'], 4).$_SERVER['REQUEST_URI'].(empty($_SERVER['QUERY_STRING']) ? '' : '?'.$_SERVER['QUERY_STRING'])); |
| 127 | + exit(0); |
| 128 | +} |
| 129 | + |
113 | 130 | // check if redirect to https is needed |
114 | | -if(HTTPS_REDIRECT && $_SERVER['REMOTE_ADDR'] !== "127.0.0.1" && $_SERVER['REMOTE_ADDR'] !== "::1" && !( |
115 | | - (isset($_SERVER['HTTPS']) && strtolower($_SERVER['HTTPS']) !== 'off') || |
116 | | - (!empty($_SERVER['HTTP_X_FORWARDED_PROTO']) && strtolower($_SERVER['HTTP_X_FORWARDED_PROTO']) == 'https' || |
117 | | - !empty($_SERVER['HTTP_X_FORWARDED_SSL']) && strtolower($_SERVER['HTTP_X_FORWARDED_SSL']) !== 'off') |
118 | | -)){ |
119 | | - header("Location: https://".$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI']); |
| 131 | +if(HTTPS_REDIRECT && $_SERVER['REMOTE_ADDR'] !== "127.0.0.1" && $_SERVER['REMOTE_ADDR'] !== "::1" && !$IS_HTTPS && empty($_POST)){ |
| 132 | + header("Location: https://".$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI'].(empty($_SERVER['QUERY_STRING']) ? '' : '?'.$_SERVER['QUERY_STRING'])); |
120 | 133 | exit(0); |
121 | 134 | } |
122 | 135 |
|
|
0 commit comments