DO NOT REPLY [Bug 17149] New: - SCRIPT_URI is missing when using mod_ssl

18 Feb 2003 03:20:05 -0000 

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=17149>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=17149

SCRIPT_URI is missing when using mod_ssl

           Summary: SCRIPT_URI is missing when using mod_ssl
           Product: Apache httpd-2.0
           Version: 2.0.44
          Platform: PC
        OS/Version: Linux
            Status: NEW
          Severity: Normal
          Priority: Other
         Component: mod_ssl
        AssignedTo: [email protected]
        ReportedBy: [EMAIL PROTECTED]


I'm not sure if this is actually a bug, but since there's no indication as to
any special cases involving SSL in
http://httpd.apache.org/docs-2.0/mod/mod_rewrite.html then I'm assuming the
behavior is unintended.

Note: I've only tested this using a server running on a non-standard port, so
that may be a contributing factor.

Here's how to reproduce:

1. create a cgi-directory with the following properties

    Options +ExecCGI
    AddHandler cgi-script .cgi
    DirectoryIndex index.html ... index.cgi

2. create a file called index.cgi in that directory:

- - - - - - - - %< CUT HERE >% - - - - - - - -
#!/bin/sh                                                                       
echo 'Content-type: text/html'
echo
echo '<pre>'
echo "\$SCRIPT_URI = $SCRIPT_URI"
echo '</pre>'

exit 0
- - - - - - - - %< CUT HERE >% - - - - - - - -

3. Navigate to that file on your server. For example:

    lynx -source http://somehost.somedomain/cgi-bin/index.cgi

You should see the following output:

<pre>
$SCRIPT_URI = http://somehost.somedomain/cgi-bin/index.cgi
</pre>

4. Now navigate to the file using the SSL connection. For example:

    lynx -source https://somehost.somedomain/cgi-bin/index.cgi

You should now see the following output:

<pre>
$SCRIPT_URI = 
</pre>

Another way to see this is when running PHP in Apache. The
$_SERVER['SCRIPT_URI'] entry will be missing for any script arrived at through
the SSL port(s).

I have not tried this in Apache 1.x.

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to