redirect web views to HTTPS (#358)

author: Jesse Plamondon-Willard <github@jplamondonw.com> 2017-10-28 12:24:50 -0400
committer: Jesse Plamondon-Willard <github@jplamondonw.com> 2017-10-28 12:24:50 -0400
commit: d545281ef3d83d4db43d5ca56eb59800c8a1b8d2 (patch)
tree: b11e19cf52812383bec4c013fec3722e45fac5f3 /src/SMAPI.Web/Framework/RewriteRules
parent: c6d8333c7a28b752397e171540306ceccf74ca12 (diff)
download: SMAPI-d545281ef3d83d4db43d5ca56eb59800c8a1b8d2.tar.gz
SMAPI-d545281ef3d83d4db43d5ca56eb59800c8a1b8d2.tar.bz2
SMAPI-d545281ef3d83d4db43d5ca56eb59800c8a1b8d2.zip
2 files changed, 64 insertions, 2 deletions
diff --git a/src/SMAPI.Web/Framework/RewriteRules/ConditionalRedirectToHttpsRule.cs b/src/SMAPI.Web/Framework/RewriteRules/ConditionalRedirectToHttpsRule.cs
new file mode 100644
index 00000000..d6a56bb7
--- /dev/null
+++ b/src/SMAPI.Web/Framework/RewriteRules/ConditionalRedirectToHttpsRule.cs
@@ -0,0 +1,62 @@
+using System;
+using System.Net;
+using System.Text;
+using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Rewrite;
+
+namespace StardewModdingAPI.Web.Framework.RewriteRules
+{
+    /// <summary>Redirect requests to HTTPS.</summary>
+    /// <remarks>Derived from <a href="https://stackoverflow.com/a/44526747/262123" /> and <see cref="Microsoft.AspNetCore.Rewrite.Internal.RedirectToHttpsRule"/>.</remarks>
+    internal class ConditionalRedirectToHttpsRule : IRule
+    {
+        /*********
+        ** Properties
+        *********/
+        /// <summary>A predicate which indicates when the rule should be applied.</summary>
+        private readonly Func<HttpRequest, bool> ShouldRewrite;
+
+
+        /*********
+        ** Public methods
+        *********/
+        /// <summary>Construct an instance.</summary>
+        /// <param name="shouldRewrite">A predicate which indicates when the rule should be applied.</param>
+        public ConditionalRedirectToHttpsRule(Func<HttpRequest, bool> shouldRewrite = null)
+        {
+            this.ShouldRewrite = shouldRewrite ?? (req => true);
+        }
+
+        /// <summary>Applies the rule. Implementations of ApplyRule should set the value for <see cref="RewriteContext.Result" /> (defaults to RuleResult.ContinueRules).</summary>
+        /// <param name="context">The rewrite context.</param>
+        public void ApplyRule(RewriteContext context)
+        {
+            HttpRequest request = context.HttpContext.Request;
+
+            // check condition
+            if (this.IsSecure(request) || !this.ShouldRewrite(request))
+                return;
+
+            // redirect request
+            HttpResponse response = context.HttpContext.Response;
+            response.StatusCode = (int)HttpStatusCode.RedirectKeepVerb;
+            response.Headers["Location"] = new StringBuilder()
+                .Append("https://")
+                .Append(request.Host.Host)
+                .Append(request.PathBase)
+                .Append(request.Path)
+                .Append(request.QueryString)
+                .ToString();
+            context.Result = RuleResult.EndResponse;
+        }
+
+        /// <summary>Get whether the request was received over HTTPS.</summary>
+        /// <param name="request">The request to check.</param>
+        public bool IsSecure(HttpRequest request)
+        {
+            return
+                request.IsHttps // HTTPS to server
+                || string.Equals(request.Headers["x-forwarded-proto"], "HTTPS", StringComparison.OrdinalIgnoreCase); // HTTPS to AWS load balancer
+        }
+    }
+}
diff --git a/src/SMAPI.Web/Framework/RewriteRules/ConditionalRewriteSubdomainRule.cs b/src/SMAPI.Web/Framework/RewriteRules/ConditionalRewriteSubdomainRule.cs
index 83f23058..920632ab 100644
--- a/src/SMAPI.Web/Framework/RewriteRules/ConditionalRewriteSubdomainRule.cs
+++ b/src/SMAPI.Web/Framework/RewriteRules/ConditionalRewriteSubdomainRule.cs
@@ -22,7 +22,7 @@ namespace StardewModdingAPI.Web.Framework.RewriteRules
         /// <param name="shouldRewrite">A predicate which indicates when the rule should be applied.</param>
         public ConditionalRewriteSubdomainRule(Func<HttpRequest, bool> shouldRewrite = null)
         {
-            this.ShouldRewrite = shouldRewrite;
+            this.ShouldRewrite = shouldRewrite ?? (req => true);
         }
 
         /// <summary>Applies the rule. Implementations of ApplyRule should set the value for <see cref="RewriteContext.Result" /> (defaults to RuleResult.ContinueRules).</summary>
@@ -32,7 +32,7 @@ namespace StardewModdingAPI.Web.Framework.RewriteRules
             HttpRequest request = context.HttpContext.Request;
 
             // check condition
-            if (this.ShouldRewrite != null && !this.ShouldRewrite(request))
+            if (!this.ShouldRewrite(request))
                 return;
 
             // get host parts
author	Jesse Plamondon-Willard <github@jplamondonw.com>	2017-10-28 12:24:50 -0400
committer	Jesse Plamondon-Willard <github@jplamondonw.com>	2017-10-28 12:24:50 -0400
commit	d545281ef3d83d4db43d5ca56eb59800c8a1b8d2 (patch)
tree	b11e19cf52812383bec4c013fec3722e45fac5f3 /src/SMAPI.Web/Framework/RewriteRules
parent	c6d8333c7a28b752397e171540306ceccf74ca12 (diff)
download	SMAPI-d545281ef3d83d4db43d5ca56eb59800c8a1b8d2.tar.gz SMAPI-d545281ef3d83d4db43d5ca56eb59800c8a1b8d2.tar.bz2 SMAPI-d545281ef3d83d4db43d5ca56eb59800c8a1b8d2.zip