Adding proper SSL checking, maybe?

2013-12-29 18:30:08 +00:00
parent e3823abefb
commit 1e8eb9fe08
1 changed files with 2 additions and 1 deletions
--- a/public/recaptchalib.php
+++ b/public/recaptchalib.php
@@ -108,7 +108,8 @@ function recaptcha_get_html ($pubkey, $error = null, $use_ssl = false)
 		die ("To use reCAPTCHA you must get an API key from <a href='https://www.google.com/recaptcha/admin/create'>https://www.google.com/recaptcha/admin/create</a>");
 	}
 	
-	if ($use_ssl) {
+        if (!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off'
+        || $_SERVER['SERVER_PORT'] == 443) {
                $server = RECAPTCHA_API_SECURE_SERVER;
        } else {
                $server = RECAPTCHA_API_SERVER;