mod_setenvifplus
The mod_setenvifplus module allows you to set environment variables according to whether different aspects of the request match regular expressions you specify. These environment variables can be used by other parts of the server to make decisions about actions to be taken, e.g. by using mod_qos or to propagate supplemental information to the application via HTTP header data. mod_setenvifplus is derived from the standard Apache modules mod_setenvif and mod_headers.
mod_setenvifplus is an open source software licensed under the Apache License. Downloads are handled by SourceForge.net.
Configuration
Directives
-
SetEnvIfPlus[NoCase] <attribute> <regex> [!]<env-variable>[=<value>] [late]
TheSetEnvIfPlus[NoCase]directive defines Apache environment variables based on attributes of the request (theSetEnvIfPlusNoCasediffers from theSetEnvIfPlusonly in that the regular expression matching is performed in a case-insensitive manner).
The first argument (attribute) can be one of three things:-
An HTTP request header field, for example:
HostorUser-Agent. A regular expression may be used to specify a set of request headers. -
One of the following aspects of the request:
Remote_Host- the hostname (if available) of the client making the request.
Remote_Addr- the IP address of the client making the request.
Server_Addr- the IP address of the server on which the request was received.
Request_Method- the name of the method being used (GET, POST, etc.).
Request_Protocol- the name and version of the protocol with which the request was made (e.g., "HTTP/0.9", "HTTP/1.1", etc.).
Request_URI- the resource requested on the HTTP request line - generally the path portion of the URL without the query string.
Request_Query- the query portion of the request URL.
Request_User- name of the user authenticated by the Apache server. Available in "late" request processing only. -
The name of an environment variable in the list of those associated
with the request. This allows
SetEnvIfPlus*directives to test against the result of prior matches. Only those environment variables defined by earlierSetEnvIfPlus*directives are available for testing in this manner. 'Earlier' means that they were defined at a broader scope (such as server-wide) or previously in the current directive's scope. Environment variables will be considered only if there was no match among request characteristics and a regular expression was not used for the attribute.
The third argument (env-variable) gives the name of a variable to set and an optional value to which it should be set. This takes one of the following forms:- env-variable
- !env-variable
- env-variable=value
$1..$9within the value and replace them by parenthesized subexpressions of the regular expression.
The value string may also contain other environment variable names surrounded by "${" and "}" which are resolved by the values of those variables. The env-variable will NOT be set if any of those variable names within the value string can't be resolved because the variable is not available (except the name of the variable is the same as the target variable to set).
Functions can be used to manipulate the parts of the value. Each function has a name and surrounds the string to process by brackes (nested functions are not allowed within a single attribute). Functions are processed after resolving sub-expressions ($1..$9) and variables (${name}). The following functions are available:
$e64(<string>)- implements base64 encoding.
$d64(<string>)- implements base64 decoding.
$eURL(<string>)- implements URL encoding.
$dURL(<string>)- implements URL decoding.
$enc(<string>)- implements encryption.
$dec(<string>)- implements decryption ($end()and$dec()use the key defined by the SP_KEY environment variable).
$RND(<num>)- creates the specified number (num) of random data (chars).
These directives are considered in the following order:- Directives are processed in the order they appear in the configuration files.
- Directives within the server configuration (outside Location or Directory) are processed very early (in the very first request processing phase called post read request).
- Directives within a Location or Directory directive are either processed early at the header parser or "late" at the fixup hook, depending on their optional fourth argument.
-
An HTTP request header field, for example:
-
ResponseSetEnvIfPlus[NoCase] <attribute> <regex> [!]<env-variable>[=<value>]
Same as theSetEnvIfPlus[NoCase]directive but applied at HTTP response processing and against the HTTP response header. Available at Location/Directory level only.ResponseSetEnvIfPlus[NoCase]allows also to match against the server's HTTP response status code using theResponse_Statusattribute string. -
RequestHeaderPlus set|unset|add <header> [<value>] [env=[!]<env-variable>] [late]
This directive is used to manipulate HTTP request headers. This directive may be used at server or at Location/Directory level and is executed after theSetEnvIfPlusdirective.
The first argument specifies the action to take:
set- is used to set (add or replace) an HTTP request header.
unset- is used to unset (delete) an HTTP request header.
add- is used to add an HTTP request header.
The second argument (header) specifies the HTTP header name.
The "value" argument defines the value of the header. This argument may only be used in conjunction with a "set" or "add" action. The value string may also contain other environment variable names surrounded by "${" and "}" which are resolved by the values of those variables. The header will NOT be set if any of those variable names within the value string can't be resolved because the variable is not available.
Theenv=...option is used to specify a condition to determine if the action should be performed. The action will only take effect if the specified env-variable exists (or if the environment variable does not exist andenv=!...is specified).
The fifth attribute "late" applies the directive late in the request processing at the fixup hook. -
RequestHeaderRemovePattern <header> <pattern>
Removes the specified pattern from the HTTP request header.
-
ResponseHeaderPlus set|unset|add <header> [<value>] [env=[!]<env-variable>]
Same as theRequestHeaderPlusdirective but applied to HTTP response header.
-
ChangeRequestHeaderPlus <header> <regex> <value>
Changes the value of the specified request header if the regular expression (case insensitive) matches its value. Occurrences of$1..$9within the value are replaced by parenthesized subexpressions of the regular expression. The value string may also contain other environment variable names surrounded by "${" and "}" which are resolved by the values of those variables. -
ChangeResponseHeaderPlus <header> <regex> <value>
Same asChangeRequestHeaderPlusbut processing the HTTP response header. -
SetUserPlus <header> <regex> <value>
Used to set the an authenticated user name using the 'value' if the specified expression matches the header. Occurrences of$1..$9within the value are replaced by parenthesized subexpressions of the regular expression. -
SetStatusPlus <code> <env-variable>
Changes the status code of the HTTP response if the specified environment variable is set. -
CookieEncPlus <name>
Encrypts a cookie with the defined name using the key set within the SP_COOKIE_KEY environment variable.
You may use several request attributes to build the SP_COOKIE_KEY string, e.g. the user id and a session secret using mod_clientid.
Sample configuration:
# stores the numeric value of the query with the name "item" in the variable VAR_ITEM
SetEnvIfPlus Request_Query item=([0-9]+) VAR_ITEM=$1
# implement base64 encoding to the value of the variable VAR_ITEM
SetEnvIfPlus VAR_ITEM (.*) VAR_ITEM=$e64(${VAR_ITEM})
# set the encoded variable as an HTTP request header
RequestHeaderPlus set x-item ${VAR_ITEM}
|
