| [ Index ] |
PHP Cross Reference of phpBB-3.2.11-deutsch |
[Summary view] [Print] [Text view]
1 <?php 2 3 /* 4 * This file is part of the Symfony package. 5 * 6 * (c) Fabien Potencier <fabien@symfony.com> 7 * 8 * For the full copyright and license information, please view the LICENSE 9 * file that was distributed with this source code. 10 */ 11 12 namespace Symfony\Component\HttpKernel\HttpCache; 13 14 use Symfony\Component\HttpFoundation\IpUtils; 15 use Symfony\Component\HttpFoundation\Request; 16 use Symfony\Component\HttpFoundation\Response; 17 use Symfony\Component\HttpKernel\HttpKernelInterface; 18 19 /** 20 * @author Nicolas Grekas <p@tchwork.com> 21 * 22 * @internal 23 */ 24 class SubRequestHandler 25 { 26 /** 27 * @return Response 28 */ 29 public static function handle(HttpKernelInterface $kernel, Request $request, $type, $catch) 30 { 31 // save global state related to trusted headers and proxies 32 $trustedProxies = Request::getTrustedProxies(); 33 $trustedHeaders = array( 34 Request::HEADER_FORWARDED => Request::getTrustedHeaderName(Request::HEADER_FORWARDED), 35 Request::HEADER_CLIENT_IP => Request::getTrustedHeaderName(Request::HEADER_CLIENT_IP), 36 Request::HEADER_CLIENT_HOST => Request::getTrustedHeaderName(Request::HEADER_CLIENT_HOST), 37 Request::HEADER_CLIENT_PROTO => Request::getTrustedHeaderName(Request::HEADER_CLIENT_PROTO), 38 Request::HEADER_CLIENT_PORT => Request::getTrustedHeaderName(Request::HEADER_CLIENT_PORT), 39 ); 40 41 // remove untrusted values 42 $remoteAddr = $request->server->get('REMOTE_ADDR'); 43 if (!IpUtils::checkIp($remoteAddr, $trustedProxies)) { 44 foreach (array_filter($trustedHeaders) as $name) { 45 $request->headers->remove($name); 46 $request->server->remove('HTTP_'.strtoupper(str_replace('-', '_', $name))); 47 } 48 } 49 50 // compute trusted values, taking any trusted proxies into account 51 $trustedIps = array(); 52 $trustedValues = array(); 53 foreach (array_reverse($request->getClientIps()) as $ip) { 54 $trustedIps[] = $ip; 55 $trustedValues[] = sprintf('for="%s"', $ip); 56 } 57 if ($ip !== $remoteAddr) { 58 $trustedIps[] = $remoteAddr; 59 $trustedValues[] = sprintf('for="%s"', $remoteAddr); 60 } 61 62 // set trusted values, reusing as much as possible the global trusted settings 63 if ($name = $trustedHeaders[Request::HEADER_FORWARDED]) { 64 $trustedValues[0] .= sprintf(';host="%s";proto=%s', $request->getHttpHost(), $request->getScheme()); 65 $request->headers->set($name, $v = implode(', ', $trustedValues)); 66 $request->server->set('HTTP_'.strtoupper(str_replace('-', '_', $name)), $v); 67 } 68 if ($name = $trustedHeaders[Request::HEADER_CLIENT_IP]) { 69 $request->headers->set($name, $v = implode(', ', $trustedIps)); 70 $request->server->set('HTTP_'.strtoupper(str_replace('-', '_', $name)), $v); 71 } 72 if (!$name && !$trustedHeaders[Request::HEADER_FORWARDED]) { 73 $request->headers->set('X-Forwarded-For', $v = implode(', ', $trustedIps)); 74 $request->server->set('HTTP_X_FORWARDED_FOR', $v); 75 Request::setTrustedHeaderName(Request::HEADER_CLIENT_IP, 'X_FORWARDED_FOR'); 76 } 77 78 // fix the client IP address by setting it to 127.0.0.1, 79 // which is the core responsibility of this method 80 $request->server->set('REMOTE_ADDR', '127.0.0.1'); 81 82 // ensure 127.0.0.1 is set as trusted proxy 83 if (!IpUtils::checkIp('127.0.0.1', $trustedProxies)) { 84 Request::setTrustedProxies(array_merge($trustedProxies, array('127.0.0.1'))); 85 } 86 87 try { 88 $e = null; 89 $response = $kernel->handle($request, $type, $catch); 90 } catch (\Throwable $e) { 91 } catch (\Exception $e) { 92 } 93 94 // restore global state 95 Request::setTrustedHeaderName(Request::HEADER_CLIENT_IP, $trustedHeaders[Request::HEADER_CLIENT_IP]); 96 Request::setTrustedProxies($trustedProxies); 97 98 if (null !== $e) { 99 throw $e; 100 } 101 102 return $response; 103 } 104 }
title
Description
Body
title
Description
Body
title
Description
Body
title
Body
| Generated: Wed Nov 11 20:33:01 2020 | Cross-referenced by PHPXref 0.7.1 |