Add SSL reverse proxy support like ssl_proxy in Moodle
Bug #829674 reported by
Tony Box
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Mahara |
Fix Released
|
High
|
Melissa Draper | ||
mahara (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
Mahara needs to have SSL reverse proxy support like Moodle does using ssl_proxy. All versions of Mahara are affected (we are on 1.4.1).
The issue is that we are serving SSL certificates from a load balancer. This means the Mahara server thinks itself is http which causes it to generate a shared key with http://
This presents itself as a problem when trying to set up SSO with Moodle, since Moodle looks at Mahara's shared key, notices it's actually coming from a secure site (https) and says the key is incorrect.
Changed in mahara: | |
importance: | Undecided → High |
milestone: | none → 1.5.0 |
status: | New → Triaged |
Changed in mahara: | |
assignee: | nobody → Melissa Draper (melissa) |
Changed in mahara: | |
status: | Triaged → In Progress |
Changed in mahara: | |
status: | In Progress → Fix Committed |
Changed in mahara (Ubuntu): | |
status: | New → Invalid |
Changed in mahara: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
The first step towards this would be to start replacing all HTTPS checks in Mahara with the is_https() function being introduced in htdocs/ lib/mahara. php as part of this change:
https:/ /reviews. mahara. org/#change, 564,patchset= 1