6f042e4379
Let the config be read lazily in app-factory.
2017-10-12 12:01:18 +08:00
4f9d0b83d6
Fixed constructor to work without app context
...
In some configurations, extension object is constructed
while there is no current application.
Without this fix, this extension doesn't support such setups.
2016-07-10 02:33:13 +03:00
9b21aeb075
Don't redirect if the testing mode is active.
2016-01-29 11:53:50 -08:00
d028fd3d54
SSLIFY_XXX for config
2015-03-31 14:47:03 -05:00
7ba2684213
Less crazy config?
2015-03-31 14:45:22 -05:00
3e67792452
Ideas about Configing….
2015-03-31 14:37:29 -05:00
30ff6a572d
Have skip return False by default.
2015-03-31 12:56:55 -05:00
9740d4a7c1
Removed unnecessary self.app = None block.
2015-03-31 12:42:40 -05:00
7979f0b9e5
Concat string with format() like a real person would do.
2015-03-31 12:41:38 -05:00
7634d98427
More current_app cleanup.
2015-03-31 12:39:46 -05:00
2be30b1768
Make work with current_app.
2015-03-31 12:36:50 -05:00
1f7a79f1e0
Fixed.
2015-03-31 12:31:55 -05:00
d8d9434074
Fixed current_app stuff which I took out b/c … ?
2015-03-31 12:28:32 -05:00
2685703d88
Skips can’t be a string.
2015-03-31 12:11:38 -05:00
d141f4fec9
Removed completely turning off redirects stuff.
2015-03-31 12:07:07 -05:00
6431e8fbf4
Removed another is True.
2015-03-31 12:04:14 -05:00
cbd7d60c49
Made suggested improvements, allow more parameters to be set via
...
config, added to documentation.
2015-03-31 11:56:05 -05:00
fc22468876
Removed comments, returned request.is_secure check
2015-03-25 18:59:59 -05:00
30c27772bb
Adds ability to exclude paths from redirects.
2015-03-25 18:37:12 -05:00
39223823d9
Use current_app instead of hard-coupling extension to app.
...
This is good practice, regardless of whether Blueprints will be
supported!
2014-02-22 17:04:28 +01:00
kennethreitz
6217898a50
Merge pull request #8 from nvie/master
...
Don't send HSTS headers over non-HTTPS connections
2014-01-08 11:09:27 -08:00
2cf147cc4b
Fix breaking error in init, probably a bad merge
2013-10-30 15:20:49 +00:00
f7c3aa9b92
Move hsts_age and other variables set in __init__ out of the if statement
2013-07-18 09:48:41 +02:00
d2a0f8330f
self.app in __init__ is not needed anymore
2013-07-18 09:45:33 +02:00
9c12df10c4
Fixed bug when initializing SSLify without 'app' argument and using init_app(app) to
...
set it later.
2013-07-18 09:43:09 +02:00
d7f8d27681
Add optional permanent argument, to send 301's instead of 302's.
...
This fixes #7 .
2012-10-26 22:50:40 +02:00
37a07ce671
PEP8ify.
2012-10-26 22:50:40 +02:00
0a8a866145
Don't send HSTS headers over non-HTTPS connections.
...
This fixes #6 .
2012-10-26 22:41:35 +02:00
3b2f681adb
Replace only the scheme part of the URL.
...
This prevents accidental rewrites of any HTTP URLs in query string
parameters, like for example:
http://localhost/translate?src=http://non-secure-site.org/
2012-04-30 08:03:37 +02:00
348866bff9
Update flask_sslify.py
2012-04-29 20:22:46 -03:00
e91646bc32
Update flask_sslify.py
2012-04-29 16:21:08 -07:00
7dd3c8cb21
don't set hsts on redirect
2012-04-29 18:43:30 -04:00
4c5ab695d0
hsts magic
2012-04-29 18:42:22 -04:00
0764a92d3f
HSTS
2012-04-29 18:19:39 -04:00
e9191b8aad
HSTS Policy
2012-04-29 17:34:01 -04:00
53e7bfa2d1
change app reference
2012-04-29 16:54:45 -04:00
e1fe302482
Fixes #1
2012-04-29 16:51:48 -04:00
60ee9fd8b4
X-Forwarded-Proto[C
2012-04-29 16:46:19 -04:00
b9a87468bf
setups
2012-04-29 16:21:28 -04:00
Jiangge Zhang
kennethreitz