1 /* Licensed to the Apache Software Foundation (ASF) under one or more
2 * contributor license agreements. See the NOTICE file distributed with
3 * this work for additional information regarding copyright ownership.
4 * The ASF licenses this file to You under the Apache License, Version 2.0
5 * (the "License"); you may not use this file except in compliance with
6 * the License. You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
18 * @file http_request.h
19 * @brief Apache Request library
21 * @defgroup APACHE_CORE_REQ Apache Request Processing
22 * @ingroup APACHE_CORE
27 * request.c is the code which handles the main line of request
28 * processing, once a request has been read in (finding the right per-
29 * directory configuration, building it if necessary, and calling all
30 * the module dispatch functions in the right order).
32 * The pieces here which are public to the modules, allow them to learn
33 * how the server would handle some other file or URI, or perhaps even
34 * direct the server to serve that other file instead of the one the
35 * client requested directly.
37 * There are two ways to do that. The first is the sub_request mechanism,
38 * which handles looking up files and URIs as adjuncts to some other
39 * request (e.g., directory entries for multiviews and directory listings);
40 * the lookup functions stop short of actually running the request, but
41 * (e.g., for includes), a module may call for the request to be run
42 * by calling run_sub_req. The space allocated to create sub_reqs can be
43 * reclaimed by calling destroy_sub_req --- be sure to copy anything you care
44 * about which was allocated in its apr_pool_t elsewhere before doing this.
47 #ifndef APACHE_HTTP_REQUEST_H
48 #define APACHE_HTTP_REQUEST_H
50 #include "apr_optional.h"
51 #include "util_filter.h"
57 #define AP_SUBREQ_NO_ARGS 0
58 #define AP_SUBREQ_MERGE_ARGS 1
61 * An internal handler used by the ap_process_request, all subrequest mechanisms
62 * and the redirect mechanism.
63 * @param r The request, subrequest or internal redirect to pre-process
64 * @return The return code for the request
66 AP_DECLARE(int) ap_process_request_internal(request_rec *r);
69 * Create a subrequest from the given URI. This subrequest can be
70 * inspected to find information about the requested URI
71 * @param new_uri The URI to lookup
72 * @param r The current request
73 * @param next_filter The first filter the sub_request should use. If this is
74 * NULL, it defaults to the first filter for the main request
75 * @return The new request record
77 AP_DECLARE(request_rec *) ap_sub_req_lookup_uri(const char *new_uri,
79 ap_filter_t *next_filter);
82 * Create a subrequest for the given file. This subrequest can be
83 * inspected to find information about the requested file
84 * @param new_file The file to lookup
85 * @param r The current request
86 * @param next_filter The first filter the sub_request should use. If this is
87 * NULL, it defaults to the first filter for the main request
88 * @return The new request record
90 AP_DECLARE(request_rec *) ap_sub_req_lookup_file(const char *new_file,
92 ap_filter_t *next_filter);
94 * Create a subrequest for the given apr_dir_read result. This subrequest
95 * can be inspected to find information about the requested file
96 * @param finfo The apr_dir_read result to lookup
97 * @param r The current request
98 * @param subtype What type of subrequest to perform, one of;
100 * AP_SUBREQ_NO_ARGS ignore r->args and r->path_info
101 * AP_SUBREQ_MERGE_ARGS merge r->args and r->path_info
103 * @param next_filter The first filter the sub_request should use. If this is
104 * NULL, it defaults to the first filter for the main request
105 * @return The new request record
106 * @note The apr_dir_read flags value APR_FINFO_MIN|APR_FINFO_NAME flag is the
107 * minimum recommended query if the results will be passed to apr_dir_read.
108 * The file info passed must include the name, and must have the same relative
109 * directory as the current request.
111 AP_DECLARE(request_rec *) ap_sub_req_lookup_dirent(const apr_finfo_t *finfo,
112 const request_rec *r,
114 ap_filter_t *next_filter);
116 * Create a subrequest for the given URI using a specific method. This
117 * subrequest can be inspected to find information about the requested URI
118 * @param method The method to use in the new subrequest
119 * @param new_uri The URI to lookup
120 * @param r The current request
121 * @param next_filter The first filter the sub_request should use. If this is
122 * NULL, it defaults to the first filter for the main request
123 * @return The new request record
125 AP_DECLARE(request_rec *) ap_sub_req_method_uri(const char *method,
127 const request_rec *r,
128 ap_filter_t *next_filter);
130 * An output filter to strip EOS buckets from sub-requests. This always
131 * has to be inserted at the end of a sub-requests filter stack.
132 * @param f The current filter
133 * @param bb The brigade to filter
134 * @return status code
136 AP_CORE_DECLARE_NONSTD(apr_status_t) ap_sub_req_output_filter(ap_filter_t *f,
137 apr_bucket_brigade *bb);
140 * Run the handler for the subrequest
141 * @param r The subrequest to run
142 * @return The return code for the subrequest
144 AP_DECLARE(int) ap_run_sub_req(request_rec *r);
147 * Free the memory associated with a subrequest
148 * @param r The subrequest to finish
150 AP_DECLARE(void) ap_destroy_sub_req(request_rec *r);
153 * Then there's the case that you want some other request to be served
154 * as the top-level request INSTEAD of what the client requested directly.
155 * If so, call this from a handler, and then immediately return OK.
159 * Redirect the current request to some other uri
160 * @param new_uri The URI to replace the current request with
161 * @param r The current request
163 AP_DECLARE(void) ap_internal_redirect(const char *new_uri, request_rec *r);
166 * This function is designed for things like actions or CGI scripts, when
167 * using AddHandler, and you want to preserve the content type across
168 * an internal redirect.
169 * @param new_uri The URI to replace the current request with.
170 * @param r The current request
172 AP_DECLARE(void) ap_internal_redirect_handler(const char *new_uri, request_rec *r);
175 * Redirect the current request to a sub_req, merging the pools
176 * @param sub_req A subrequest created from this request
177 * @param r The current request
178 * @note the sub_req's pool will be merged into r's pool, be very careful
179 * not to destroy this subrequest, it will be destroyed with the main request!
181 AP_DECLARE(void) ap_internal_fast_redirect(request_rec *sub_req, request_rec *r);
184 * Can be used within any handler to determine if any authentication
185 * is required for the current request
186 * @param r The current request
187 * @return 1 if authentication is required, 0 otherwise
189 AP_DECLARE(int) ap_some_auth_required(request_rec *r);
192 * @defgroup APACHE_CORE_REQ_AUTH Access Control for Sub-Requests and
194 * @ingroup APACHE_CORE_REQ
198 #define AP_AUTH_INTERNAL_PER_URI 0 /**< Run access control hooks on all
199 internal requests with URIs
200 distinct from that of initial
202 #define AP_AUTH_INTERNAL_PER_CONF 1 /**< Run access control hooks only on
203 internal requests with
204 configurations distinct from
205 that of initial request */
206 #define AP_AUTH_INTERNAL_MASK 0x000F /**< mask to extract internal request
210 * Clear flag which determines when access control hooks will be run for
213 AP_DECLARE(void) ap_clear_auth_internal(void);
216 * Determine whether access control hooks will be run for all internal
217 * requests with URIs distinct from that of the initial request, or only
218 * those for which different configurations apply than those which applied
219 * to the initial request. To accomodate legacy external modules which
220 * may expect access control hooks to be run for all internal requests
221 * with distinct URIs, this is the default behaviour unless all access
222 * control hooks and authentication and authorization providers are
223 * registered with AP_AUTH_INTERNAL_PER_CONF.
224 * @param ptemp Pool used for temporary allocations
226 AP_DECLARE(void) ap_setup_auth_internal(apr_pool_t *ptemp);
229 * Register an authentication or authorization provider with the global
231 * @param pool The pool to create any storage from
232 * @param provider_group The group to store the provider in
233 * @param provider_name The name for this provider
234 * @param provider_version The version for this provider
235 * @param provider Opaque structure for this provider
236 * @param type Internal request processing mode, either
237 * AP_AUTH_INTERNAL_PER_URI or AP_AUTH_INTERNAL_PER_CONF
238 * @return APR_SUCCESS if all went well
240 AP_DECLARE(apr_status_t) ap_register_auth_provider(apr_pool_t *pool,
241 const char *provider_group,
242 const char *provider_name,
243 const char *provider_version,
244 const void *provider,
249 /* Optional functions coming from mod_authn_core and mod_authz_core
250 * that list all registered authn/z providers.
252 APR_DECLARE_OPTIONAL_FN(apr_array_header_t *, authn_ap_list_provider_names,
253 (apr_pool_t *ptemp));
254 APR_DECLARE_OPTIONAL_FN(apr_array_header_t *, authz_ap_list_provider_names,
255 (apr_pool_t *ptemp));
258 * Determine if the current request is the main request or a subrequest
259 * @param r The current request
260 * @return 1 if this is the main request, 0 otherwise
262 AP_DECLARE(int) ap_is_initial_req(request_rec *r);
265 * Function to set the r->mtime field to the specified value if it's later
266 * than what's already there.
267 * @param r The current request
268 * @param dependency_mtime Time to set the mtime to
270 AP_DECLARE(void) ap_update_mtime(request_rec *r, apr_time_t dependency_mtime);
273 * Add one or more methods to the list permitted to access the resource.
274 * Usually executed by the content handler before the response header is
275 * sent, but sometimes invoked at an earlier phase if a module knows it
276 * can set the list authoritatively. Note that the methods are ADDED
277 * to any already permitted unless the reset flag is non-zero. The
278 * list is used to generate the Allow response header field when it
280 * @param r The pointer to the request identifying the resource.
281 * @param reset Boolean flag indicating whether this list should
282 * completely replace any current settings.
283 * @param ... A NULL-terminated list of strings, each identifying a
284 * method name to add.
287 AP_DECLARE(void) ap_allow_methods(request_rec *r, int reset, ...);
290 * Add one or more methods to the list permitted to access the resource.
291 * Usually executed by the content handler before the response header is
292 * sent, but sometimes invoked at an earlier phase if a module knows it
293 * can set the list authoritatively. Note that the methods are ADDED
294 * to any already permitted unless the reset flag is non-zero. The
295 * list is used to generate the Allow response header field when it
297 * @param r The pointer to the request identifying the resource.
298 * @param reset Boolean flag indicating whether this list should
299 * completely replace any current settings.
300 * @param ... A list of method identifiers, from the "M_" series
301 * defined in httpd.h, terminated with a value of -1
302 * (e.g., "M_GET, M_POST, M_OPTIONS, -1")
305 AP_DECLARE(void) ap_allow_standard_methods(request_rec *r, int reset, ...);
307 #define MERGE_ALLOW 0
308 #define REPLACE_ALLOW 1
311 * Process a top-level request from a client, and synchronously write
312 * the response to the client
313 * @param r The current request
315 void ap_process_request(request_rec *r);
317 /* For post-processing after a handler has finished with a request.
318 * (Commonly used after it was suspended)
320 AP_DECLARE(void) ap_process_request_after_handler(request_rec *r);
323 * Process a top-level request from a client, allowing some or all of
324 * the response to remain buffered in the core output filter for later,
325 * asynchronous write completion
326 * @param r The current request
328 void ap_process_async_request(request_rec *r);
331 * Kill the current request
332 * @param type Why the request is dieing
333 * @param r The current request
335 AP_DECLARE(void) ap_die(int type, request_rec *r);
340 * Gives modules a chance to create their request_config entry when the
341 * request is created.
342 * @param r The current request
345 AP_DECLARE_HOOK(int,create_request,(request_rec *r))
348 * This hook allow modules an opportunity to translate the URI into an
349 * actual filename. If no modules do anything special, the server's default
350 * rules will be followed.
351 * @param r The current request
352 * @return OK, DECLINED, or HTTP_...
355 AP_DECLARE_HOOK(int,translate_name,(request_rec *r))
358 * This hook allow modules to set the per_dir_config based on their own
359 * context (such as "<Proxy>" sections) and responds to contextless requests
360 * such as TRACE that need no security or filesystem mapping.
361 * based on the filesystem.
362 * @param r The current request
363 * @return DONE (or HTTP_) if this contextless request was just fulfilled
364 * (such as TRACE), OK if this is not a file, and DECLINED if this is a file.
365 * The core map_to_storage (HOOK_RUN_REALLY_LAST) will directory_walk
366 * and file_walk the r->filename.
370 AP_DECLARE_HOOK(int,map_to_storage,(request_rec *r))
373 * This hook is used to analyze the request headers, authenticate the user,
374 * and set the user information in the request record (r->user and
375 * r->ap_auth_type). This hook is only run when Apache determines that
376 * authentication/authorization is required for this resource (as determined
377 * by the 'Require' directive). It runs after the access_checker hook, and
378 * before the auth_checker hook. This hook should be registered with
379 * ap_hook_check_authn().
381 * @param r The current request
382 * @return OK, DECLINED, or HTTP_...
384 * @see ap_hook_check_authn
386 AP_DECLARE_HOOK(int,check_user_id,(request_rec *r))
389 * Allows modules to perform module-specific fixing of header fields. This
390 * is invoked just before any content-handler
391 * @param r The current request
392 * @return OK, DECLINED, or HTTP_...
395 AP_DECLARE_HOOK(int,fixups,(request_rec *r))
398 * This routine is called to determine and/or set the various document type
399 * information bits, like Content-type (via r->content_type), language, et
401 * @param r the current request
402 * @return OK, DECLINED, or HTTP_...
405 AP_DECLARE_HOOK(int,type_checker,(request_rec *r))
408 * This hook is used to apply additional access control to this resource.
409 * It runs *before* a user is authenticated, so this hook is really to
410 * apply additional restrictions independent of a user. It also runs
411 * independent of 'Require' directive usage. This hook should be registered
412 * with ap_hook_check_access().
414 * @param r the current request
415 * @return OK, DECLINED, or HTTP_...
417 * @see ap_hook_check_access
419 AP_DECLARE_HOOK(int,access_checker,(request_rec *r))
422 * This hook is used to apply additional access control and/or bypass
423 * authentication for this resource. It runs *before* a user is authenticated,
424 * but after the auth_checker hook.
425 * This hook should be registered with ap_hook_check_access_ex().
427 * @param r the current request
428 * @return OK (allow acces), DECLINED (let later modules decide),
429 * or HTTP_... (deny access)
431 * @see ap_hook_check_access_ex
433 AP_DECLARE_HOOK(int,access_checker_ex,(request_rec *r))
436 * This hook is used to check to see if the resource being requested
437 * is available for the authenticated user (r->user and r->ap_auth_type).
438 * It runs after the access_checker and check_user_id hooks. Note that
439 * it will *only* be called if Apache determines that access control has
440 * been applied to this resource (through a 'Require' directive). This
441 * hook should be registered with ap_hook_check_authz().
443 * @param r the current request
444 * @return OK, DECLINED, or HTTP_...
446 * @see ap_hook_check_authz
448 AP_DECLARE_HOOK(int,auth_checker,(request_rec *r))
451 * Register a hook function that will apply additional access control to
452 * the current request.
453 * @param pf An access_checker hook function
454 * @param aszPre A NULL-terminated array of strings that name modules whose
455 * hooks should precede this one
456 * @param aszSucc A NULL-terminated array of strings that name modules whose
457 * hooks should succeed this one
458 * @param nOrder An integer determining order before honouring aszPre and
459 * aszSucc (for example, HOOK_MIDDLE)
460 * @param type Internal request processing mode, either
461 * AP_AUTH_INTERNAL_PER_URI or AP_AUTH_INTERNAL_PER_CONF
463 AP_DECLARE(void) ap_hook_check_access(ap_HOOK_access_checker_t *pf,
464 const char * const *aszPre,
465 const char * const *aszSucc,
466 int nOrder, int type);
469 * Register a hook function that will apply additional access control
470 * and/or bypass authentication for the current request.
471 * @param pf An access_checker_ex hook function
472 * @param aszPre A NULL-terminated array of strings that name modules whose
473 * hooks should precede this one
474 * @param aszSucc A NULL-terminated array of strings that name modules whose
475 * hooks should succeed this one
476 * @param nOrder An integer determining order before honouring aszPre and
477 * aszSucc (for example, HOOK_MIDDLE)
478 * @param type Internal request processing mode, either
479 * AP_AUTH_INTERNAL_PER_URI or AP_AUTH_INTERNAL_PER_CONF
481 AP_DECLARE(void) ap_hook_check_access_ex(ap_HOOK_access_checker_ex_t *pf,
482 const char * const *aszPre,
483 const char * const *aszSucc,
484 int nOrder, int type);
488 * Register a hook function that will analyze the request headers,
489 * authenticate the user, and set the user information in the request record.
490 * @param pf A check_user_id hook function
491 * @param aszPre A NULL-terminated array of strings that name modules whose
492 * hooks should precede this one
493 * @param aszSucc A NULL-terminated array of strings that name modules whose
494 * hooks should succeed this one
495 * @param nOrder An integer determining order before honouring aszPre and
496 * aszSucc (for example, HOOK_MIDDLE)
497 * @param type Internal request processing mode, either
498 * AP_AUTH_INTERNAL_PER_URI or AP_AUTH_INTERNAL_PER_CONF
500 AP_DECLARE(void) ap_hook_check_authn(ap_HOOK_check_user_id_t *pf,
501 const char * const *aszPre,
502 const char * const *aszSucc,
503 int nOrder, int type);
506 * Register a hook function that determine if the resource being requested
507 * is available for the currently authenticated user.
508 * @param pf An auth_checker hook function
509 * @param aszPre A NULL-terminated array of strings that name modules whose
510 * hooks should precede this one
511 * @param aszSucc A NULL-terminated array of strings that name modules whose
512 * hooks should succeed this one
513 * @param nOrder An integer determining order before honouring aszPre and
514 * aszSucc (for example, HOOK_MIDDLE)
515 * @param type Internal request processing mode, either
516 * AP_AUTH_INTERNAL_PER_URI or AP_AUTH_INTERNAL_PER_CONF
518 AP_DECLARE(void) ap_hook_check_authz(ap_HOOK_auth_checker_t *pf,
519 const char * const *aszPre,
520 const char * const *aszSucc,
521 int nOrder, int type);
524 * This hook allows modules to insert filters for the current request
525 * @param r the current request
528 AP_DECLARE_HOOK(void,insert_filter,(request_rec *r))
530 AP_DECLARE(int) ap_location_walk(request_rec *r);
531 AP_DECLARE(int) ap_directory_walk(request_rec *r);
532 AP_DECLARE(int) ap_file_walk(request_rec *r);
533 AP_DECLARE(int) ap_if_walk(request_rec *r);
535 /** End Of REQUEST (EOR) bucket */
536 AP_DECLARE_DATA extern const apr_bucket_type_t ap_bucket_type_eor;
539 * Determine if a bucket is an End Of REQUEST (EOR) bucket
540 * @param e The bucket to inspect
541 * @return true or false
543 #define AP_BUCKET_IS_EOR(e) (e->type == &ap_bucket_type_eor)
546 * Make the bucket passed in an End Of REQUEST (EOR) bucket
547 * @param b The bucket to make into an EOR bucket
548 * @param r The request to destroy when this bucket is destroyed
549 * @return The new bucket, or NULL if allocation failed
551 AP_DECLARE(apr_bucket *) ap_bucket_eor_make(apr_bucket *b, request_rec *r);
554 * Create a bucket referring to an End Of REQUEST (EOR). This bucket
555 * holds a pointer to the request_rec, so that the request can be
556 * destroyed right after all of the output has been sent to the client.
558 * @param list The freelist from which this bucket should be allocated
559 * @param r The request to destroy when this bucket is destroyed
560 * @return The new bucket, or NULL if allocation failed
562 AP_DECLARE(apr_bucket *) ap_bucket_eor_create(apr_bucket_alloc_t *list,
569 #endif /* !APACHE_HTTP_REQUEST_H */