ServerRequestFactory marshals the request URI. In
prior releases, we would attempt to inspect the X-Rewrite-Url and
X-Original-Url headers, using their values, if present. These headers are
issued by the ISAPI_Rewrite module for IIS (developed by HeliconTech).
However, we have no way of guaranteeing that the module is what issued the
headers, making it an unreliable source for discovering the URI. As such, we
have removed this feature in this release of Diactoros.If you are developing a middleware application, you can mimic the functionality via middleware as follows:
use Psr\Http\Message\ResponseInterface;
use Psr\Http\Message\ServerRequestInterface;
use Psr\Http\Server\RequestHandlerInterface;
use Zend\Diactoros\Uri;
public function process(ServerRequestInterface $request, RequestHandlerInterface $handler) : ResponseInterface
{
$requestUri = null;
$httpXRewriteUrl = $request->getHeaderLine('X-Rewrite-Url');
if ($httpXRewriteUrl !== null) {
$requestUri = $httpXRewriteUrl;
}
$httpXOriginalUrl = $request->getHeaderLine('X-Original-Url');
if ($httpXOriginalUrl !== null) {
$requestUri = $httpXOriginalUrl;
}
if ($requestUri !== null) {
$request = $request->withUri(new Uri($requestUri));
}
return $handler->handle($request);
}
If you use middleware such as the above, make sure you also instruct your web server to strip any incoming headers of the same name so that you can guarantee they are issued by the ISAPI_Rewrite module.
#321 updates the logic in Uri::withPort() to ensure that it checks that the
value provided is either an integer or a string integer, as only those values
may be cast to integer without data loss.
#320 adds checking within Response to ensure that the provided reason
phrase is a string; an InvalidArgumentException is now raised if it is not. This change
ensures the class adheres strictly to the PSR-7 specification.
#319 provides a fix to Zend\Diactoros\Response that ensures that the status
code returned is always an integer (and never a string containing an
integer), thus ensuring it strictly adheres to the PSR-7 specification.
#318 fixes the logic for discovering whether an HTTPS scheme is in play to be case insensitive when comparing header and SAPI values, ensuring no false negative lookups occur.
#314 modifies error handling around opening a file resource within
Zend\Diactoros\Stream::setStream() to no longer use the second argument to
set_error_handler(), and instead check the error type in the handler itself;
this fixes an issue when the handler is nested inside another error handler,
which currently has buggy behavior within the PHP engine.
normalizeUploadedFiles() utility function handles nested trees of
uploaded files, ensuring it detects them properly.Zend\Diactoros namespace, each of
which may be used to derive artifacts from SAPI supergloabls for the purposes
of generating a ServerRequest instance:normalizeServer(array $server, callable $apacheRequestHeaderCallback = null) : array
(main purpose is to aggregate the Authorization header in the SAPI params
when under Apache)marshalProtocolVersionFromSapi(array $server) : stringmarshalMethodFromSapi(array $server) : stringmarshalUriFromSapi(array $server, array $headers) : UrimarshalHeadersFromSapi(array $server) : arrayparseCookieHeader(string $header) : arraycreateUploadedFile(array $spec) : UploadedFile (creates the instance from
a normal $_FILES entry)normalizeUploadedFiles(array $files) : UploadedFileInterface[] (traverses
a potentially nested array of uploaded file instances and/or $_FILES
entries, including those aggregated under mod_php, php-fpm, and php-cgi in
order to create a flat array of UploadedFileInterface instances to use in a
request)#307 deprecates ServerRequestFactory::normalizeServer(); the method is
no longer used internally, and users should instead use Zend\Diactoros\normalizeServer(),
to which it proxies.
#307 deprecates ServerRequestFactory::marshalHeaders(); the method is
no longer used internally, and users should instead use Zend\Diactoros\marshalHeadersFromSapi(),
to which it proxies.
#307 deprecates ServerRequestFactory::marshalUriFromServer(); the method
is no longer used internally. Users should use marshalUriFromSapi() instead.
#307 deprecates ServerRequestFactory::marshalRequestUri(). the method is no longer
used internally, and currently proxies to marshalUriFromSapi(), pulling the
discovered path from the Uri instance returned by that function. Users
should use marshalUriFromSapi() instead.
#307 deprecates ServerRequestFactory::marshalHostAndPortFromHeaders(); the method
is no longer used internally, and currently proxies to marshalUriFromSapi(),
pulling the discovered host and port from the Uri instance returned by that
function. Users should use marshalUriFromSapi() instead.
#307 deprecates ServerRequestFactory::getHeader(); the method is no longer
used internally. Users should copy and paste the functionality into their own
applications if needed, or rely on headers from a fully-populated Uri
instance instead.
#307 deprecates ServerRequestFactory::stripQueryString(); the method is no longer
used internally, and users can mimic the functionality via the expression
$path = explode('?', $path, 2)[0];.
#307 deprecates ServerRequestFactory::normalizeFiles(); the functionality
is no longer used internally, and users can use normalizeUploadedFiles() as
a replacement.
#303 deprecates Zend\Diactoros\Response\EmitterInterface and its various implementations. These are now provided via the
zendframework/zend-httphandlerrunner package as 1:1 substitutions.
#303 deprecates the Zend\Diactoros\Server class. Users are directed to the RequestHandlerRunner class from the
zendframework/zend-httphandlerrunner package as an alternative.
Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:
sudo dnf upgrade --refresh --advisory=FEDORA-2018-4a606489aePlease log in to add feedback.
This update has been submitted for testing by siwinski.
siwinski edited this update.
siwinski edited this update.
This update has been pushed to testing.
This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes
This update has been submitted for batched by siwinski.
This update has been submitted for stable by siwinski.
This update has been pushed to stable.