public function getHeaders() { $headers = $this->headers; Log::add($headers, 'headers raw'); // For HTML content, overwrite upstream cache conf. if (isset($headers['Cache-Control'])) { if ($this->getContentType() == $this::CONTENT_TYPE_TEXT_HTML) { unset($headers['Cache-Control']); } } else { if ($this->getContentType() == $this::CONTENT_TYPE_OTHER) { $headers['Cache-Control'] = getCacheControlHeader(60 * 60, 60 * 60, 60 * 60 * 24); } } // If redirect, rewrite Location header. if (isset($headers['Location'])) { if (parse_url($headers['Location'], PHP_URL_HOST)) { TextExternalUrlFilters::applyAll($headers['Location']); } // Header redirects require full URLs, with scheme and host. if (!parse_url($headers['Location'], PHP_URL_HOST)) { $headers['Location'] = RedirectWhenBlockedFull::getBaseUrl(true) . ltrim($headers['Location'], '/'); } } // Rewrite set-cookie headers (or remove if cookies disabled). if (isset($headers['Set-Cookie'])) { if (!Conf::$cookies_enabled) { unset($headers['Set-Cookie']); } else { if (is_array($headers['Set-Cookie'])) { foreach ($headers['Set-Cookie'] as &$set_cookie) { $set_cookie = $this->getFilteredSetCookie($set_cookie); } } else { $headers['Set-Cookie'] = $this->getFilteredSetCookie($headers['Set-Cookie']); } } } // Unset some. $skip = array('Connection', 'Content-Encoding', 'Transfer-Encoding', 'X-Original-Content-Encoding'); foreach ($skip as $s) { if (isset($headers[$s])) { unset($headers[$s]); } } Log::add($headers, 'headers filtered'); return $headers; }
<?php $apk_url = RedirectWhenBlockedFull::getBaseUrl() . '?' . RedirectWhenBlockedFull::QUERY_STRING_PARAM_NAME . '=' . Conf::OUTPUT_TYPE_APK; $url = 'https://chart.googleapis.com/chart?chs=200x200&cht=qr&chl=' . urlencode($apk_url) . '&choe=UTF-8'; $ch = curl_init($url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); $response = curl_exec($ch); curl_close($ch); if ($response) { header('Cache-Control: ' . getCacheControlHeader(60 * 60 * 24, 60 * 60 * 24 * 7, 60 * 60 * 24 * 7)); header('Content-Type: image/png'); print $response; }
public function getUrl() { static $url; if (!isset($url)) { if (isset($_GET[RedirectWhenBlockedFull::QUERY_STRING_PARAM_NAME]) && $_GET[RedirectWhenBlockedFull::QUERY_STRING_PARAM_NAME] == Conf::OUTPUT_TYPE_APK && Conf::$apk_url) { $url = Conf::$apk_url; $filename = basename(parse_url($url, PHP_URL_PATH)); header('Content-Disposition: attachment; filename=' . $filename); // Run after all other code to override other content-type header. register_shutdown_function(function () { header('Content-Type: application/vnd.android.package-archive'); }); } else { $url = RedirectWhenBlockedFull::getRequestUriWithoutQueryStringParam(); $this->removeThisScriptDirFromUrl($url); if (startsWith($url, '/http://') || startsWith($url, '/https://')) { $url = substr($url, 1); if (!TextExternalUrlFilters::matchesUrl($url)) { header('HTTP/1.0 403 Forbidden'); exit; } // If we for some reason have the default upstream host and scheme in the URL, remove them. $url_components = parse_url($url); if ($url_components['host'] == Conf::getDefaultUpstreamBaseUrlComponent('host') && $url_components['scheme'] == Conf::getDefaultUpstreamBaseUrlComponent('scheme')) { $new_url = http_build_path_query_fragment($url_components); $new_url = RedirectWhenBlockedFull::getBaseUrl() . ltrim($new_url, '/'); header('Location: ' . $new_url); exit; } // Use in DomUtlFilters for relative URLs. $base_url_suffix = rtrim(http_build_scheme_host($url), '/') . '/'; RedirectWhenBlockedFull::setBaseUrlSuffix($base_url_suffix); } else { if ($url == '/') { if (Conf::$default_upstream_url) { $url = Conf::$default_upstream_url; } } $url = Conf::$default_upstream_base_url . $url; } } } // Reverse rewrites of parameters inside URL. TextExternalUrlFilters::applyReverse($url); Log::add($url, 'url'); return $url; }
private static function getBaseUrlHostAndPath() { static $host_and_path; if (!isset($host_and_path)) { $base_url_components = parse_url(RedirectWhenBlockedFull::getBaseUrl()); $host_and_path = $base_url_components['host']; if (isset($base_url_components['path'])) { $host_and_path .= $base_url_components['path']; } } return $host_and_path; }
public static function getBaseTag() { return '<base href="' . RedirectWhenBlockedFull::getBaseUrl(true) . '" target="' . self::TOP_WINDOW_NAME . '">'; }