Verzeichnisstruktur phpBB-3.3.15


Veröffentlicht
28.08.2024

So funktioniert es


Auf das letzte Element klicken. Dies geht jeweils ein Schritt zurück

Auf das Icon klicken, dies öffnet das Verzeichnis. Nochmal klicken schließt das Verzeichnis.
Auf den Verzeichnisnamen klicken, dies zeigt nur das Verzeichnis mit Inhalt an

(Beispiel Datei-Icons)

Auf das Icon klicken um den Quellcode anzuzeigen

SubRequestHandler.php

Zuletzt modifiziert: 02.04.2025, 15:03 - Dateigröße: 4.80 KiB


001  <?php
002   
003  /*
004   * This file is part of the Symfony package.
005   *
006   * (c) Fabien Potencier <fabien@symfony.com>
007   *
008   * For the full copyright and license information, please view the LICENSE
009   * file that was distributed with this source code.
010   */
011   
012  namespace Symfony\Component\HttpKernel\HttpCache;
013   
014  use Symfony\Component\HttpFoundation\IpUtils;
015  use Symfony\Component\HttpFoundation\Request;
016  use Symfony\Component\HttpFoundation\Response;
017  use Symfony\Component\HttpKernel\HttpKernelInterface;
018   
019  /**
020   * @author Nicolas Grekas <p@tchwork.com>
021   *
022   * @internal
023   */
024  class SubRequestHandler
025  {
026      /**
027       * @return Response
028       */
029      public static function handle(HttpKernelInterface $kernel, Request $request, $type, $catch)
030      {
031          // save global state related to trusted headers and proxies
032          $trustedProxies = Request::getTrustedProxies();
033          $trustedHeaderSet = Request::getTrustedHeaderSet();
034          if (method_exists(Request::class, 'getTrustedHeaderName')) {
035              Request::setTrustedProxies($trustedProxies, -1);
036              $trustedHeaders = [
037                  Request::HEADER_FORWARDED => Request::getTrustedHeaderName(Request::HEADER_FORWARDED, false),
038                  Request::HEADER_X_FORWARDED_FOR => Request::getTrustedHeaderName(Request::HEADER_X_FORWARDED_FOR, false),
039                  Request::HEADER_X_FORWARDED_HOST => Request::getTrustedHeaderName(Request::HEADER_X_FORWARDED_HOST, false),
040                  Request::HEADER_X_FORWARDED_PROTO => Request::getTrustedHeaderName(Request::HEADER_X_FORWARDED_PROTO, false),
041                  Request::HEADER_X_FORWARDED_PORT => Request::getTrustedHeaderName(Request::HEADER_X_FORWARDED_PORT, false),
042              ];
043              Request::setTrustedProxies($trustedProxies, $trustedHeaderSet);
044          } else {
045              $trustedHeaders = [
046                  Request::HEADER_FORWARDED => 'FORWARDED',
047                  Request::HEADER_X_FORWARDED_FOR => 'X_FORWARDED_FOR',
048                  Request::HEADER_X_FORWARDED_HOST => 'X_FORWARDED_HOST',
049                  Request::HEADER_X_FORWARDED_PROTO => 'X_FORWARDED_PROTO',
050                  Request::HEADER_X_FORWARDED_PORT => 'X_FORWARDED_PORT',
051              ];
052          }
053   
054          // remove untrusted values
055          $remoteAddr = $request->server->get('REMOTE_ADDR');
056          if (!IpUtils::checkIp($remoteAddr, $trustedProxies)) {
057              foreach ($trustedHeaders as $key => $name) {
058                  if ($trustedHeaderSet & $key) {
059                      $request->headers->remove($name);
060                      $request->server->remove('HTTP_'.strtoupper(str_replace('-', '_', $name)));
061                  }
062              }
063          }
064   
065          // compute trusted values, taking any trusted proxies into account
066          $trustedIps = [];
067          $trustedValues = [];
068          foreach (array_reverse($request->getClientIps()) as $ip) {
069              $trustedIps[] = $ip;
070              $trustedValues[] = sprintf('for="%s"', $ip);
071          }
072          if ($ip !== $remoteAddr) {
073              $trustedIps[] = $remoteAddr;
074              $trustedValues[] = sprintf('for="%s"', $remoteAddr);
075          }
076   
077          // set trusted values, reusing as much as possible the global trusted settings
078          if (Request::HEADER_FORWARDED & $trustedHeaderSet) {
079              $trustedValues[0] .= sprintf(';host="%s";proto=%s', $request->getHttpHost(), $request->getScheme());
080              $request->headers->set($name = $trustedHeaders[Request::HEADER_FORWARDED], $v = implode(', ', $trustedValues));
081              $request->server->set('HTTP_'.strtoupper(str_replace('-', '_', $name)), $v);
082          }
083          if (Request::HEADER_X_FORWARDED_FOR & $trustedHeaderSet) {
084              $request->headers->set($name = $trustedHeaders[Request::HEADER_X_FORWARDED_FOR], $v = implode(', ', $trustedIps));
085              $request->server->set('HTTP_'.strtoupper(str_replace('-', '_', $name)), $v);
086          } elseif (!(Request::HEADER_FORWARDED & $trustedHeaderSet)) {
087              Request::setTrustedProxies($trustedProxies, $trustedHeaderSet | Request::HEADER_X_FORWARDED_FOR);
088              $request->headers->set($name = $trustedHeaders[Request::HEADER_X_FORWARDED_FOR], $v = implode(', ', $trustedIps));
089              $request->server->set('HTTP_'.strtoupper(str_replace('-', '_', $name)), $v);
090          }
091   
092          // fix the client IP address by setting it to 127.0.0.1,
093          // which is the core responsibility of this method
094          $request->server->set('REMOTE_ADDR', '127.0.0.1');
095   
096          // ensure 127.0.0.1 is set as trusted proxy
097          if (!IpUtils::checkIp('127.0.0.1', $trustedProxies)) {
098              Request::setTrustedProxies(array_merge($trustedProxies, ['127.0.0.1']), Request::getTrustedHeaderSet());
099          }
100   
101          try {
102              return $kernel->handle($request, $type, $catch);
103          } finally {
104              // restore global state
105              Request::setTrustedProxies($trustedProxies, $trustedHeaderSet);
106          }
107      }
108  }
109