frenzypeng / securityswitch

Automatically exported from code.google.com/p/securityswitch
Other
0 stars 0 forks source link

Feature Request - ServerVariablesSecurityEvaluator #33

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago
Feature Request.

Create a ServerVariablesSecurityEvaluator that works in exactly the same way as 
HeadersSecurityEvaluator but instead of checking:
request.Headers[name]
it checks:
request.ServerVariables[name]

On my host provider this would seem to be the only way to get securitySwitch to 
work and presumably other hosts work in a similar way:
http://forums.tsohost.co.uk/clustered-hosting-platform-windows-hosting/747-ssl-d
etection.html

Original issue reported on code.google.com by siwhite...@gmail.com on 30 Jan 2012 at 5:32

GoogleCodeExporter commented 8 years ago
This sounds like a very reasonable request. Consider it queued.

Original comment by vent...@gmail.com on 31 Jan 2012 at 9:35

GoogleCodeExporter commented 8 years ago
This new security evaluator was added and a new configuration attribute drives 
its use. Set the offloadedSecurityServerVariables attribute just like you would 
the offloadedSecurityHeaders attribute. The wiki was updated with the new 
documentation.

http://code.google.com/p/securityswitch/wiki/SecuritySwitchConfigSection

Original comment by vent...@gmail.com on 2 Feb 2012 at 2:40