CRM-5325 Proxied SSL connections not being detected correctly

          Details

          • Type: Bug
          • Status: Done/Fixed
          • Priority: Minor
          • Resolution: Fixed/Completed
          • Affects Version/s: 3.0.1
          • Fix Version/s: 3.1
          • Component/s: Standalone CiviCRM
          • Labels:
            None

            Description

            Proxied SSL connections where SSL is terminated at a front-end server and the connection is proxied back to a PHP app server are not properly detected by CiviCRM. It assumes the connection is insecure because the one arriving on its server is. The community (mostly the Ruby on Rails guys) seems to be standardizing on sending the header below to the back-end servers when the original connection was secure:

            X_FORWARDED_PROTO=https

            CiviCRM used to look for a different header for this (something I added awhile back; or was at least sponsored by us), but it wasn't a standard, de facto or otherwise. And it appears it wasn't looking in the right place for it.

            I'll be committing a fix for this shortly.

              Attachments

                Activity

                [CRM-5325] Proxied SSL connections not being detected correctly
                Wes Morgan added a comment -

                Fixed in r24744 on trunk.

                Yashodha Chaku added a comment -

                assigning for 3.1 verification

                Sushant Paste added a comment -

                verified r-25831

                  People

                  • Assignee:
                    Sushant Paste
                    Reporter:
                    Wes Morgan

                    Dates

                    • Created:
                      Updated:
                      Resolved: