Posted By

dalethedeveloper on 01/27/10

Tagged

Versions (?)

Last Edited at 01/27/10 03:35pm

Statistics

Viewed 493 times

Favorited by 0 user(s)

Related snippets

SilverStripe SSL switching by statics

/ Published in: PHP

A little function I add to the base Page_Controller class that allows you to define what actions are explicitly SSL. It will put users in SSL when they access it and take them out of it when they navigate somewhere else. It is available in any controllers that extend Page_Controller.

Be sure to add `$this->_checkSSL();` to the Page_Controller's `init()` function.

Expand | Embed | Plain Text

Copy this code and paste it in your HTML

protected function _checkSSL() {
		$needSSL = $inSSL = $destURL = false;
		$inSSL = ( isset($_SERVER['SSL']) || (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] == 'on') ) ? true : false;
 
		// Get static $ssl_actions and see if we need to switch in or out of SSL
		if($all_ssl_actions = Object::combined_static($this, 'ssl_actions') and is_array($all_ssl_actions) ) {
			$action = $this->getRequest()->latestParam('Action');	//  $this->getAction() always empty??
			if( in_array($action,$all_ssl_actions) or
				(in_array('index',$all_ssl_actions) and is_null($action) )	) {
				$needSSL = true;
			}
		}
 
		if( $needSSL and !$inSSL ){
			$destURL = str_replace('http:','https:', Director::absoluteURL($_SERVER['REQUEST_URI']));
		} elseif( !$needSSL and $inSSL ) {
			$destURL = str_replace('https:','http:', Director::absoluteURL($_SERVER['REQUEST_URI']));
		}
 
		if( $destURL ) {
			header("Location: $destURL", true, 301);
			die('<h1>Your browser is not accepting header redirects</h1><p>Please <a href="'.$destURL.'">click here</a>');
		}
	}

Report this snippet Tweet

Comments

Subscribe to comments

Comment:

You need to login to post a comment.