allow_url_fopen setting does not work with code

Hi,

using http wrapper in streams considered as potential security risk. On our server we use allow_url_fopen=0 to block possibility to use url instead filenames. The recomended method to make remote requests in PHP  is to use curl directly. 
**Anyway there would be no problem to override Api::httpRequest if it would have protected access modifier.**