Merge branch 'framework' into dev

1 files changed, 37 insertions, 0 deletions

diff --git a/app/class/controller.class.php b/app/class/controller.class.php
new file mode 100644
index 0000000..fabd7e7
--- /dev/null
+++ b/app/class/controller.class.php
@@ -0,0 +1,37 @@
+<?php
+
+require_once "class/framework.class.php";
+
+/*
+ * Abstract controller -- Contains app security constraints and provides access to
+ * framework internals from concrete controllers
+ */
+abstract class Controller extends Framework
+{
+    /*
+     * Abstract function for concrete controller to handle the page request
+     */
+    abstract function handle($argv);
+
+    /*
+     * Security check
+     * Assert that the current connection to this server is secure. Redirects if not.
+     */
+    function sec_require_https()
+    {
+        if (!isset($_SERVER['HTTPS']))
+            $this->redirectTo("https://" . $_SERVER['SERVER_NAME'] . $this->ap());
+    }
+
+    /*
+     * Security check
+     * Assert that the current connection to this server is NOT secure. Redirects if not.
+     */
+    function sec_forbid_https()
+    {
+        if (isset($_SERVER['HTTPS']))
+            $this->redirectTo("http://" . $_SERVER['SERVER_NAME'] . $this->ap());
+    }
+}
+
+?>