Relaibility of $_SERVER['HTTPS'] if user coming through proxy server?

Posted on 2004-09-23
Medium Priority
Last Modified: 2006-11-17

Hi, this may be a stupid question, but will the value of $_SERVER['HTTPS'] be affected if a user coming to my site through a proxy server?  I encountered some reliability issues around usign the $_SERVER['HTTP-REFERRER'] variable.  The PHP documentation mentions that HTTP-REFERRER is not reliabile, but makes no mention of ['HTTPS'].

Is it a reliable method? What is people's experience using $_SERVER['HTTPS'], especially in regards to proxy servers, etc?

Thanks for your help!
Question by:lauriebloyer
  • 3
LVL 48

Expert Comment

ID: 12137843
$_SERVER['HTTPS'] is always set if the connection to your server is made via SSL regardingless wether the user uses a proxy or not.
LVL 48

Accepted Solution

hernst42 earned 2000 total points
ID: 12137877
the HTTP-REFERRER is set on the information given by the browser, so some proxies may remove that information from the clients request and you may not relia on that.
the  $_SERVER['HTTPS'] is set by the server and not taken from any information given by the user/browser

Expert Comment

ID: 12138109
afaik you cannot use a https connection over a proxy
LVL 48

Expert Comment

ID: 12138190
If the proxy support SSL/https you can use the proxy also with https. Then the proxy only bypasses the connection. The proxy can't see which information is tunneld via https, it only transfers the data whichout any caching.

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

These days socially coordinated efforts have turned into a critical requirement for enterprises.
There are times when I have encountered the need to decompress a response from a PHP request. This is how it's done, but you must have control of the request and you can set the Accept-Encoding header.
This tutorial will teach you the core code needed to finalize the addition of a watermark to your image. The viewer will use a small PHP class to learn and create a watermark.
The viewer will learn how to create a basic form using some HTML5 and PHP for later processing. Set up your basic HTML file. Open your form tag and set the method and action attributes.: (CODE) Set up your first few inputs one for the name and …

587 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question