Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Web Servers Web Protocols and Practice Chapter 4.

Published byChad Miles Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Web Servers Web Protocols and Practice Chapter 4."— Presentation transcript:

1 1 Web Servers Web Protocols and Practice Chapter 4

2 2 Topics Web Protocols and Practice WEB SERVERS  Web Server Definition  Web Site versus Web Server  Steps in Handling a Client Request  Access Control  Dynamically Generated Responses  Passing Data to/from the Script  Creating and Using Cookies  Sharing Information Across Requests  Server Architecture  Server Hosting  Case Study of the Apache Web Server

3 3 Web Server Definition Web Protocols and Practice WEB SERVERS  A Web server is a program that generates and transmits responses to client requests for Web resources.  Handling a client request consists of several key steps:  Parsing the request message  Checking that the request is authorized  Associating the URL in the request with a file name  Constructing the response message  Transmitting the response message to the requesting client

4 4 Web Server Definition Web Protocols and Practice WEB SERVERS  The server can generate the response message in a variety of ways:  The server simply retrieves the file associated with the URL and returns the contents to the client.  The server may invoke a script that communicates with other servers or a back-end database to construct the response message.

5 5 Web Site versus Web Server Web Protocols and Practice WEB SERVERS  Web site and Web server are different:  A Web site consists of a collection of Web pages associated with a particular hostname.  A Web server is a program to satisfy client requests for Web resources.

6 6 Steps in Handling a Client Request Web Protocols and Practice WEB SERVERS  A Web server proceeds through the following steps in handling an HTTP request:  Read and parse the HTTP request message for example GET the resource /foo.htm  Translate the URL to a file name for example the resource be located in the base directory such as /www, where the URL http://www.bar.com/foo/index.html corresponds to the file of www/foo/index.html  Determine whether the request is authorized  Generate and transmit the response that includes header to show the status information

7 7 Access Control Web Protocols and Practice WEB SERVERS  A Web server may limit which users can access certain resources. Access control requires a combination of authentication and authorization.  Authentication identifies the user who originated the request. Authentication  Authorization determines which users have access to a particular resource. Authorization

8 8 AUTHENTICATION Web Protocols and Practice WEB SERVERS  Most client-server systems authenticate a user by asking for a name and password.  Web server must perform authentication for every request for a resource that has access restrictions.  The server returns an HTTP response that indicates that the request requires authorization.  The response also identifies what kind of authentication is required.  The response also identifies the realm  a string that associates a collection of resources at the server

9 9 AUTHORIZATION Web Protocols and Practice WEB SERVERS  To control access to Web resources, the server must employ an authorization policy.  A policy typically expressed in terms of an access control list that enumerates the users who are granted or denied access to the resources.  In addition to checking the user name, the server may allow or deny access to the resource based on other information associated with the HTTP request, such as the host name or IP address of the requesting client.  Authenticating HTTP requests can impose a heavy load on the Web server.

10 10 Dynamically Generated Responses Web Protocols and Practice WEB SERVERS  This feature differentiates the Web from earlier file transfer services on the Internet.  Dynamically generated responses are created in a variety of ways:  Server-side include Server-side include  Server script Server script

11 11 Server-Side Include Web Protocols and Practice WEB SERVERS  A server-side include instructs the Web server to customize a static resource based on directives in an HTML-like file.

12 12 Server Script Web Protocols and Practice WEB SERVERS  A server script is a separate program that generates the request resource.  The program may run as  Part of the server  A separate process  The main role of the Web server is  To associate the requested URL with the appropriate script  To pass data to/from the script  The main role of the script is  To process the input from the server  To generate the content to the client

13 13 Server Script Web Protocols and Practice WEB SERVERS  The server can interact with the script in several different ways:  Separate process invoked by the server  Software module in the same process  Persistent process contacted by the server

14 14 Passing Data to/from the Script Web Protocols and Practice WEB SERVERS  Decoupling the scripts from the Web server requires a well-defined interface for passing data between the two pieces of software.  Common Gateway Interface (CGI) defines interfaces for a variety of operating system platforms. Table 4.1

15 15 Table 4.1. Example CGI environment variables Web Protocols and Practice WEB SERVERS ExampleVariableType www.bar.com Apache/10206 HTTP/1.0 80 /www CGI/2.0 SERVER_NAME SERVER_SOFTWARE SERVER_PROTOCOL SERVER_PORT DOCUMENT_ROOT GATEWAY_INTERFACE Server 10.9.57.188 users.berkeley.edu REMOTE_ADDR REMOTE_HOST Client Text/html 158 GET NAME=Noam+Chomsky De-CH Mozilla/2.0 CONTENT_TYPE CONTENT_LENGTH REQUEST_METHOD QUERY_STRING ACCEPT_LANGUAGE HTTP_USER_AGENT Request

16 16 Creating and Using Cookies Web Protocols and Practice WEB SERVERS  Cookies are typically created, used, and modified by scripts invoked to generate dynamic responses, rather than by the Web server.  The browser can be instructed to include a unique cookie in each HTTP request.  If the request does not include cookie, the script create a new cookie and include the cookie in the header of the response message Set-Cookie: Customer="user17"; Version="1"; Path="/book" Subsequent requests from the user would include the cookie Cookie: Customer="user17"; Version="1"; Path="/book"

17 17 Creating and Using Cookies Web Protocols and Practice WEB SERVERS  A script can use a cookie as a user identifier in interacting with a back-end database.  Storing history information in the cookie may obviate the need to retain information about the user in a back-end database.

18 18 Sharing Information Across Requests Web Protocols and Practice WEB SERVERS  A Web server may retain some information to reduce the overhead of handling future requests by:  Sharing HTTP responses across requests Sharing HTTP responses across requests  Sharing metadata across requests Sharing metadata across requests

19 19 Sharing HTTP Responses Across Requests Web Protocols and Practice WEB SERVERS  In server-side caching, data from the disk is cached in main memory at the server.  A Web server cache can be  Static files  Dynamically generated responses  the server would need to ensure that the cached result is consistent with the primary copy of the information.

20 20 Sharing Metadata Across Requests Web Protocols and Practice WEB SERVERS  The server could store the information generated in the process such as:  Translation of URL to file name  Control information about the resource  HTTP response headers  The server could cache certain information across requests for different resources:  Current date/time  Client name

21 21 Server Architecture Web Protocols and Practice WEB SERVERS  Some techniques for allocating system resources among competing client requests are :  Event-driven server architecture Event-driven server architecture  Process-driven server architecture Process-driven server architecture  Hybrid server architecture Hybrid server architecture

22 22 Event-Driven Server Architecture Web Protocols and Practice WEB SERVERS  An event-driven server  Has a single process that alternates between servicing different requests  Allows the server to serialize operations that modify the same data  Performs nonblocking system calls  Not used in Most high-end Web servers

23 23 Process-Driven Server Architecture Web Protocols and Practice WEB SERVERS  A process-driven server  Allocates each request to a separate process »One master process listens for new connection »The master process creates, or forks, a separate process for each new connection  Terminates the process after parsing the client request and transmitting the response »To prevent memory leak  Introduces overhead for switching from one process to another

24 24 Hybrid Server Architecture Web Protocols and Practice WEB SERVERS  In Hybrid server architectures  The strengths of the event-driven and process- driven models are combined  Each process would become an event-driven server that alternates between a small collection of requests  A single process has multiple independent threads  Main process instructs a separate helper process to perform time-consuming operations

25 25 Server Hosting Web Protocols and Practice WEB SERVERS  Multiple Web sites on a single machine  Multiple machine for a single Web site oFigure 4.1.

26 26 Web Protocols and Practice www.foo.com www.bar.com www.big.com www.mid.com Surrogate 1 2 3 4 To/From Internet Figure 4.1. Hosting complex with surrogate in front of four server machines WEB CLIENTS

27 27 Apache Web Server Web Protocols and Practice WEB SERVERS  The Apache server follows the process- driven model, with a parent process that assigns a process to each new connection.

28 28 Table 4.2 Key configuration directives for child processes and network connection Definition (default value in Apache 1.3.3)Directive Initial number of child processes (5) Maximum number of child processes (256) Target Minimum number of idle children (5) Target Maximum number of idle children (10) Maximum number of requests per child (30) Maximum number of pending connections (511) Size of the TCP send buffer (OS default) Max number of requests per connection (100) Maximum idle time for connection (15 sec) StartServers MaxClients MinSpareServers MaxSpareServers MaxRequestsPerChild ListenBacklog SendBufferSize MaxKeepAliveRequests KeepAliveTimeout Web Protocols and Practice WEB CLIENTS

29 29 Apache Web Server Web Protocols and Practice WEB SERVERS  Apache has a collection of handlers that perform an action using the requested file, as shown in Table 4.3.

30 30 Table 4.3 Built-in handlers in Apache server and default file extension Purpose (file extension)Handler Send the file as static content Send the file as an HTTP response message (.asis) Invoke the file as a CGI script (.cgi) Treat the file as a server-side include (.shtml) Treat the file as an imagemap rule file (.imap) Treat the file as a map for content negotiation (.var) Get the server’s configuration information Get the server’s status report Default-handler Send-as-is Cgi-script Server-parsed Imap-file Type-map Server-info Server-status Web Protocols and Practice WEB CLIENTS

Download ppt "1 Web Servers Web Protocols and Practice Chapter 4."

Similar presentations

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 22 World Wide Web and HTTP.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 22 World Wide Web and HTTP.
Technical Architectures

Technical Architectures
How does the server format the information it gives to the appln program? As environment variables and in standard input.

How does the server format the information it gives to the appln program? As environment variables and in standard input.
Chapter 2: Application Layer

Chapter 2: Application Layer
Web Servers How do our requests for resources on the Internet get handled? Can they be located anywhere? Global?

Web Servers How do our requests for resources on the Internet get handled? Can they be located anywhere? Global?
How the web works: HTTP and CGI explained

How the web works: HTTP and CGI explained
9/16/2003-9/18/2003 The Application Layer and Java Programming September 16-18, 2003.

9/16/2003-9/18/2003 The Application Layer and Java Programming September 16-18, 2003.
Definitions, Definitions, Definitions Lead to Understanding.

Definitions, Definitions, Definitions Lead to Understanding.
ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.
How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.
2/9/2004 Web and HTTP February 9, 2004. 2/9/2004 Assignments Due – Reading and Warmup Work on Message of the Day.

2/9/2004 Web and HTTP February 9, /9/2004 Assignments Due – Reading and Warmup Work on Message of the Day.
Web Client/Server Communication A290/A590, Fall 2014 09/09/2014.

Web Client/Server Communication A290/A590, Fall /09/2014.
Christopher M. Pascucci Basic Structural Concepts of.NET Browser – Server Interaction.

Christopher M. Pascucci Basic Structural Concepts of.NET Browser – Server Interaction.
Linux Operations and Administration

Linux Operations and Administration
Sys Prog & Scripting - HW Univ1 Systems Programming & Scripting Lecture 15: PHP Introduction.

Sys Prog & Scripting - HW Univ1 Systems Programming & Scripting Lecture 15: PHP Introduction.
1 Web Servers (IIS and Apache) Outline 9.1 Introduction 9.2 HTTP Request Types 9.3 System Architecture 9.4 Client-Side Scripting versus Server-Side Scripting.

1 Web Servers (IIS and Apache) Outline 9.1 Introduction 9.2 HTTP Request Types 9.3 System Architecture 9.4 Client-Side Scripting versus Server-Side Scripting.
INTRODUCTION TO WEB DATABASE PROGRAMMING

INTRODUCTION TO WEB DATABASE PROGRAMMING
Overview A plain HTML document is static A CGI program is executed in real-time, so that it can output dynamic information. CGI (Common Gateway Interface)

Overview A plain HTML document is static A CGI program is executed in real-time, so that it can output dynamic information. CGI (Common Gateway Interface)
FALL 2005CSI 4118 – UNIVERSITY OF OTTAWA1 Part 4 Web technologies: HTTP, CGI, PHP,Java applets)

FALL 2005CSI 4118 – UNIVERSITY OF OTTAWA1 Part 4 Web technologies: HTTP, CGI, PHP,Java applets)
1 Web Server Concepts Dr. Awad Khalil Computer Science Department AUC.

1 Web Server Concepts Dr. Awad Khalil Computer Science Department AUC.

Similar presentations

Ads by Google