OpenID HTTPS redirect fix

[megascatterbomb]

Fixes some edge cases where the openid config wasn't properly forcing HTTPS.

[jayceslesar]

This should all be handled on the nginx side of things too -- it should not accept any http traffic or rather redirect it all to https

[megascatterbomb]

Latest commits fix #92

[jayceslesar]

what with this custom port?

[megascatterbomb]

that is the port TF2 assumes if none is specified.

[jayceslesar]

nice, maybe worth making this a function somewhere else and calling here

[lili7h]

This function seems a bit buggy..
If dev_mode is enabled and the base_url starts with http://, it will get modified to be http://http://<base url>.
If the base_url starts with https://, then it will be set to http://<base url> as expected.
Same goes for the branch when dev_mode is disabled (except with https:// instead).

You can also simplify the actual string replacement, since calling replace on "https://" on a string with "http://" is just a no-op and returns the original string.

# Default a protocol if the base_url doesn't start with one
if not base_url.startswith("http"):
    base_url = "https://" + base_url

if os.getenv('DEVELOPMENT', 'false').lower() == 'true':
    base_url = base_url.replace("https://", "http://") 
else:
    base_url = base_url.replace("http://", "https://") 

[lili7h]

Alternatively, you can do some pythonic splitting...

proto = "http://" if os.getenv('DEVELOPMENT', 'false').lower() == 'true' else "https://"
base_url = proto + base_url.split("//")[-1]

[megascatterbomb]

Implemented your pythonic method with an additional check for None on os.getenv

[megascatterbomb]

Nevermind, didn't realise the extra parameter on getenv handled that case.

[megascatterbomb]

Been running this branch in production for weeks without issue, going to merge to main.