Image Proxy

Proxy scheme for http images embedded in https elgg sites

Last updated
Recommended Releases
Elgg Release Download Date Links
2.01.2.0 (16KB)2015-Sep-24
1.121.2.0 (16KB)2015-Sep-24
1.111.2.0 (16KB)2015-Sep-24
1.101.2.0 (16KB)2015-Sep-24
1.91.2.0 (16KB)2015-Sep-24
1.81.2.0 (16KB)2015-Sep-24
Show all releases

This plugin is intended for use on elgg sites served with SSL.  Often users will post external images that are served over unencrypted http which will generate browser mixed content warnings.  This plugin attempts to minimize such warnings by providing a proxy for such images.

Non-https image urls not originating from the elgg host name are replaced with a proxy url to mod/image_proxy/image.php.  This file forwards the headers and image content from the http source through to the browser using the elgg site ssl thereby removing unsecure content warnings from browsers.

Non-https images originating from the elgg host over http are rewritten to serve from https

The proxy has an encryption element to ensure that urls passed through are originating as elgg content. This uses the elgg site secret by default. The elgg engine is not booted during the proxy forwarding process to keep things as lean as possible. A single database query is used to retrieve the site secret.

This can optionally be bypassed by adding a new secret string directly to the settings.php file

$CONFIG->image_proxy_secret = 'my secret string';

Adding a custom image_proxy_secret to the config will eliminate all database interaction for the proxy

Matt Beckett

I'm a self-employed web developer, family man, nerd, scuba diver. Manager/maintainer of this elgg community site, and core Elgg development team member.

Stats

  • Category: Site admin
  • License: GNU General Public License (GPL) version 2
  • Updated: 2015-9-24
  • Downloads: 507
  • Recommendations: 2

Other Projects

View Matt Beckett's plugins