Re: CGP/1.0 specification

robm@ncsa.uiuc.edu (Rob McCool)

Mail folder: WWW Talk Oct 93-present
Next message: George Phillips: "Re: CGP/1.0 specification "
Previous message: Terry Allen: "ISINDEX clarification"
In-reply-to: Ari Luotonen: "Re: CGP/1.0 specification"
Reply: Ari Luotonen: "Re: CGP/1.0 specification"

Message-id: <9311182344.AA25629@void.ncsa.uiuc.edu>
From: robm@ncsa.uiuc.edu (Rob McCool)
Date: Thu, 18 Nov 1993 17:44:26 -0600
In-Reply-To: luotonen@ptsun00.cern.ch (Ari Luotonen)
       "Re: CGP/1.0 specification" (Nov 18, 10:32am)
X-Mailer: Mail User's Shell (7.2.5 10/14/92)
To: luotonen@ptsun00.cern.ch (Ari Luotonen), www-talk@nxoc01.cern.ch
Subject: Re: CGP/1.0 specification

/*
 * Re: CGP/1.0 specification  by Ari Luotonen (luotonen@ptsun00.cern.ch)
 *    written on Nov 18, 10:32am.
 *
 * 
 * > We could pass it as a
 * > list of quoted items, but then there can't be quotes in the items. 
 * 
 * We can:  it's  becomes:  'it'\''s'

As Tony and I were discussing, perhaps we should not make the unescaped
query string available as an env. variable at all but simply put it on the
command line.

 * Otherwise agreed, but I'd still wish you'd consider doing it like
 * I did, which would cause command line:
 * 
 * 	script /extra/path	'foo=' 'bar' 'bar=' 'foo'
 * 
 * In this case equal signs in values (or even names) wouldn't cause
 * any confusion, and spaces in values aren't a problem, either.

But the equal signs are frivolous, and the script just has to parse them out
anyway. So why put them in there?

 * At least for CERN server it *must* be a virtual path, because the
 * rule file starts protecting already before the filesystem path is
 * found out.  Otherwise I'd have to be able to translate filesystem
 * path back to virtual path which is indeterministic.
 */

Hmmmm. Here's the two choices as I see them. 

1. A full real pathname

Pluses: Flexibility. Any file can be returned.
Minuses: Security. These files don't necessarily have to be subject to
access control.

2. A virtual pathname

Pluses: Security. Only normally servable documents are allowed.
Minuses: Must return documents that are normally available to the client.


As far as implementation, I can easily do either. The question is, then,
what will the scripts want? Would it be difficult with the CERN server to
enter the document mapping process with an already translated pathname? If
it's overly difficult, and scripts do not necessarily want to return outside
documents, we should pick the virtual path. Tony, which method would be
easier for Plexus?

--Rob