From e98daec5960b7ecdd18bc461003df3a18d2adbe7 Mon Sep 17 00:00:00 2001
From: derelict-pf <cjlinst@gmail.com>
Date: Fri, 20 Dec 2013 17:25:02 -0800
Subject: Add checkbox and logic to disable forwarding HTTPS/SSL (Port 443)
 connections to the captive portal if HTTPS logins is enabled.

---
 etc/inc/captiveportal.inc | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'etc/inc/captiveportal.inc')

diff --git a/etc/inc/captiveportal.inc b/etc/inc/captiveportal.inc
index 6429156..0387ee1 100644
--- a/etc/inc/captiveportal.inc
+++ b/etc/inc/captiveportal.inc
@@ -551,7 +551,9 @@ EOD;
 
 	if (isset($config['captiveportal'][$cpzone]['httpslogin'])) {
 		$listenporthttps = $listenporthttp + 1;
-		$cprules .= "add 65531 fwd 127.0.0.1,{$listenporthttps} tcp from any to any dst-port 443 in\n";
+		if (!isset($config['captiveportal'][$cpzone]['nohttpsforwards'])) {
+			$cprules .= "add 65531 fwd 127.0.0.1,{$listenporthttps} tcp from any to any dst-port 443 in\n";
+		}
 	}
 	
 	$cprules .= <<<EOD
-- 
cgit v1.1