Merge branch 'master' of KKozlowski/tt-rss into master

7 years ago · 2cdef24888
parent 9fa3ae09a6 e234ac8dcb
commit 2cdef24888
3 changed files with 3 additions and 3 deletions
--- a/include/functions.php
+++ b/include/functions.php
@ -1782,7 +1782,7 @@
 	}

 	function is_server_https() {
-		return $_SERVER['HTTPS'] == 'on' || $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https';
+		return (!empty($_SERVER['HTTPS']) && ($_SERVER['HTTPS'] != 'off')) || $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https';
 	}

 	function is_prefix_https() {
--- a/include/sessions.php
+++ b/include/sessions.php
@ -12,7 +12,7 @@
 	$session_expire = min(2147483647 - time() - 1, max(SESSION_COOKIE_LIFETIME, 86400));
 	$session_name = (!defined('TTRSS_SESSION_NAME')) ? "ttrss_sid" : TTRSS_SESSION_NAME;

-	if (@$_SERVER['HTTPS'] == "on") {
+	if ((!empty($_SERVER['HTTPS']) && ($_SERVER['HTTPS'] != 'off')) || @$_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https') {
 		$session_name .= "_ssl";
 		ini_set("session.cookie_secure", true);
 	}
--- a/install/index.php
+++ b/install/index.php
@ -180,7 +180,7 @@
 	}

 	function is_server_https() {
-		return $_SERVER['HTTPS'] == 'on' || $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https';
+		return (!empty($_SERVER['HTTPS']) && ($_SERVER['HTTPS'] != 'off')) || $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https';
 	}

 	function make_self_url_path() {