tags:

views:

117

answers:

2
Q: 

Are there any problems handling a POST request as a GET request on the server

In an attempt to resolve the issue I posted in this question:

Is it possible to send POST parameters to a CGI script using a system() call?

So far the only successful resolution to the problem is to trick the environment to think the request was a GET. I do this by converting the POST parameters to a query string, saving that string in the default environment variable, then changing the environment variable that tells the server what method this request is using to GET.

$ENV{'QUERY_STRING'} = $long_parameter_string . '&' . $ENV{'QUERY_STRING'};
$ENV{'REQUEST_METHOD'} = 'GET';

system {$perl_exec} $cgi_script;

I'm essentially tricking the CGI module to read from the QUERY_STRING environment variable instead of from STDIN, which it would attempt to read POST requests from.

This method seems to work so far, but I'm worried about unintended repercussions.

My question is, do you see any potential problems with this?

+1  A: 

You'll hit problems with larger submissions and file-uploads as the size limit for a GET is much smaller than a POST. If you're talking about predictably small amounts of data, you should be alright.

Sohnee  2009-12-07 15:36:09
Well, the original problem centers around fairly large requests. However, I assumed that the limitations to the size of GET were mostly a product of the limit of a URL in most browsers. I don't figure Perl's CGI module nor the Linux environment variable offers any serious size limitations seeing it's running on a 64-bit machine.As far as file uploads go, the CGI module has already had a chance to handle the file and the temporary location should be all that left in the parameters. Please correct me if I'm wrong. I'm in the process of testing this now.
James van Dyke  2009-12-07 15:44:58
Quite right - the limit is a URL length limit.
Sohnee  2009-12-08 07:53:01
Chosen for best answer so far since it's the only one that defines a possible problem, which was the point of the question.
James van Dyke  2009-12-12 16:49:59
+2  A: 

POST and GET mean entirely different things, and you shouldn't be "testing" anything that way.

Instead, you should do a real POST to the intended URL by using Perl's LWP.

use HTTP::Request::Common qw(POST);
use LWP::UserAgent;
$ua = LWP::UserAgent->new;

my $req = POST 'http://www.perl.com/cgi-bin/BugGlimpse',
              [ param1 => 'arbitrarily long blob', param2 => 'whatever' ];

print $ua->request($req)->as_string;
Jonathan Feinberg  2009-12-07 15:41:38
Please see my original problem there's a link for above. There are two reasons I'm not doing this, though. One, I'm using mod_rewrite to redirect all requests to the file that ultimately executes the intended CGI script. Two, I could put a special parameter or something in the request you suggested to make sure mod_rewrite is bypassed, but that would ultimately lead to more request time than I'm comfortable with.
James van Dyke  2009-12-07 15:51:24
Your comment is a non sequitur. mod_rewrite has nothing to do with anything that pertains to HTTP method.
Jonathan Feinberg  2009-12-07 15:54:11
No, but it pertains to my original problem and the reason I'm handling the request this way in the first place.
James van Dyke  2009-12-07 15:56:44
Thanks for the input Jonathan. This is probably the correct way of handling this situation for most people.
James van Dyke  2009-12-07 16:13:23

related questions

Web framework programming mindset
ASP.NET - asp:xxx Controls versus standard HTML
From Desktop to Web browser considerations
Which PHP Framework will get me to a usable UI the fastest?
Best practice for integrating TDD with web application development?
How to Manage Web Development?
When is a file just a file?
Recommendations for browser add-on tools to help with development
REALLY Simple Website--How Basic Can You Go?
Convince Firefox to send an If-Modified-Since header over HTTPS
What do the getUTC* methods on the date object do?
Planning and Building a mobile enabled site for your main site.
Firebug for IE
Javascript and PHP - Login Script with hidden buttons
Firebug won't display console feeds for some of my sites
Displaying ad content from Respose.WriteFile()/ Response.ContentType
How can I detect if a browser is blocking an popup?
How to Test Web Code?
What PHP framework would you choose for a new application and why?
How do you disable browser Autocomplete on web form field / input tag?
What is Progressive Enhancement?
In HTML, how to word-break on a dash?
The Definitive Guide To Website Authentication
How do you test layout design across multiple browsers/OSs?
How much of the Web build process do you/should you automate?