[Flow] only https

Dominique Feyer dfeyer at ttree.ch
Tue Aug 5 14:45:50 CEST 2014 

You can check this gist:
https://gist.github.com/dfeyer/ba502229e6d562f85646

The important part is 375

This modification is jacky, you can do that with AOP for production use.

That modification will build protocol relative URL for every resource or controller action.

Don’t know if their is some drawback, but base on a rapid test everything work for me.

+++

--   
ttree sàrl  
Dominique Feyer  
Rue du Valentin 34 et demi
CH - 1004 Lausanne
+41 21  312 36 35  
dfeyer at ttree.ch
ttree.ch - @ttreeagency - plan d’accès

Le 5 août 2014 à 13:18:27, Mira (mira at modifiziert.com) a écrit:

because if I visit my webpage with http and will be redirected https, the included files like js, css, so on are included in source-code via http.

the most browser displays an error message that they are included some unsecure elements.

by the way I have tried to redirect by webserver with htaccess already, but this does not work. please see previous mails for more info.

 

best wishes,

Mira

 
 
 
Dominique Feyer <dfeyer at ttree.ch> hat am 5. August 2014 um 13:03 geschrieben:

Why not setup nginx or apache to handle the redirect, is faster that having this kind of redirection in Flow, or any PHP framework, because the redirection happened before PHP is called.
 
for Nginx, per example:
 

server {
    listen      80;
    server_name signup.mysite.com;
    rewrite     ^   https://$server_name$request_uri? permanent;
}
-- 
ttree sàrl  
Dominique Feyer
Rue du Valentin 34 et demi
CH - 1004 Lausanne
+41 21  312 36 35
dfeyer at ttree.ch
ttree.ch - @ttreeagency -  plan d’accès

Le 5 août 2014 à 12:57:46, Mira (mira at modifiziert.com) a écrit:

 
unfortunately my problem isn't fixed yet.

I think it mustn't me redirected from port 80 to port 443, I think it is
necessary to say Flow to work globally in https-mode.
anybody know what I mean? that Flow link in source-code with https by default
and not with http.

I hope someone can help :-/





> Mira <mira at modifiziert.com> hat am 24. Juli 2014 um 16:04 geschrieben:
>
>
> yes. exact the same position and YOURDOMAIN i have changed to my domain
>
>
> > Timo Poppinga <poppinga at iljansoft.de> hat am 24. Juli 2014 um 15:59
> > geschrieben:
> >
> >
> > I also he’d it before.
> >
> > 1. did you put it at the same position like in the example
> > 2. Did you change YOURDOMAIN to your domain?
> >
> > bg
> >
> >
> >
> >
> > iljansoft
> > Timo Poppinga
> > Mobile: +49 175 2 40 50 90
> >
> > Inhaber: Timo Poppinga · Voßheider Str. 263 · 47574 Goch · E-Mail:
> > poppinga at iljansoft.de · www.iljansoft.de
> > USt-IdNr.: DE 261656040
> >
> >
> >
> >
> >
> >
> >
> >
> >
> > Am 24.07.2014 um 15:56 schrieb Mira <mira at modifiziert.com>:
> >
> > > thank you for the hint. but now i get this error from browser:
> > > ERR_TOO_MANY_REDIRECTS
> > >
> > >
> > >> Timo Poppinga <poppinga at iljansoft.de> hat am 24. Juli 2014 um 15:36
> > >> geschrieben:
> > >>
> > >>
> > >> Enter in the .htacces in the Web folder:
> > >>
> > >> RewriteCond %{SERVER_PORT} 80
> > >> RewriteRule ^(.*)$ https://YOURDOMAIN/$1 [R,L]
> > >>
> > >> This works by me:
> > >>
> > >> #
> > >> # TYPO3 Flow context setting
> > >> #
> > >>
> > >> # You can specify a default context by activating this option:
> > >> # SetEnv FLOW_CONTEXT Production
> > >>
> > >> # If the root path is not the parent of the Web directory,
> > >> # TYPO3 Flow's root path must be specified manually:
> > >> # SetEnv FLOW_ROOTPATH /var/www/myapp/
> > >>
> > >> #
> > >> # mod_rewrite configuration
> > >> #
> > >> <IfModule mod_rewrite.c>
> > >>
> > >> # Enable URL rewriting
> > >> RewriteEngine On
> > >>
> > >>
> > >> # Set flag so we know URL rewriting is available
> > >> SetEnv FLOW_REWRITEURLS 1
> > >>
> > >> RewriteCond %{SERVER_PORT} 80
> > >> RewriteRule ^(.*)$ https://YOURDOMAIN/$1 [R,L]
> > >>
> > >> # You will have to change the path in the following option if you
> > >> # experience problems while your installation is located in a
> > >> subdirectory
> > >> # of the website root.
> > >> RewriteBase /
> > >>
> > >> # Stop rewrite processing no matter if a package resource, robots.txt
> > >> etc.
> > >> exists or not
> > >> RewriteRule ^(_Resources/Packages/|robots\.txt|favicon\.ico) - [L]
> > >>
> > >> # Stop rewrite process if the path points to a static file anyway
> > >> RewriteCond %{REQUEST_FILENAME} -f [OR]
> > >> RewriteCond %{REQUEST_FILENAME} -l [OR]
> > >> RewriteCond %{REQUEST_FILENAME} -d
> > >> RewriteRule .* - [L]
> > >>
> > >> # Perform rewriting of persistent private resources
> > >> RewriteRule
> > >> ^(_Resources/Persistent/[a-z0-9]+/(.+/)?[a-f0-9]{40})/.+(\..+)
> > >> $1$3 [L]
> > >>
> > >> # Perform rewriting of persistent resource files
> > >> RewriteRule ^(_Resources/Persistent/.{40})/.+(\..+) $1$2 [L]
> > >>
> > >> # Make sure that not existing resources don't execute TYPO3 Flow
> > >> RewriteRule ^_Resources/.* - [L]
> > >>
> > >> # Continue only if the file/symlink/directory does not exist
> > >> RewriteRule (.*) index.php
> > >>
> > >>
> > >> </IfModule>
> > >>
> > >> <IfModule mod_negotiation.c>
> > >>
> > >> # prevents Apache's automatic file negotiation, it breaks resource URLs
> > >> Options -MultiViews
> > >>
> > >> </IfModule>
> > >>
> > >> <IfModule mod_setenvif.c>
> > >>
> > >> # Redirect authorization header when PHP is running as CGI
> > >> SetEnvIfNoCase Authorization "Basic ([a-zA-Z0-9\+/=]+)"
> > >> REMOTE_AUTHORIZATION=$1
> > >>
> > >> </IfModule>
> > >>
> > >> ErrorDocument 500 "<h1>Application Error</h1><p>The TYPO3 Flow
> > >> application
> > >> could not be launched.</p>“
> > >>
> > >>
> > >>
> > >> iljansoft
> > >> Timo Poppinga
> > >> Mobile: +49 175 2 40 50 90
> > >>
> > >> Inhaber: Timo Poppinga · Voßheider Str. 263 · 47574 Goch · E-Mail:
> > >> poppinga at iljansoft.de · www.iljansoft.de
> > >> USt-IdNr.: DE 261656040
> > >>
> > >>
> > >>
> > >>
> > >>
> > >>
> > >>
> > >>
> > >>
> > >> Am 24.07.2014 um 15:33 schrieb Freudenberg, Mira <mira at modifiziert.com>:
> > >>
> > >>> Hey,
> > >>>
> > >>> how can i configure my project so all pages are automatically viewed by
> > >>> https?
> > >>> If anyone visit the pages by http he should be redirect to https.
> > >>>
> > >>> I tried to add'@procotol': 'https' but it doesn't work :-(
> > >>>
> > >>> All resources included by flow are with http.. as well as i visit the
> > >>> page
> > >>> manually with https.
> > >>>
> > >>> best wishes
> > >>> _______________________________________________
> > >>> Flow mailing list
> > >>> Flow at lists.typo3.org
> > >>> http://lists.typo3.org/cgi-bin/mailman/listinfo/flow
> > >>
> > >>
> > > _______________________________________________
> > > Flow mailing list
> > > Flow at lists.typo3.org
> > > http://lists.typo3.org/cgi-bin/mailman/listinfo/flow
> >
> >
> _______________________________________________
> Flow mailing list
> Flow at lists.typo3.org
> http://lists.typo3.org/cgi-bin/mailman/listinfo/flow
_______________________________________________
Flow mailing list
Flow at lists.typo3.org
http://lists.typo3.org/cgi-bin/mailman/listinfo/flow

 

More information about the Flow mailing list