Comments on: Securing a URL with Zend Framework http://www.kfx2.com/blog/2009/08/securing-a-url-with-zend-framework/ Design and development news from K-fx² in Baton Rouge, Louisiana Sun, 05 Feb 2012 01:33:21 +0000 http://wordpress.org/?v=2.7.1 hourly 1 By: Schlimmer http://www.kfx2.com/blog/2009/08/securing-a-url-with-zend-framework/comment-page-1/#comment-208 Schlimmer Tue, 01 Mar 2011 00:01:19 +0000 http://www.kfx2.com/blog/?p=139#comment-208 Addition to my last comment: Some URLs cannot be redirected and must work on http and also https without further ado: AJAX-Requests, e.g. submitted by an auto suggest field being visible on all apges of a web application. So I additionally introduced ignore_ssl options. Addition to my last comment:
Some URLs cannot be redirected and must work on http and also https without further ado: AJAX-Requests, e.g. submitted by an auto suggest field being visible on all apges of a web application. So I additionally introduced ignore_ssl options.

]]> By: Schlimmer http://www.kfx2.com/blog/2009/08/securing-a-url-with-zend-framework/comment-page-1/#comment-206 Schlimmer Sat, 08 Jan 2011 10:58:55 +0000 http://www.kfx2.com/blog/?p=139#comment-206 Excellent idea and work! Thanks! Was nearly what I was looking for. My modifications: 1) $options = Zend_Controller_Front::getInstance()->getParam('bootstrap')->getOptions(); 2) Made an altered version of _secureUrl that takes a boolean extra parameter, signaling wether the url should be secure or not 3) Call this method in preDispatch with $shouldSecureUrl Result: Not secure-required urls are being redirected to the http equivalent. And that's what I needed. Excellent idea and work! Thanks!
Was nearly what I was looking for.
My modifications:
1) $options = Zend_Controller_Front::getInstance()->getParam(’bootstrap’)->getOptions();
2) Made an altered version of _secureUrl that takes a boolean extra parameter, signaling wether the url should be secure or not
3) Call this method in preDispatch with $shouldSecureUrl
Result: Not secure-required urls are being redirected to the http equivalent. And that’s what I needed.

]]> By: Edward Savage http://www.kfx2.com/blog/2009/08/securing-a-url-with-zend-framework/comment-page-1/#comment-175 Edward Savage Mon, 25 Oct 2010 16:15:35 +0000 http://www.kfx2.com/blog/?p=139#comment-175 Thanks for this, it was exactly what I was looking for. I made two modifications for my usage: 1) check a setting that indicates that the site has SSL 2) "un-secure" requests that are in SSL mode but not SSL routes Thanks for this, it was exactly what I was looking for. I made two modifications for my usage:
1) check a setting that indicates that the site has SSL
2) “un-secure” requests that are in SSL mode but not SSL routes

]]> By: neoraptor http://www.kfx2.com/blog/2009/08/securing-a-url-with-zend-framework/comment-page-1/#comment-139 neoraptor Tue, 15 Dec 2009 20:53:13 +0000 http://www.kfx2.com/blog/?p=139#comment-139 Hello, I would like to use this plugin for securing login, but I don't manage to make it work. I have the following structure : application > Bootstrap.php > config > controllers > IndexController.php > plugin > Custom_Controller_Plugin_Ssl.php My action login is in the IndexController. I don't know what you called module. I have added this line in application.ini : index.login.require_ssl = true And this line in the index.php (in public) to load the plugin : $loader = new Zend_Loader_PluginLoader(); $loader->addPrefixPath('Ssl_Helper', 'application/plugin/Custom_Controller_Plugin_Ssl.php'); Could you help me make your code work? Thank you for your time. Neoraptor Hello,
I would like to use this plugin for securing login, but I don’t manage to make it work.

I have the following structure :
application
> Bootstrap.php
> config
> controllers
> IndexController.php
> plugin
> Custom_Controller_Plugin_Ssl.php

My action login is in the IndexController.
I don’t know what you called module.

I have added this line in application.ini :
index.login.require_ssl = true

And this line in the index.php (in public) to load the plugin :
$loader = new Zend_Loader_PluginLoader();
$loader->addPrefixPath(’Ssl_Helper’, ‘application/plugin/Custom_Controller_Plugin_Ssl.php’);

Could you help me make your code work?

Thank you for your time.

Neoraptor

]]> By: Lance http://www.kfx2.com/blog/2009/08/securing-a-url-with-zend-framework/comment-page-1/#comment-137 Lance Tue, 22 Sep 2009 16:58:32 +0000 http://www.kfx2.com/blog/?p=139#comment-137 Good work man. Pulling the designation for which modules, conrollers, and actions to redirect out of the front controller plugin and into the config is a nice abstraction. Simplification to configuration options feels clean and efficient. Good work man. Pulling the designation for which modules, conrollers, and actions to redirect out of the front controller plugin and into the config is a nice abstraction. Simplification to configuration options feels clean and efficient.

]]>