X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=plugins%2FApiLogger%2FApiLoggerPlugin.php;h=deb54008e54d10d8661262de8a6327cf54881d9b;hb=c78170a2757983e99655219502ec36cada7547f5;hp=3a60e212d1e658ae0ff6ecab86d556669ac451f7;hpb=9e9b7b972c5c2365f1861327600a02e4aaa7c430;p=quix0rs-gnu-social.git

diff --git a/plugins/ApiLogger/ApiLoggerPlugin.php b/plugins/ApiLogger/ApiLoggerPlugin.php
index 3a60e212d1..deb54008e5 100644
--- a/plugins/ApiLogger/ApiLoggerPlugin.php
+++ b/plugins/ApiLogger/ApiLoggerPlugin.php
@@ -52,6 +52,14 @@ class ApiLoggerPlugin extends Plugin
                 $etag = empty($_SERVER['HTTP_IF_MATCH']) ? 'no' : 'yes';
                 $last = empty($_SERVER['HTTP_IF_MODIFIED_SINCE']) ? 'no' : 'yes';
                 $auth = empty($_SERVER['HTTP_AUTHORIZATION']) ? 'no' : 'yes';
+                if ($auth == 'no' && function_exists('apache_request_headers')) {
+                    // Sometimes Authorization doesn't make it into $_SERVER.
+                    // Probably someone thought it was scary.
+                    $headers = apache_request_headers();
+                    if (isset($headers['Authorization'])) {
+                        $auth = 'yes';
+                    }
+                }
                 $agent = empty($_SERVER['HTTP_USER_AGENT']) ? 'no' : $_SERVER['HTTP_USER_AGENT'];
 
                 $query = (strpos($uri, '?') === false) ? 'no' : 'yes';