From e43553a3d942f23b611f8fbcc1b202dffc88185b Mon Sep 17 00:00:00 2001 From: Brion Vibber Date: Thu, 28 Oct 2010 00:14:45 +0000 Subject: [PATCH] Tweak for OAuth headers not seen in $_SERVER --- plugins/ApiLogger/ApiLoggerPlugin.php | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/plugins/ApiLogger/ApiLoggerPlugin.php b/plugins/ApiLogger/ApiLoggerPlugin.php index 3a60e212d1..deb54008e5 100644 --- a/plugins/ApiLogger/ApiLoggerPlugin.php +++ b/plugins/ApiLogger/ApiLoggerPlugin.php @@ -52,6 +52,14 @@ class ApiLoggerPlugin extends Plugin $etag = empty($_SERVER['HTTP_IF_MATCH']) ? 'no' : 'yes'; $last = empty($_SERVER['HTTP_IF_MODIFIED_SINCE']) ? 'no' : 'yes'; $auth = empty($_SERVER['HTTP_AUTHORIZATION']) ? 'no' : 'yes'; + if ($auth == 'no' && function_exists('apache_request_headers')) { + // Sometimes Authorization doesn't make it into $_SERVER. + // Probably someone thought it was scary. + $headers = apache_request_headers(); + if (isset($headers['Authorization'])) { + $auth = 'yes'; + } + } $agent = empty($_SERVER['HTTP_USER_AGENT']) ? 'no' : $_SERVER['HTTP_USER_AGENT']; $query = (strpos($uri, '?') === false) ? 'no' : 'yes'; -- 2.39.5