From: Andrew Dolgov <noreply@fakecake.org>
Date: Fri, 5 May 2017 07:16:54 +0000 (+0300)
Subject: add sanity check for SELF_URL_PATH going to http url if server is accessed over https
X-Git-Tag: 17.12~197
X-Git-Url: https://git.wh0rd.org/?a=commitdiff_plain;h=e35ba0e2121977d123159a18581c229b26054e74;p=tt-rss.git

add sanity check for SELF_URL_PATH going to http url if server is accessed over https
---

diff --git a/include/sanity_check.php b/include/sanity_check.php
index 3b3e281e..12cc5579 100755
--- a/include/sanity_check.php
+++ b/include/sanity_check.php
@@ -147,6 +147,12 @@
 			if (!class_exists("DOMDocument")) {
 				array_push($errors, "PHP support for DOMDocument is required, but was not found.");
 			}
+
+			$self_scheme = parse_url(SELF_URL_PATH, PHP_URL_SCHEME);
+
+			if ($_SERVER['HTTPS'] && $self_scheme == 'http') {
+				array_push($errors, "You are accessing tt-rss over SSL but SELF_URL_PATH in config.php refers to a http:// URL.");
+			}
 		}
 
 		if (count($errors) > 0 && $_SERVER['REQUEST_URI']) { ?>