bug #698 Add RewriteRule (jeremy.derusse)

fabpot · fabpot · commit e22025fbeb99 · 2014-09-22T16:23:35.000+02:00
This PR was merged into the 2.3 branch. Discussion ---------- Add RewriteRule | Q | A | ------------- | --- | Bug fix? | yes | New feature? | no | BC breaks? | should not | Deprecations? | no | Tests pass? | yes | Fixed tickets | symfony/symfony#9295 | License | MIT | Doc PR | NA Actually, Apache does not sets "HTTP_AUTHORIZATION" on bearer authorizations. This PR applies Symfony's recommendations by using a .htaccess to rewrite this header. http://symfony.com/doc/current/cookbook/configuration/web_server_configuration.html Commits ------- 77ee2a8 Add RewriteRule
diff --git a/web/.htaccess b/web/.htaccess
@@ -18,6 +18,10 @@ DirectoryIndex app.php
     RewriteCond %{REQUEST_URI}::$1 ^(/.+)/(.*)::\2$
     RewriteRule ^(.*) - [E=BASE:%1]
 
+    # Sets the HTTP_AUTHORIZATION header removed by apache
+    RewriteCond %{HTTP:Authorization} .
+    RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
+
     # Redirect to URI without front controller to prevent duplicate content
     # (with and without `/app.php`). Only do this redirect on the initial
     # rewrite by Apache and not on subsequent cycles. Otherwise we would get an
