use strict;
use base 'Catalyst::Engine';
+use NEXT;
use URI;
-require CGI::Simple;
-require CGI::Cookie;
-
-$CGI::Simple::POST_MAX = 1048576;
-$CGI::Simple::DISABLE_UPLOADS = 0;
-
-__PACKAGE__->mk_accessors('cgi');
-
=head1 NAME
Catalyst::Engine::CGI - The CGI Engine
=head1 DESCRIPTION
-This is the Catalyst engine specialized for the CGI environment (using the
-C<CGI::Simple> and C<CGI::Cookie> modules). Normally Catalyst will select the
-appropriate engine according to the environment that it detects, however you
-can force Catalyst to use the CGI engine by specifying the following in your
-application module:
-
- use Catalyst qw(-Engine=CGI);
-
-Catalyst::Engine::CGI generates a full set of HTTP headers, which means that
-applications using the engine must be be configured as "Non-parsed Headers"
-scripts (at least when running under Apache). To configure this under Apache
-name the starting with C<nph->.
-
-The performance of this way of using Catalyst is not expected to be
-useful in production applications, but it may be helpful for development.
-
-=head1 METHODS
-
-=over 4
-
-=item $c->cgi
-
-This config parameter contains the C<CGI::Simple> object.
-
-=back
+This is the Catalyst engine specialized for the CGI environment.
=head1 OVERLOADED METHODS
=over 4
-=item $c->finalize_headers
+=item $self->finalize_headers($c)
=cut
sub finalize_headers {
- my $c = shift;
- my %headers;
- $headers{-status} = $c->response->status if $c->response->status;
- for my $name ( $c->response->headers->header_field_names ) {
- $headers{"-$name"} = $c->response->headers->header($name);
- }
- my @cookies;
- while ( my ( $name, $cookie ) = each %{ $c->response->cookies } ) {
- push @cookies, $c->cgi->cookie(
- -name => $name,
- -value => $cookie->{value},
- -expires => $cookie->{expires},
- -domain => $cookie->{domain},
- -path => $cookie->{path},
- -secure => $cookie->{secure} || 0
- );
- }
- $headers{-cookie} = \@cookies if @cookies;
- print $c->cgi->header(%headers);
-}
-
-=item $c->finalize_output
-
-Prints the response output to STDOUT.
+ my ( $self, $c ) = @_;
-=cut
+ $c->response->header( Status => $c->response->status );
-sub finalize_output {
- my $c = shift;
- print $c->response->output;
+ print $c->response->headers->as_string("\015\012");
+ print "\015\012";
}
-=item $c->prepare_connection
+=item $self->prepare_connection($c)
=cut
sub prepare_connection {
- my $c = shift;
- $c->req->hostname( $c->cgi->remote_host );
- $c->req->address( $c->cgi->remote_addr );
-}
-
-=item $c->prepare_cookies
+ my ( $self, $c ) = @_;
-Sets up cookies.
+ $c->request->address( $ENV{REMOTE_ADDR} );
-=cut
-
-sub prepare_cookies { shift->req->cookies( { CGI::Cookie->fetch } ) }
+ PROXY_CHECK:
+ {
+ unless ( $c->config->{using_frontend_proxy} ) {
+ last PROXY_CHECK if $ENV{REMOTE_ADDR} ne '127.0.0.1';
+ last PROXY_CHECK if $c->config->{ignore_frontend_proxy};
+ }
+ last PROXY_CHECK unless $ENV{HTTP_X_FORWARDED_FOR};
+
+ # If we are running as a backend server, the user will always appear
+ # as 127.0.0.1. Select the most recent upstream IP (last in the list)
+ my ($ip) = $ENV{HTTP_X_FORWARDED_FOR} =~ /([^,\s]+)$/;
+ $c->request->address($ip);
+ }
-=item $c->prepare_headers
+ $c->request->hostname( $ENV{REMOTE_HOST} );
+ $c->request->protocol( $ENV{SERVER_PROTOCOL} );
+ $c->request->user( $ENV{REMOTE_USER} );
+ $c->request->method( $ENV{REQUEST_METHOD} );
-=cut
+ if ( $ENV{HTTPS} && uc( $ENV{HTTPS} ) eq 'ON' ) {
+ $c->request->secure(1);
+ }
-sub prepare_headers {
- my $c = shift;
- $c->req->method( $c->cgi->request_method );
- for my $header ( $c->cgi->http ) {
- ( my $field = $header ) =~ s/^HTTPS?_//;
- $c->req->headers->header( $field => $c->cgi->http($header) );
+ if ( $ENV{SERVER_PORT} == 443 ) {
+ $c->request->secure(1);
}
- $c->req->headers->header( 'Content-Type' => $c->cgi->content_type );
- $c->req->headers->header( 'Content-Length' => $c->cgi->content_length );
}
-=item $c->prepare_parameters
+=item $self->prepare_headers($c)
=cut
-sub prepare_parameters {
- my $c = shift;
+sub prepare_headers {
+ my ( $self, $c ) = @_;
- $c->cgi->parse_query_string;
-
- my %vars = $c->cgi->Vars;
- while ( my ( $key, $value ) = each %vars ) {
- my @values = split "\0", $value;
- $vars{$key} = @values <= 1 ? $values[0] : \@values;
+ # Read headers from %ENV
+ while ( my ( $header, $value ) = each %ENV ) {
+ next unless $header =~ /^(?:HTTP|CONTENT|COOKIE)/i;
+ ( my $field = $header ) =~ s/^HTTPS?_//;
+ $c->req->headers->header( $field => $value );
}
- $c->req->parameters( {%vars} );
}
-=item $c->prepare_path
+=item $self->prepare_path($c)
=cut
sub prepare_path {
- my $c = shift;
+ my ( $self, $c ) = @_;
+
+ my $scheme = $c->request->secure ? 'https' : 'http';
+ my $host = $ENV{HTTP_HOST} || $ENV{SERVER_NAME};
+ my $port = $ENV{SERVER_PORT} || 80;
+ my $base_path = $ENV{SCRIPT_NAME} || '/';
- my $base;
+ # If we are running as a backend proxy, get the true hostname
+ PROXY_CHECK:
{
- my $scheme = $ENV{HTTPS} ? 'https' : 'http';
- my $host = $ENV{HTTP_HOST} || $ENV{SERVER_NAME};
- my $port = $ENV{SERVER_PORT} || 80;
- my $path = $ENV{SCRIPT_NAME} || '/';
-
- $base = URI->new;
- $base->scheme($scheme);
- $base->host($host);
- $base->port($port);
- $base->path($path);
-
- $base = $base->canonical->as_string;
- }
+ unless ( $c->config->{using_frontend_proxy} ) {
+ last PROXY_CHECK if $host !~ /localhost|127.0.0.1/;
+ last PROXY_CHECK if $c->config->{ignore_frontend_proxy};
+ }
+ last PROXY_CHECK unless $ENV{HTTP_X_FORWARDED_HOST};
- my $path = $ENV{PATH_INFO} || '/';
- $path =~ s/^\///;
+ $host = $ENV{HTTP_X_FORWARDED_HOST};
- $c->req->base($base);
- $c->req->path($path);
+ # backend could be on any port, so
+ # assume frontend is on the default port
+ $port = $c->request->secure ? 443 : 80;
+ }
+
+ my $path = $base_path . $ENV{PATH_INFO};
+ $path =~ s{^/+}{};
+
+ my $uri = URI->new;
+ $uri->scheme($scheme);
+ $uri->host($host);
+ $uri->port($port);
+ $uri->path($path);
+ $uri->query( $ENV{QUERY_STRING} ) if $ENV{QUERY_STRING};
+
+ # sanitize the URI
+ $uri = $uri->canonical;
+ $c->request->uri($uri);
+
+ # set the base URI
+ # base must end in a slash
+ $base_path .= '/' unless ( $base_path =~ /\/$/ );
+ my $base = $uri->clone;
+ $base->path_query($base_path);
+ $c->request->base($base);
}
-=item $c->prepare_request
+=item $self->prepare_query_parameters($c)
=cut
-sub prepare_request { shift->cgi( CGI::Simple->new ) }
+sub prepare_query_parameters {
+ my ( $self, $c ) = @_;
+
+ if ( $ENV{QUERY_STRING} ) {
+ $self->SUPER::prepare_query_parameters( $c, $ENV{QUERY_STRING} );
+ }
+}
+
+=item $self->prepare_write($c)
-=item $c->prepare_uploads
+Enable autoflush on the output handle for CGI-based engines.
=cut
-sub prepare_uploads {
- my $c = shift;
- for my $name ( $c->cgi->upload ) {
- next unless defined $name;
- $c->req->uploads->{$name} = {
- fh => $c->cgi->upload($name),
- size => $c->cgi->upload_info( $name, 'size' ),
- type => $c->cgi->upload_info( $name, 'mime' )
- };
- }
+sub prepare_write {
+ my ( $self, $c ) = @_;
+
+ # Set the output handle to autoflush
+ *STDOUT->autoflush(1);
+
+ $self->NEXT::prepare_write($c);
}
-=item $c->run
+=item $self->read_chunk($c, $buffer, $length)
=cut
-sub run { shift->handler }
+sub read_chunk { shift; shift; *STDIN->sysread(@_); }
+
+=item $self->run
+
+=cut
+
+sub run { shift; shift->handle_request(@_) }
=back
=head1 SEE ALSO
-L<Catalyst>.
+L<Catalyst> L<Catalyst::Engine>.
+
+=head1 AUTHORS
+
+Sebastian Riedel, <sri@cpan.org>
-=head1 AUTHOR
+Christian Hansen, <ch@ngmedia.com>
-Sebastian Riedel, C<sri@cpan.org>
+Andy Grundman, <andy@hybridized.org>
=head1 COPYRIGHT