[prev in list] [next in list] [prev in thread] [next in thread] 

List:       varnish-dev
Subject:    Future plans
From:       des () linpro ! no (Dag-Erling =?iso-8859-1?Q?Sm=F8rgrav?=)
Date:       2006-07-09 4:21:22
Message-ID: ujr8xn3xvb1.fsf () cat ! linpro ! no
[Download RAW message or body]

"Poul-Henning Kamp" <phk at phk.freebsd.dk> writes:
> I don't want to get into URI cleanup at all.  My preference would
> be to do the opposite:  hash on $host+" "+$url_without_host because
> trimming the host from absolute URIs is practically free whereas
> normalizing them is text-processing.

Well, we still want to:

 - convert the Request-URI from absolute URI to absolute path when the
   client specifies an absolute URI (RFC2616 5.1.2)

 - compare the Request-URI to the Host: header if both were specified,
   and reject the request if they don't match

 - recognize when the Request-URI includes authentication information
   (http://user:password at host:port/path/to/document)

> If for some reason people need to do normalization, we can add
> it as a VCL operation.

Judging by how many of my colleagues ask me the "does Varnish replace
mod_security" question, I can pretty much guarantee you that URL
normalization will be a popular feature.

DES
-- 
Dag-Erling Sm?rgrav
Senior Software Developer
Linpro AS - www.linpro.no


[prev in list] [next in list] [prev in thread] [next in thread]