Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Sniff the scheme in FullyQualifiedRedirectMiddleware rather than hardcoding it to http #7

Open
wants to merge 5 commits into
base: master
Choose a base branch
from
Open

Sniff the scheme in FullyQualifiedRedirectMiddleware rather than hardcoding it to http #7

Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
f06f3b0
PEP8 Fixes
Jul 17, 2013
5a2b148
Add a method to sniff the ssl status of the request and use that sche…
Jul 17, 2013
ab03ea1
Be smarter about sniffing the scheme, using the settings based approa…
Jul 17, 2013
b684e45
Fix missing self parameter in request_is_secure method definition
Jul 17, 2013
941912c
Switch to using the parsed host from the request, rather than the cur…
Jul 30, 2013
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
32 changes: 27 additions & 5 deletions pylib/djangomiddleware/redirect_middleware.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,9 @@
import logging

from django.http import HttpResponseRedirect
from django.contrib.sites.models import Site
from django.conf import settings
from django.core.exceptions import ImproperlyConfigured


class FullyQualifiedRedirectMiddleware(object):
def process_response(self, request, response):
Expand All @@ -24,12 +26,32 @@ def process_response(self, request, response):
if not (parsed_location.scheme and parsed_location.netloc):
new_location = list(parsed_location)

# FIXME - we can do better than hardcoding this
new_location[0] = 'http'
new_location[1] = Site.objects.get_current().domain
new_location[0] = 'https' if self.request_is_secure(request) else 'http'
new_location[1] = request.get_host()
new_location[2] = urlparse.urljoin(request.META['PATH_INFO'], parsed_location.path)

response['Location'] = urlparse.urlunparse(new_location)

return response

def request_is_secure(self, request):
"""Check if a request is secure"""
# From Django 1.4 onwards request.is_secure() takes care of identifying
# secure requests forwarded via a proxy, by checking the header given
# in the SECURE_PROXY_SSL_HEADER setting.
# See: https://docs.djangoproject.com/en/1.4/ref/settings/#secure-proxy-ssl-header
# Older versions would always return false if the request was being
# forwarded by a proxy, since they would see only http.
# Therefore, we duplicate the functionality from:
# https://github.com/django/django/blob/master/django/http/request.py
# here, so that older versions can use the setting too.
# Remember to set it correctly!
if settings.SECURE_PROXY_SSL_HEADER:
try:
header, value = settings.SECURE_PROXY_SSL_HEADER
except ValueError:
raise ImproperlyConfigured('The SECURE_PROXY_SSL_HEADER setting must be a tuple containing two values.')
if request.META.get(header, None) == value:
return True
else:
return request.is_secure()