Re^3: PSGI, Plack et.al.

http://www.perlmonks.org?node_id=1000709

in reply to Re^2: PSGI, Plack et.al.
in thread PSGI, Plack et.al.

Hi,

but you should not forget that there are circumstances where you want to know whether requests came via https or http. Just two examples:

You want to generate absolute URL in the response to reflect the currently used protocol.
You want to set the secure attribute on cookies when you know that the response is sent via https.

Best regards
McA

Comment on Re^3: PSGI, Plack et.al.

Replies are listed 'Best First'.
Re^4: PSGI, Plack et.al. by Corion (Patriarch) on Oct 24, 2012 at 20:36 UTC
A common? trick to avoid the protocol is a schemaless URL: `# Instead of https://example.com/foo/bar # use //example.com/foo/bar` [download] This will use the same protocol as the origin.	[reply] [d/l]
Re^4: PSGI, Plack et.al. by afoken (Chancellor) on Oct 25, 2012 at 05:28 UTC
there are circumstances where you want to know whether requests came via https or http At least the Apache webserver sets up several CGI environment variables, the most obvious one is `HTTPS` set to `on`. It also adds a ton of environment variables starting with `SSL_` describing many aspects of the SSL connection. The CGI 1.1 RFC 3875 leaves HTTPS unspecified, but allows the Apache behaviour. Alexander -- Today I will gladly share my knowledge and experience, for there are no sweeter words than "I told you so". ;-)	[reply] [d/l] [select]
Re^4: PSGI, Plack et.al. by Anonymous Monk on Oct 25, 2012 at 02:16 UTC
Q: How to detect reverse proxy and SSL frontend · plack/Plack Wiki · GitHub A: use Plack::Middleware::ReverseProxy	[reply]

In Section Seekers of Perl Wisdom