Samuel
Reputation: 49
How to force https in CakePHP without redirect from http?
I want to use https for my CakePHP application.
I found some articles explain how to force https in CakePHP ( http://blog.andolasoft.com/2013/07/ssl-authentication-using-security-component-in-cakephp.html )
But the problem is I'm using load balancer (AWS), so I faced with the problem if I use redirect (redirect loop).
Would anyone have experience with this issue?
How to force https in CakePHP without redirect from http ?
Thanks so much.
Upvotes: 1
Views: 3240
Answers (1)
Peter Denev
Reputation: 561
I use CakePHP 2 on server without https, but with activated cloudflare (with https). So CloudFlare give me https to the end user. This is what I have added to my /app/webroot/index.php to make it work:
function isSSL(){
if( !empty( $_SERVER['https'] ) )
return true;
if( !empty( $_SERVER['HTTP_X_FORWARDED_PROTO'] ) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https' )
return true;
return false;
}
define('IS_IN_PRODUCTION', 1);
if( !isSSL() && IS_IN_PRODUCTION > 0){
header("Location: https://" . $_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]);
exit();
}
I hope this can help!
Upvotes: 2
Related Questions
- cakephp and https redirects
- How to redirect domain from http to https using .htacces and cakephp
- .htaccess: Combine CakePHP rules with HTTPS redirect
- redirect in cakephp ssl site routes to http not https
- SSL Redirection in CakePHP
- Change CakePHP default redirect from HTTP to HTTPS?
- force https for certain pages in cakephp
- Best pratice for SSL in CakePHP
- Redirecting SSL to non-SSL after login authentication
- Cakephp how to redirect back to http protocol from https