Verzeichnisstruktur phpBB-3.3.15
- Veröffentlicht
- 28.08.2024
So funktioniert es
|
Auf das letzte Element klicken. Dies geht jeweils ein Schritt zurück |
Auf das Icon klicken, dies öffnet das Verzeichnis. Nochmal klicken schließt das Verzeichnis. |
|
(Beispiel Datei-Icons)
|
Auf das Icon klicken um den Quellcode anzuzeigen |
SubRequestHandler.php
001 <?php
002
003 /*
004 * This file is part of the Symfony package.
005 *
006 * (c) Fabien Potencier <fabien@symfony.com>
007 *
008 * For the full copyright and license information, please view the LICENSE
009 * file that was distributed with this source code.
010 */
011
012 namespace Symfony\Component\HttpKernel\HttpCache;
013
014 use Symfony\Component\HttpFoundation\IpUtils;
015 use Symfony\Component\HttpFoundation\Request;
016 use Symfony\Component\HttpFoundation\Response;
017 use Symfony\Component\HttpKernel\HttpKernelInterface;
018
019 /**
020 * @author Nicolas Grekas <p@tchwork.com>
021 *
022 * @internal
023 */
024 class SubRequestHandler
025 {
026 /**
027 * @return Response
028 */
029 public static function handle(HttpKernelInterface $kernel, Request $request, $type, $catch)
030 {
031 // save global state related to trusted headers and proxies
032 $trustedProxies = Request::getTrustedProxies();
033 $trustedHeaderSet = Request::getTrustedHeaderSet();
034 if (method_exists(Request::class, 'getTrustedHeaderName')) {
035 Request::setTrustedProxies($trustedProxies, -1);
036 $trustedHeaders = [
037 Request::HEADER_FORWARDED => Request::getTrustedHeaderName(Request::HEADER_FORWARDED, false),
038 Request::HEADER_X_FORWARDED_FOR => Request::getTrustedHeaderName(Request::HEADER_X_FORWARDED_FOR, false),
039 Request::HEADER_X_FORWARDED_HOST => Request::getTrustedHeaderName(Request::HEADER_X_FORWARDED_HOST, false),
040 Request::HEADER_X_FORWARDED_PROTO => Request::getTrustedHeaderName(Request::HEADER_X_FORWARDED_PROTO, false),
041 Request::HEADER_X_FORWARDED_PORT => Request::getTrustedHeaderName(Request::HEADER_X_FORWARDED_PORT, false),
042 ];
043 Request::setTrustedProxies($trustedProxies, $trustedHeaderSet);
044 } else {
045 $trustedHeaders = [
046 Request::HEADER_FORWARDED => 'FORWARDED',
047 Request::HEADER_X_FORWARDED_FOR => 'X_FORWARDED_FOR',
048 Request::HEADER_X_FORWARDED_HOST => 'X_FORWARDED_HOST',
049 Request::HEADER_X_FORWARDED_PROTO => 'X_FORWARDED_PROTO',
050 Request::HEADER_X_FORWARDED_PORT => 'X_FORWARDED_PORT',
051 ];
052 }
053
054 // remove untrusted values
055 $remoteAddr = $request->server->get('REMOTE_ADDR');
056 if (!IpUtils::checkIp($remoteAddr, $trustedProxies)) {
057 foreach ($trustedHeaders as $key => $name) {
058 if ($trustedHeaderSet & $key) {
059 $request->headers->remove($name);
060 $request->server->remove('HTTP_'.strtoupper(str_replace('-', '_', $name)));
061 }
062 }
063 }
064
065 // compute trusted values, taking any trusted proxies into account
066 $trustedIps = [];
067 $trustedValues = [];
068 foreach (array_reverse($request->getClientIps()) as $ip) {
069 $trustedIps[] = $ip;
070 $trustedValues[] = sprintf('for="%s"', $ip);
071 }
072 if ($ip !== $remoteAddr) {
073 $trustedIps[] = $remoteAddr;
074 $trustedValues[] = sprintf('for="%s"', $remoteAddr);
075 }
076
077 // set trusted values, reusing as much as possible the global trusted settings
078 if (Request::HEADER_FORWARDED & $trustedHeaderSet) {
079 $trustedValues[0] .= sprintf(';host="%s";proto=%s', $request->getHttpHost(), $request->getScheme());
080 $request->headers->set($name = $trustedHeaders[Request::HEADER_FORWARDED], $v = implode(', ', $trustedValues));
081 $request->server->set('HTTP_'.strtoupper(str_replace('-', '_', $name)), $v);
082 }
083 if (Request::HEADER_X_FORWARDED_FOR & $trustedHeaderSet) {
084 $request->headers->set($name = $trustedHeaders[Request::HEADER_X_FORWARDED_FOR], $v = implode(', ', $trustedIps));
085 $request->server->set('HTTP_'.strtoupper(str_replace('-', '_', $name)), $v);
086 } elseif (!(Request::HEADER_FORWARDED & $trustedHeaderSet)) {
087 Request::setTrustedProxies($trustedProxies, $trustedHeaderSet | Request::HEADER_X_FORWARDED_FOR);
088 $request->headers->set($name = $trustedHeaders[Request::HEADER_X_FORWARDED_FOR], $v = implode(', ', $trustedIps));
089 $request->server->set('HTTP_'.strtoupper(str_replace('-', '_', $name)), $v);
090 }
091
092 // fix the client IP address by setting it to 127.0.0.1,
093 // which is the core responsibility of this method
094 $request->server->set('REMOTE_ADDR', '127.0.0.1');
095
096 // ensure 127.0.0.1 is set as trusted proxy
097 if (!IpUtils::checkIp('127.0.0.1', $trustedProxies)) {
098 Request::setTrustedProxies(array_merge($trustedProxies, ['127.0.0.1']), Request::getTrustedHeaderSet());
099 }
100
101 try {
102 return $kernel->handle($request, $type, $catch);
103 } finally {
104 // restore global state
105 Request::setTrustedProxies($trustedProxies, $trustedHeaderSet);
106 }
107 }
108 }
109