From: Denis Vlasenko
SERVER_SOFTWARE
+
SERVER_SOFTWARE
The name and version of the information server software answering the request (and running the gateway). Format: name/version
@@ -25,7 +25,7 @@ set for all requests:
The server's hostname, DNS alias, or IP address as it would appear in self-referencing URLs.
-
GATEWAY_INTERFACE
+
GATEWAY_INTERFACE
The revision of the CGI specification to which this server complies. Format: CGI/revision
@@ -48,7 +48,7 @@ fulfilled by the gateway program:
The method with which the request was made. For HTTP, this is "GET", "HEAD", "POST", etc.
-
PATH_INFO
+
PATH_INFO
The extra path information, as given by the client. In other words, scripts can be accessed by their virtual pathname, followed by extra information at the end of this path. The extra @@ -64,7 +64,7 @@ fulfilled by the gateway program:
A virtual path to the script being executed, used for self-referencing URLs.
-
QUERY_STRING
+
QUERY_STRING
The information which follows the ? in the URL which referenced this script. This is the query information. It should not be decoded in any fashion. This variable should always @@ -82,7 +82,7 @@ fulfilled by the gateway program:
protects, this is the protocol-specific authentication method used to validate the user.
-
REMOTE_USER
+
REMOTE_USER
If the server supports user authentication, and the script is protected, this is the username they have authenticated as.
REMOTE_IDENT
diff --git a/docs/cgi/interface.html b/docs/cgi/interface.html index 33f02881b..ea73ce3a2 100644 --- a/docs/cgi/interface.html +++ b/docs/cgi/interface.html @@ -12,7 +12,7 @@ The server and the CGI script communicate in four major ways. Each of the following is a hotlink to graphic detail.
Discussion of this draft occurs on the CGI-WG mailing list; see the - project Web page at + project Web page at <URL:http://CGI-Spec.Golux.Com/> for details on the mailing list and the status of the project. @@ -410,17 +410,17 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2]
Together the HTTP [3,8] server - and the CGI script are responsible + and the CGI script are responsible for servicing a client request by sending back responses. The client request comprises a Universal Resource Identifier (URI) - [1], a + [1], a request method, and various ancillary information about the request provided by the transport mechanism.
- The CGI defines the abstract parameters, known as + The CGI defines the abstract parameters, known as metavariables, which describe the client's request. Together with a @@ -435,7 +435,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2]
This specification uses the same words as RFC 1123 - [5] to define the + [5] to define the significance of each particular requirement. These are:
@@ -478,7 +478,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] all of the 'should' requirements for its features is said to be 'conditionally compliant.' - +This specification uses many terms defined in the HTTP/1.1 specification [8]; however, the following terms are - used here in a + used here in a sense which may not accord with their definitions in that document, or with their common meaning.
- +The software which is invoked by the server via this - interface. It + interface. It need not be a standalone program, but could be a dynamically-loaded or shared library, or even a subroutine in the server. It may be a set of statements @@ -562,7 +562,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2]
The 'Script-URI' is defined as the URI of the resource identified by the metavariables. Often, - this URI will be the same as + this URI will be the same as the URI requested by the client (the 'Client-URI'); however, it need not be. Instead, it could be a URI invented by the server, and so it can only be used in the context of the server and its CGI interface. @@ -747,7 +747,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2]
The Script-URI has the syntax of generic-RL as defined in section 2.1 of RFC 1808 [7], with the exception that object - parameters and + parameters and fragment identifiers are not permitted:
@@ -783,7 +783,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] for the script to reconstruct this, and therefore the Script-URI includes the base protocol used. - +Each CGI server implementation MUST define a mechanism - to pass data about the request from + to pass data about the request from the server to the script. The metavariables containing these data are accessed by the script in a system - defined manner. + defined manner. The representation of the characters in the metavariables is @@ -935,7 +935,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2]
- This variable is specific to requests made
+ This variable is specific to requests made
via the
"http
"
scheme.
@@ -943,10 +943,10 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2]
If the Script-URI required access authentication for external - access, then the server + access, then the server MUST set the value of - this variable + this variable from the 'auth-scheme' token in the request's "Authorization" header field. @@ -962,7 +962,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2]
HTTP access authentication schemes are described in section 11 of the HTTP/1.1 specification [8]. The auth-scheme is - not case-sensitive. + not case-sensitive.
Servers @@ -1018,7 +1018,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] entity if the type was provided via a "Content-type" field in the request header, or if the server can determine it in the absence - of a supplied "Content-type" field. The syntax is the + of a supplied "Content-type" field. The syntax is the same as for the HTTP "Content-Type" header field.
@@ -1053,7 +1053,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] the data received. If the type remains unknown, then the script MAY choose to either assume a content-type of - application/octet-stream + application/octet-stream or reject the request with a 415 ("Unsupported Media Type") error. See section 7.2.1.3 for more information about returning error status values. @@ -1091,7 +1091,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2]Note that the major and minor numbers are treated as separate - integers and hence each may be + integers and hence each may be more than a single digit. Thus CGI/2.4 is a lower version than CGI/2.13 which in turn is lower than CGI/12.3. Leading zeros in either @@ -1114,10 +1114,10 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2]
These metavariables are specific to - the protocol + the protocol via which the request is made. - Interpretation of these variables depends on the value of - the + Interpretation of these variables depends on the value of + the SERVER_PROTOCOL metavariable (see @@ -1158,7 +1158,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] the request header fields that they receive. In particular, - they MAY + they MAY decline to make available any header fields carrying authentication information, such as "Authorization", or @@ -1188,7 +1188,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] (defined in RFC 2396 [4]), with the exception - that a PATH_INFO of "/" + that a PATH_INFO of "/" represents a single void path segment.
@@ -1202,7 +1202,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] The PATH_INFO string is the trailing part of the <path> component of the Script-URI (see section 3.2) - that follows the SCRIPT_NAME + that follows the SCRIPT_NAME portion of the path.@@ -1285,7 +1285,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] case of the original segment through the translation.
- The + The translation algorithm the server uses to derive PATH_TRANSLATED is implementation defined; CGI scripts which use this variable may @@ -1303,7 +1303,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2]
- A URL-encoded + A URL-encoded string; the <query> part of the Script-URI. (See @@ -1371,7 +1371,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] Servers SHOULD provide this information to scripts.
- +- The method is case sensitive. + The method is case sensitive. CGI/1.1 servers MAY choose to process some methods directly rather than passing them to scripts.
@@ -1460,7 +1460,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] Servers MUST provide this metavariable to scripts. - +For non-parsed header (NPH) scripts (see section 7.1 - below), + below), servers SHOULD attempt to ensure that the data supplied to the script are precisely @@ -1705,7 +1705,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] internal and no transport-visible buffering.
- +Servers MUST support the standard mechanism (described below) which - allows + allows script authors to determine what URL to use in documents which reference the script; @@ -1951,11 +1951,11 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] mechanism is as follows:
- The server + The server MUST translate the header data from the CGI header field syntax to the HTTP header field syntax if these differ. For example, the character - sequence for + sequence for newline (such as Unix's ASCII NL) used by CGI scripts may not be the same as that used by HTTP (ASCII CR followed by LF). The server MUST also resolve any conflicts between header fields returned by the script @@ -2052,7 +2052,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2]
- If a script is processing the output of a form, it SHOULD + If a script is processing the output of a form, it SHOULD verify that the CONTENT_TYPE is "application/x-www-form-urlencoded" [2] or whatever other media type is expected. @@ -2231,12 +2231,12 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] of void path segments ("//") and special path segments ("." and ".."). They SHOULD either be removed from the path before - use in OS + use in OS system calls, or the request SHOULD be rejected with '404 Not Found'.
- As it is impossible for + As it is impossible for scripts to determine the client URI that initiated a request without knowledge of the specific server in @@ -2246,7 +2246,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] tag in the document.
- When returning header fields, + When returning header fields, scripts SHOULD try to send the CGI header fields (see section 7.2) as soon as possible, and @@ -2254,7 +2254,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] before any HTTP header fields. This may help reduce the server's memory requirements.
- +As discussed in the security considerations of the HTTP specifications [3,8], the - convention has been established that the + convention has been established that the GET and HEAD methods should be 'safe'; they should cause no side-effects and only have the significance of resource retrieval.
@@ -2386,7 +2386,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2] requests are those that may be repeated an arbitrary number of times and produce side effects identical to a single request. - +@@ -2614,7 +2614,7 @@ INTERNET-DRAFT Expires 1 December 1998 [Page 2]