From 1af7ec09719869f11fc54696b90e1e8c4f91660e Mon Sep 17 00:00:00 2001
From: rautenberg <rautenberg@in-silico.ch>
Date: Fri, 30 Mar 2012 17:57:28 +0200
Subject: temporary https solution

---
 lib/authorization-helper.rb | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'lib')

diff --git a/lib/authorization-helper.rb b/lib/authorization-helper.rb
index 3e44c9c..92bc865 100644
--- a/lib/authorization-helper.rb
+++ b/lib/authorization-helper.rb
@@ -55,7 +55,7 @@ module OpenTox
           end
         elsif !env["session"] && subjectid
           unless authorized?(subjectid)
-            $logger.debug "URI not authorized: clean: " + clean_uri("#{request.env['rack.url_scheme']}://#{request.env['HTTP_HOST']}#{request.env['REQUEST_URI']}").to_s + " full: #{request.env['rack.url_scheme']}://#{request.env['HTTP_HOST']}#{request.env['REQUEST_URI']} with request: #{request.env['REQUEST_METHOD']}"
+            $logger.debug "URI not authorized: clean: " + clean_uri("#{request.env['rack.url_scheme']}://#{request.env['HTTP_HOST']}#{request.env['REQUEST_URI']}").sub("http://","https://").to_s + " full: #{request.env['rack.url_scheme']}://#{request.env['HTTP_HOST']}#{request.env['REQUEST_URI']} with request: #{request.env['REQUEST_METHOD']}"
             raise OpenTox::NotAuthorizedError.new "Not authorized"
           end
         else
@@ -67,7 +67,7 @@ module OpenTox
       # @param [String]subjectid
       def authorized?(subjectid)
         request_method = request.env['REQUEST_METHOD']
-        uri = clean_uri("#{request.env['rack.url_scheme']}://#{request.env['HTTP_HOST']}#{request.env['REQUEST_URI']}")
+        uri = clean_uri("#{request.env['rack.url_scheme']}://#{request.env['HTTP_HOST']}#{request.env['REQUEST_URI']}").sub("http://","https://")
         request_method = "GET" if request_method == "POST" &&  uri =~ /\/model\/\d+\/?$/
         return OpenTox::Authorization.authorized?(uri, request_method, subjectid)
       end
-- 
cgit v1.2.3