Thank you all for your replies. May I ask why someone said that hacking this in PHP is not a good idea? I have a "signup", "login" and "manage" pages/controllers that need to work under SSL, but other controllers over HTTP. I see no other way to implement this but to Hack this in PHP. Why is this not good?
Simon Mundy wrote: > > If it helps, here's a plugin I made to keep your controllers more tidy > (assuming you're using the Zend Framework MVC) and also retains the > current URI > > Just add this in your bootstrap:- > > $front = Zend_Controller_Front::getInstance(); > ...stuff... > $front->registerPlugin(new MyApp_Controller_Plugin_Ssl(true)); > > > ...and create this in your library structure for your app (assuming a > namespace of MyApp) > > class MyApp_Controller_Plugin_Ssl extends > Zend_Controller_Plugin_Abstract > { > protected $_ssl; > > public function __construct($enabled = true) > { > $this->_ssl = (BOOL) $enabled; > } > > public function preDispatch($action) > { > if ($this->_ssl) > if (!isset($_SERVER['HTTPS']) || > strtolower($_SERVER['HTTPS']) != 'on') { > header('Location: https://' . $_SERVER['SERVER_NAME'] > . $_SERVER['REQUEST_URI']); > exit; > } > } > return $action; > } > } > > HTH! > >> The SSL forcing can easily be created with the following code: >> >> <?php >> if ( !isset($_SERVER['HTTPS']) ) header('Location: >> https://www.yourdomain.com') >> ; >> ?> >> >> If you include this code at the beginning of your page this will >> force a SSL connection for that page. >> >> On Sat, Mar 22, 2008 at 6:44 AM, photo312 <[EMAIL PROTECTED]> wrote: >> >> You are correct. What I meant is - is there any functionality to force >> "https" over "http" or make only certain models or actions work >> only over >> SSL connections? >> >> >> >> Karl Katzke wrote: >> > >> > SSL is a function of your web *server*, such as apache or IIS, not >> of Zend >> > Framework. >> > >> > On Sat, Mar 22, 2008 at 12:29 AM, photo312 <[EMAIL PROTECTED]> >> wrote: >> > >> >> >> >> I would like to implement SSL with Zend Framework. Is there some >> built in >> >> code to handle this properly? >> >> -- >> >> View this message in context: >> >> >> http://www.nabble.com/Implementing-SSL-with-Zend-Framework-tp16216607s16154p16216607.html >> >> Sent from the Zend Framework mailing list archive at Nabble.com. >> >> >> >> >> > >> > >> >> -- >> View this message in context: >> http://www.nabble.com/Implementing-SSL-with-Zend-Framework-tp16216607s16154p16216688.html >> Sent from the Zend Framework mailing list archive at Nabble.com. >> >> >> >> >> -- >> Isaak Malik >> Web Developer >> [EMAIL PROTECTED] > > -- > > Simon Mundy | Director | PEPTOLAB > > """ " "" """""" "" "" """"""" " "" """"" " """"" " """""" "" " > > 202/258 Flinders Lane | Melbourne | Victoria | Australia | 3000 > Voice +61 (0) 3 9654 4324 | Mobile 0438 046 061 | Fax +61 (0) 3 9654 > 4124 > http://www.peptolab.com > > > -- View this message in context: http://www.nabble.com/Implementing-SSL-with-Zend-Framework-tp16216607s16154p16224266.html Sent from the Zend Framework mailing list archive at Nabble.com.