Download the PHP package markohs/forcehttps without Composer
On this page you can find all versions of the php package markohs/forcehttps. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Download markohs/forcehttps
More information about markohs/forcehttps
Files in markohs/forcehttps
Package forcehttps
Short Description Simple Laravel Middleware to force HTTPS connections
License MIT
Homepage https://github.com/markohs/forcehttps
FAQ
Example:
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
- Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
- To use Composer is sometimes complicated. Especially for beginners.
- Composer needs much resources. Sometimes they are not available on a simple webspace.
- If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
- Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.
Informations about the package forcehttps
ForceHTTPS
Simple Laravel Middleware to force HTTPS usage on your clients, with a simple whitelist system. Take a look at contributing.md to see a to do list.
Installation
Via Composer
Publish the default config file:
You can now edit default settings in config/forcehttps.php
Requirements
This package is just tested with Laravel 6.0 and 8.0
Usage
You can use any of the following methods:
You can either force HTTPS in a single route in for example routes/web.php:
You can also use the automatic MiddlewareGroup register mechanism in config/forcehttps.php:
Or you can add the Middleware manually as usual in app/Http/Kernel.php in the MiddlewareGroups you require:
Set active environments
This package will only be active in the environments you specify, by default stage, prod and production, update config/forcehttps.php if necessary:
URL whitelist mechanism
This package also has a path exclusion mechanism I found useful in my projects. Even if a request is affected by this Middleware, a list of paths is checked, in a "whitelist" spirit, those URLS won't emit a 301 HTTP redirect. I use for comunitaction with other traditional systems that use old POST fashion, and don't support HTTPS.
You can set this url whitelist in config/forcehttps.php:
Important notes
If you are using Cloudflare or some kind of proxy to serve your website, you need to make sure you configure TrustedProxy correctly or this Middleware will cause redirect loops.
Make sure you keep the config file /config/trustedproxy.php, or on app\Http\Middleware\TrustProxies.php , variable $proxies, up to date. Or
Change log
Please see the changelog for more information on what has changed recently.
Contributing
Please see contributing.md for details and a todolist.
Security
If you discover any security related issues, or want to help improve this package, please email [email protected] or use the issue tracker or send a PR.
Credits
- Markohs
- All Contributors
License
MIT. Please see the license file for more information.
