Laravel: Force to use HTTPS for URL with Cloudflare Flexible SSL

When are you using Cloudflare Flexible SSL you need a solution so that all URL on our website (created by URL, route function) must be HTTPS even though our server currently doesn't support SSL.

Solution:

Edit App\Providers\AppServiceProvider.php in the boot() method

public function boot()
{
        // custom for cloudflase flexible ssl
        if($this->checkHTTPSStatus()){
            URL::forceScheme('https');
        }
    /*...some other code...*/
}

private function checkHTTPSStatus()
{
/Select code in an option below/
}

Option 1: Switch to https according to the configuration in the env file

private function checkHTTPSStatus()
{
return env('APP_HTTPS',false) === true;
}

In .env file you must to declare APP_HTTPS parameter

APP_HTTPS=true


Option 2: Automatically switch to https if the user comes from Cloudflare Flexible SSL

private function checkHTTPSStatus()
{
return (isset($_SERVER['HTTP_X_FORWARDED_PROTO'])&&$_SERVER['HTTP_X_FORWARDED_PROTO']==='https');
}

Option 3: Full SSL

private function checkHTTPSStatus()
{
return !empty($_SERVER['HTTPS']);
}

Top comments (0)

Innovate to Differentiate: The Role of Custom Ecommerce Design in Competitive Markets

Robert Adler - Apr 18

60 Test Case Examples for HealthCare Domain Testing

MythiliRaju - Apr 18

Boost Your Magento Store's Performance with LiteSpeed Servers

Charles Lyman - Apr 18

Reddit CPO talks new features — better translations, moderation and dev tools

Andy Larkin - Apr 18

DEV Community