##// END OF EJS Templates
better logging
better logging

File last commit:

r3359:c394a564 beta
r3545:e2fad0c6 beta
Show More
https_fixup.py
71 lines | 2.5 KiB | text/x-python | PythonLexer
code docs, updates
r903 # -*- coding: utf-8 -*-
"""
rhodecode.lib.middleware.https_fixup
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
middleware to handle https correctly
source code cleanup: remove trailing white space, normalize file endings
r1203
code docs, updates
r903 :created_on: May 23, 2010
:author: marcink
2012 copyrights
r1824 :copyright: (C) 2010-2012 Marcin Kuzminski <marcin@python-works.com>
code docs, updates
r903 :license: GPLv3, see COPYING for more details.
"""
fixed license issue #149
r1206 # This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
source code cleanup: remove trailing white space, normalize file endings
r1203 #
renamed project to rhodecode
r547 # This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
source code cleanup: remove trailing white space, normalize file endings
r1203 #
renamed project to rhodecode
r547 # You should have received a copy of the GNU General Public License
fixed license issue #149
r1206 # along with this program. If not, see <http://www.gnu.org/licenses/>.
renamed project to rhodecode
r547
added HSTS headers when using SSL for RhodeCode
r3238 from pylons.controllers.util import Request
utils/conf...
r2109 from rhodecode.lib.utils2 import str2bool
Added force https option into config files
r914
pep8ify middlewares
r1275
renamed project to rhodecode
r547 class HttpsFixup(object):
pep8ify middlewares
r1275
Added force https option into config files
r914 def __init__(self, app, config):
renamed project to rhodecode
r547 self.application = app
Added force https option into config files
r914 self.config = config
code docs, updates
r903
renamed project to rhodecode
r547 def __call__(self, environ, start_response):
self.__fixup(environ)
make the htsts headers optional and stored in .ini file....
r3359 debug = str2bool(self.config.get('debug'))
if str2bool(self.config.get('use_htsts')) and not debug:
req = Request(environ, self.application)
resp = req.get_response(self.application)
if environ['wsgi.url_scheme'] == 'https':
resp.headers['Strict-Transport-Security'] = \
'max-age=8640000; includeSubDomains'
return resp(environ, start_response)
return self.application(environ, start_response)
code docs, updates
r903
renamed project to rhodecode
r547 def __fixup(self, environ):
pep8ify middlewares
r1275 """
Function to fixup the environ as needed. In order to use this
source code cleanup: remove trailing white space, normalize file endings
r1203 middleware you should set this header inside your
renamed project to rhodecode
r547 proxy ie. nginx, apache etc.
"""
Implementes #509 require SSL flag now works for both git and mercurial....
r2668 # DETECT PROTOCOL !
if 'HTTP_X_URL_SCHEME' in environ:
proto = environ.get('HTTP_X_URL_SCHEME')
elif 'HTTP_X_FORWARDED_SCHEME' in environ:
proto = environ.get('HTTP_X_FORWARDED_SCHEME')
elif 'HTTP_X_FORWARDED_PROTO' in environ:
proto = environ.get('HTTP_X_FORWARDED_PROTO')
else:
proto = 'http'
org_proto = proto
code docs, updates
r903
Implementes #509 require SSL flag now works for both git and mercurial....
r2668 # if we have force, just override
Added force https option into config files
r914 if str2bool(self.config.get('force_https')):
proto = 'https'
extended https fixup middleware.
r2054
Implementes #509 require SSL flag now works for both git and mercurial....
r2668 environ['wsgi.url_scheme'] = proto
environ['wsgi._org_proto'] = org_proto