SSL in php

The Secure Sockets Layer (SSL) provides a secure channel over which regular HTTP requests and responses can flow. PHP doesn’t specifically concern itself with SSL, so you cannot control the encryption in any way from PHP. An https:// URL indicates a secure connection for that document, unlike an http:// URL

The HTTPS entry in the $_SERVER array is set to ‘on’ if the PHP page was generated in response to a request over an SSL connection. To prevent a page from being generated over a non-encrypted connection, simply use:

if ($_SERVER[‘HTTPS’] !== ‘on’) {
die(“Must be a secure connection.”);

Leave a Comment