hnzio/mood-tracking
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 7 Wiki Activity

Improve tracking UX, archive editing, branding, and proxy-safe auth flow

Browse Source
This commit is contained in:
Florian Heinz
2026-04-11 19:21:07 +02:00
parent 87f7859017
commit 4b95cc3dcb
2 changed files with 20 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/App.php
+12 -4
View File
@@ -27,16 +27,24 @@ final class App
$path = request_path();
$method = $_SERVER['REQUEST_METHOD'] ?? 'GET';
$hasUsers = $this->users->hasAnyUsers();
$isAuthenticated = $this->auth->check();
if (!$this->users->hasAnyUsers()) {
if ($path !== '/setup') {
if (!$hasUsers) {
if ($path === '/login') {
$path = '/setup';
} elseif ($path !== '/setup') {
redirect('/setup');
}
} elseif (!$this->auth->check() && $path !== '/login') {
} elseif (!$isAuthenticated) {
if ($path === '/setup') {
$path = '/login';
} elseif ($path !== '/login') {
redirect('/login');
}
}
if ($this->auth->check() && in_array($path, ['/login', '/setup'], true)) {
if ($isAuthenticated && in_array($path, ['/login', '/setup'], true)) {
redirect('/');
}
src/bootstrap.php
+7 -1
View File
@@ -15,7 +15,13 @@ require __DIR__ . '/App.php';
date_default_timezone_set($_ENV['APP_TIMEZONE'] ?? 'Europe/Berlin');
$isSecure = !empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off';
$forwardedProto = strtolower((string) ($_SERVER['HTTP_X_FORWARDED_PROTO'] ?? ''));
$forwardedSsl = strtolower((string) ($_SERVER['HTTP_X_FORWARDED_SSL'] ?? ''));
$isSecure = (
(!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off')
|| $forwardedProto === 'https'
|| $forwardedSsl === 'on'
);
ini_set('session.use_only_cookies', '1');
ini_set('session.use_strict_mode', '1');