| Server IP : 195.134.90.114 / Your IP : 216.73.216.86 Web Server : Apache/2.4.58 System : Linux nepub 6.8.0-88-generic #89-Ubuntu SMP PREEMPT_DYNAMIC Sat Oct 11 01:02:46 UTC 2025 x86_64 User : www-data ( 33) PHP Version : 8.2.30 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : OFF | Sudo : ON | Pkexec : OFF Directory : /var/www/html/public_html/lib/pkp/classes/security/authorization/ |
Upload File : |
<?php
/**
* @file classes/security/authorization/HttpsPolicy.inc.php
*
* Copyright (c) 2014-2021 Simon Fraser University
* Copyright (c) 2000-2021 John Willinsky
* Distributed under the GNU GPL v3. For full terms see the file docs/COPYING.
*
* @class HttpsPolicy
* @ingroup security_authorization
*
* @brief Class to control access to handler operations based on protocol.
*/
import('lib.pkp.classes.security.authorization.AuthorizationPolicy');
class HttpsPolicy extends AuthorizationPolicy {
/** @var PKPRequest */
var $_request;
/**
* Constructor
*
* @param $request PKPRequest
*/
function __construct($request) {
parent::__construct();
$this->_request = $request;
// Add advice
$callOnDeny = array($request, 'redirectSSL', array());
$this->setAdvice(AUTHORIZATION_ADVICE_CALL_ON_DENY, $callOnDeny);
}
//
// Implement template methods from AuthorizationPolicy
//
/**
* @see AuthorizationPolicy::applies()
*/
function applies() {
return (boolean)Config::getVar('security', 'force_ssl');
}
/**
* @see AuthorizationPolicy::effect()
*/
function effect() {
// Check the request protocol
if ($this->_request->getProtocol() == 'https') {
return AUTHORIZATION_PERMIT;
} else {
return AUTHORIZATION_DENY;
}
}
}