Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: None
Affects Version/s: 4.0.0, 4.0.1rc1
Component/s: Misc
Labels:
None
Environment:

Operating System: Ubuntu Server 8.04.1, FreeBSD
PHP Version: 5.2.1+ (different servers)

Description

In all recent versions, including 4.0.0 and 4.0.2RC2, there's a problem with coming back from SSL zone to a plain HTTP zone (the redirection works fine in the opposite direction, though). After some investigation I found a way of making it work (at least for fresh 4.0.x installation with standard configuration):

In the file /kernel/classes/ezsslzone.php, method switchIfNeeded( $inSSL ), I replaced the following lines:

        if ( $nowSSL && !$inSSL )
        {
            // switch to plain HTTP
            $ini = eZINI::instance();
            $host = $ini->variable( 'SiteSettings', 'SiteURL' );
            $sslZoneRedirectionURL = "http://" . $host . $indexDir . $requestURI;
        }
        elseif ( !$nowSSL && $inSSL )
        {
            // switch to HTTPS
            $host = eZSys::serverVariable( 'HTTP_HOST' );
            $host = preg_replace( '/:\d+$/', '', $host );

            $ini = eZINI::instance();
            $sslPort = $ini->variable( 'SiteSettings', 'SSLPort' );
            $sslPortString = ( $sslPort == eZSSLZone::DEFAULT_SSL_PORT ) ? '' : ":$sslPort";
            $sslZoneRedirectionURL = "https://" . $host  . $sslPortString . $indexDir . $requestURI;
        }

        if ( $nowSSL && !$inSSL )
        {
            // switch to HTTP
            $host = eZSys::serverVariable( 'HTTP_HOST' );
            $host = preg_replace( '/:\d+$/', '', $host );
            
            $sslZoneRedirectionURL = "http://" . $host . $indexDir . $requestURI;
        }
        elseif ( !$nowSSL && $inSSL )
        {
            // switch to HTTPS
            $host = eZSys::serverVariable( 'HTTP_HOST' );
            $host = preg_replace( '/:\d+$/', '', $host );

            $ini = eZINI::instance();
            $sslPort = $ini->variable( 'SiteSettings', 'SSLPort' );
            $sslPortString = ( $sslPort == eZSSLZone::DEFAULT_SSL_PORT ) ? '' : ":$sslPort";
            $sslZoneRedirectionURL = "https://" . $host  . $sslPortString . $indexDir . $requestURI;
        }

I didn't quite understand why figuring out host name should take two different ways, depending on whether we're switching http->https or https->http...

It also caught my attention that eZSys::RequestURI() would have inconsistent value, this can be observed when jumping between SSL/nonSSL zones, with var_dump on the RequestURI. However, the above modifications turned out to be sufficient to cope with the problem (or at least it seems so right now).

It would be great to get work for 4.0.1!

Attachments

Issue Links

is duplicated by

EZP-17062 eZSSLZone switch is inconsistent

Closed

relates to

EZP-11707 SSL on user/login has buggy redirections

Closed

EZP-16546 Redirection to SLL through a proxy does not work

Closed

EZP-16155 ssl plugin interface

Closed

Activity

People

Assignee:: dp@ez.no

Reporter:: p.karas.grupaself

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 07/Aug/08 6:25 PM

Updated:: 17/Aug/12 7:02 PM

Resolved:: 07/Aug/12 12:51 PM