在$\u服务器PHP、Codigniter、负载平衡器后面的服务器中未获得https=on
我通过以下方式访问了域:,这是它的$\u服务器响应在$\u服务器PHP、Codigniter、负载平衡器后面的服务器中未获得https=on,php,codeigniter,ssl,https,offloading,Php,Codeigniter,Ssl,Https,Offloading,我通过以下方式访问了域:,这是它的$\u服务器响应 Array ( [UNIQUE_ID] => VcmHo6LRO1IAAB-fDU0AAAAK [SCRIPT_URL] => / [SCRIPT_URI] => http://DOMAIN/ [HTTP_USER_AGENT] => Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/
Array
(
[UNIQUE_ID] => VcmHo6LRO1IAAB-fDU0AAAAK
[SCRIPT_URL] => /
[SCRIPT_URI] => http://DOMAIN/
[HTTP_USER_AGENT] => Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/44.0.2403.125 Safari/537.36
[HTTP_X_FORWARDED_FOR] => 27.106.8.158
[HTTP_ACCEPT] => text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
[HTTP_SSLCLIENTCERTSTATUS] => NoClientCert
[HTTP_X_FORWARDED_PROTO] => https
[HTTP_ACCEPT_LANGUAGE] => en-US,en;q=0.8
[HTTP_SSLCLIENTCIPHER] => SSL_ECDHE_RSA_WITH_AES_256_CBC_SHA, version=TLSv1.2, bits=256
[HTTP_HOST] => DOMAIN NAME
[HTTP_SSLSESSIONID] => 93C33C49696542DC405250B49D36C222CBC06F747494EB56BB5C756A59DF8419
[HTTP_X_CLUSTER_CLIENT_IP] => 27.106.8.158
[HTTP_COOKIE] => fbm_153033148171841=base_domain=.DOMAIN; PHPSESSID=6gpp73p5k5ce4lg5lqut4ql3i5; PHPSESSID=v0vr962t7vtdtggo5tush5ndc1; X-Mapping-fjhppofk=843133EAD64CFF0FA30A00FC3D699430; fbsr_153033148171841=2MX-iaC6soGRrwIGXsPmsjGTdvLJ9UymLxPJS91gGyQ.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; _gat=1; _ga=GA1.2.1057126601.1438592752
[HTTP_CONNECTION] => keep-alive
[HTTP_X_FORWARDED_PORT] => 443
[HTTP_UPGRADE_INSECURE_REQUESTS] => 1
[HTTP_ACCEPT_ENCODING] => gzip, deflate, sdch
[PATH] => /sbin:/usr/sbin:/bin:/usr/bin
[SERVER_SIGNATURE] => <address>Apache Server at eventseeker.com Port 80</address>
[SERVER_SOFTWARE] => Apache
[SERVER_NAME] => Domain Name
[SERVER_ADDR] => Load balanacer IP
[SERVER_PORT] => 80
[REMOTE_ADDR] => Server IP
[DOCUMENT_ROOT] => /var/www/html/foldername/
[SERVER_ADMIN] => xyz@abc.com
[SCRIPT_FILENAME] => /var/www/html/foldername/index.php
[REMOTE_PORT] => 10052
[GATEWAY_INTERFACE] => CGI/1.1
[SERVER_PROTOCOL] => HTTP/1.1
[REQUEST_METHOD] => GET
[QUERY_STRING] =>
[REQUEST_URI] => /
[SCRIPT_NAME] => /index.php
[PHP_SELF] => /index.php
[REQUEST_TIME_FLOAT] => 1439270819.984
[REQUEST_TIME] => 1439270819
)
数组
(
[UNIQUE_ID]=>VCMHO6lRO1IAB-fDU0AAAAK
[脚本URL]=>/
[脚本URI]=>http://DOMAIN/
[HTTP_USER_AGENT]=>Mozilla/5.0(X11;Linux x86_64)AppleWebKit/537.36(KHTML,类似Gecko)Chrome/44.0.2403.125 Safari/537.36
[HTTP_X_FORWARDED_]=>27.106.8.158
[HTTP_ACCEPT]=>text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
[HTTP\u SSLCLIENTCERTSTATUS]=>NoClientCert
[HTTP\u X\u转发的\u协议]=>https
[HTTP\u ACCEPT\u LANGUAGE]=>en-US,en;q=0.8
[HTTP\u SSLCLIENTCIPHER]=>SSL\u ECDHE\u RSA\u和\u AES\u 256\u CBC\u SHA,版本=TLSv1.2,位=256
[HTTP_HOST]=>域名
[HTTP_SSLSESSIONID]=>93C33C49696542DC405250B49D36C222CBC06F74494EB56BB5C756A59DF8419
[HTTP\u X\u集群\u客户端\u IP]=>27.106.8.158
[HTTP_COOKIE]=>fbm_153033148171841=base_domain=.domain;PHPSESSID=6gpp73p5k5ce4lg5lqut4ql3i5;PHPSESSID=v0vr962t7vtdtggo5tush5ndc1;X-Mapping-fjhppofk=843133EAD64CFF0FA30A00FC3D699430;fbsr__153033148171841=2MX-IAC60;-IAC6SOGRrWigXSPMSjGTLJ9UYMLXP91GGYQ.EYQ.EYBGDvgI0FjJ0IqU2Tv5U5Bj5BjL5BjL5BjL5BjU5BjL5BjFf5BjL5BjL5BjFjFjL5BjL5BjFjFjFjFjUjUj第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,第二部分,在第二部分,第二部分,在第二部分,第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在第二部分,在00VDLAMKFQX292q1q5qzlbmvbabwfdr3frcm1ywh5we9kq1lnyndinvb3miisimlzc3vlzf9hdci6mqzoti2otunywidxnl9pzci6ijczmda3mji1ncj9;_gat=1;_ga=GA1.2.1057126601.1438592752
[HTTP\u连接]=>保持活动状态
[HTTP\u X\u转发的\u端口]=>443
[HTTP\u升级\u不安全\u请求]=>1
[HTTP\u ACCEPT\u ENCODING]=>gzip、deflate、sdch
[路径]=>/sbin:/usr/sbin:/bin:/usr/bin
[SERVER\u SIGNATURE]=>EventSeek.com端口80上的Apache服务器
[服务器软件]=>Apache
[服务器名称]=>域名
[服务器地址]=>加载平衡器IP
[服务器端口]=>80
[远程地址]=>服务器IP
[DOCUMENT_ROOT]=>/var/www/html/foldername/
[服务器管理]=>xyz@abc.com
[SCRIPT_FILENAME]=>/var/www/html/foldername/index.php
[远程_端口]=>10052
[网关接口]=>CGI/1.1
[服务器协议]=>HTTP/1.1
[请求\u方法]=>获取
[查询字符串]=>
[请求URI]=>/
[SCRIPT_NAME]=>/index.php
[PHP_SELF]=>/index.PHP
[请求时间浮动]=>1439270819.984
[请求时间]=>1439270819
)
该阵列在上没有$\u服务器['https']=,因此对我来说,很难在域上识别有效的https命中
服务器似乎受到了https攻击,然后将其重定向到http,因为我们有[http\u X\u FORWARDED\u PROTO]=>https
,[http\u FORWARDED\u PORT]=>443
和[server\u PORT]=>80
域位于负载平衡器之后,它使用SSL卸载。有什么问题吗
如果用户未登录,我要求我的站点在http上工作,并且由于用户在站点中的登录应移到https之后,直到用户注销,用户将仅在https中浏览站点
有人能帮忙吗。多谢各位 在您的设置中,SSL在负载平衡器上终止。它通过纯HTTP将所有连接转发到您的站点,没有加密。但是,它会添加诸如HTTP\u X\u FORWARDED\u PROTO=https等头文件,这会告诉您用户对负载平衡器使用的协议
如果您想以不可知的方式检查HTTPS,这样您的应用程序就不需要知道它是否在负载平衡器后面,请尝试同时检查HTTPS | | | HTTP_X_FORWARDED_PROTO
字段