-
Feature / BC break: Add new
Serverfacade that buffers and parses incoming HTTP requests. This provides full PSR-7 compatibility, including support for form submissions with POST fields and file uploads. The oldServerhas been renamed toStreamingServerfor advanced usage and is used internally. (#266, #271, #281, #282, #283 and #284 by @WyriHaximus and @clue)// old: handle incomplete/streaming requests $server = new Server($handler); // new: handle complete, buffered and parsed requests // new: full PSR-7 support, including POST fields and file uploads $server = new Server($handler); // new: handle incomplete/streaming requests $server = new StreamingServer($handler);
While this is technically a small BC break, this should in fact not break most consuming code. If you rely on the old request streaming, you can explicitly use the advanced
StreamingServerto restore old behavior. -
Feature: Add support for middleware request handler arrays (#215, #228, #229, #236, #237, #238, #246, #247, #277, #279 and #285 by @WyriHaximus, @clue and @jsor)
// new: middleware request handler arrays $server = new Server(array( function (ServerRequestInterface $request, callable $next) { $request = $request->withHeader('Processed', time()); return $next($request); }, function (ServerRequestInterface $request) { return new Response(); } ));
-
Feature: Add support for limiting how many next request handlers can be executed concurrently (
LimitConcurrentRequestsMiddleware) (#272 by @clue and @WyriHaximus)// new: explicitly limit concurrency $server = new Server(array( new LimitConcurrentRequestsMiddleware(10), $handler ));
-
Feature: Add support for buffering the incoming request body (
RequestBodyBufferMiddleware). This feature mimics PHP's default behavior and respects itspost_max_sizeini setting by default and allows explicit configuration. (#216, #224, #263, #276 and #278 by @WyriHaximus and #235 by @andig)// new: buffer up to 10 requests with 8 MiB each $server = new StreamingServer(array( new LimitConcurrentRequestsMiddleware(10), new RequestBodyBufferMiddleware('8M'), $handler ));
-
Feature: Add support for parsing form submissions with POST fields and file uploads (
RequestBodyParserMiddleware). This feature mimics PHP's default behavior and respects its ini settings andMAX_FILE_SIZEPOST fields by default and allows explicit configuration. (#220, #226, #252, #261, #264, #265, #267, #268, #274 by @WyriHaximus and @clue)// new: buffer up to 10 requests with 8 MiB each // and limit to 4 uploads with 2 MiB each $server = new StreamingServer(array( new LimitConcurrentRequestsMiddleware(10), new RequestBodyBufferMiddleware('8M'), new RequestBodyParserMiddleware('2M', 4) $handler ));
-
Feature: Update Socket to work around sending secure HTTPS responses with PHP < 7.1.4 (#244 by @clue)
-
Feature: Support sending same response header multiple times (e.g.
Set-Cookie) (#248 by @clue) -
Feature: Raise maximum request header size to 8k to match common implementations (#253 by @clue)
-
Improve test suite by adding forward compatibility with PHPUnit 6, test against PHP 7.1 and PHP 7.2 and refactor and remove risky and duplicate tests. (#243, #269 and #270 by @carusogabriel and #249 by @clue)
-
Minor code refactoring to move internal classes to
React\Http\Ionamespace and clean up minor code and documentation issues (#251 by @clue, #227 by @kalessil, #240 by @christoph-kluge, #230 by @jsor and #280 by @andig)
- Improvement: Target evenement 3.0 a long side 2.0 and 1.0 (#212 by @WyriHaximus)
-
Feature: Support
Throwablewhen setting previous exception from server callback (#155 by @jsor) -
Fix: Fixed URI parsing for origin-form requests that contain scheme separator such as
/path?param=http://example.com. (#209 by @aaronbonneau) -
Improve test suite by locking Travis distro so new defaults will not break the build (#211 by @clue)
-
Fix: Stricter check for invalid request-line in HTTP requests (#206 by @clue)
-
Refactor to use HTTP response reason phrases from response object (#205 by @clue)
-
Fix: Fix parsing CONNECT request without
Hostheader (#201 by @clue) -
Internal preparation for future PSR-7
UploadedFileInterface(#199 by @WyriHaximus)
-
Feature / BC break: Use PSR-7 (http-message) standard and
Request-In-Response-Out-style request handler callback. Pass standard PSR-7ServerRequestInterfaceand expect any standard PSR-7ResponseInterfacein return for the request handler callback. (#146 and #152 and #170 by @legionth)// old $app = function (Request $request, Response $response) { $response->writeHead(200, array('Content-Type' => 'text/plain')); $response->end("Hello world!\n"); }; // new $app = function (ServerRequestInterface $request) { return new Response( 200, array('Content-Type' => 'text/plain'), "Hello world!\n" ); };
A
Content-Lengthheader will automatically be included if the size can be determined from the response body. (#164 by @maciejmrozinski)The request handler callback will automatically make sure that responses to HEAD requests and certain status codes, such as
204(No Content), never contain a response body. (#156 by @clue)The intermediary
100 Continueresponse will automatically be sent if demanded by a HTTP/1.1 client. (#144 by @legionth)The request handler callback can now return a standard
Promiseif processing the request needs some time, such as when querying a database. Similarly, the request handler may return a streaming response if the response body comes from aReadableStreamInterfaceor its size is unknown in advance.// old $app = function (Request $request, Response $response) use ($db) { $db->query()->then(function ($result) use ($response) { $response->writeHead(200, array('Content-Type' => 'text/plain')); $response->end($result); }); }; // new $app = function (ServerRequestInterface $request) use ($db) { return $db->query()->then(function ($result) { return new Response( 200, array('Content-Type' => 'text/plain'), $result ); }); };
Pending promies and response streams will automatically be canceled once the client connection closes. (#187 and #188 by @clue)
The
ServerRequestInterfacecontains the full effective request URI, server-side parameters, query parameters and parsed cookies values as defined in PSR-7. (#167 by @clue and #174, #175 and #180 by @legionth)$app = function (ServerRequestInterface $request) { return new Response( 200, array('Content-Type' => 'text/plain'), $request->getUri()->getScheme() ); };
Advanced: Support duplex stream response for
Upgraderequests such asUpgrade: WebSocketor custom protocols andCONNECTrequests (#189 and #190 by @clue)Note that the request body will currently not be buffered and parsed by default, which depending on your particilar use-case, may limit interoperability with the PSR-7 (http-message) ecosystem. The provided streaming request body interfaces allow you to perform buffering and parsing as needed in the request handler callback. See also the README and examples for more details.
-
Feature / BC break: Replace
requestlistener with callback function and uselisten()method to support multiple listening sockets (#97 by @legionth and #193 by @clue)// old $server = new Server($socket); $server->on('request', $app); // new $server = new Server($app); $server->listen($socket);
-
Feature: Support the more advanced HTTP requests, such as
OPTIONS * HTTP/1.1(OPTIONSmethod in asterisk-form),GET http://example.com/path HTTP/1.1(plain proxy requests in absolute-form),CONNECT example.com:443 HTTP/1.1(CONNECTproxy requests in authority-form) and sanitizeHostheader value across all requests. (#157, #158, #161, #165, #169 and #173 by @clue) -
Feature: Forward compatibility with Socket v1.0, v0.8, v0.7 and v0.6 and forward compatibility with Stream v1.0 and v0.7 (#154, #163, #183, #184 and #191 by @clue)
-
Feature: Simplify examples to ease getting started and add benchmarking example (#151 and #162 by @clue)
-
Improve test suite by adding tests for case insensitive chunked transfer encoding and ignoring HHVM test failures until Travis tests work again. (#150 by @legionth and #185 by @clue)
-
Feature / BC break: The
RequestandResponseobjects now follow strict stream semantics and their respective methods and events. (#116, #129, #133, #135, #136, #137, #138, #140, #141 by @legionth and #122, #123, #130, #131, #132, #142 by @clue)This implies that the
Servernow supports proper detection of the request message body stream, such as supporting decoding chunked transfer encoding, delimiting requests with an explicitContent-Lengthheader and those with an empty request message body.These streaming semantics are compatible with previous Stream v0.5, future compatible with v0.5 and upcoming v0.6 versions and can be used like this:
$http->on('request', function (Request $request, Response $response) { $contentLength = 0; $request->on('data', function ($data) use (&$contentLength) { $contentLength += strlen($data); }); $request->on('end', function () use ($response, &$contentLength){ $response->writeHead(200, array('Content-Type' => 'text/plain')); $response->end("The length of the submitted request body is: " . $contentLength); }); // an error occured // e.g. on invalid chunked encoded data or an unexpected 'end' event $request->on('error', function (\Exception $exception) use ($response, &$contentLength) { $response->writeHead(400, array('Content-Type' => 'text/plain')); $response->end("An error occured while reading at length: " . $contentLength); }); });
Similarly, the
RequestandResponsenow strictly follow theclose()method andcloseevent semantics. Closing theRequestdoes not interrupt the underlying TCP/IP in order to allow still sending back a valid response message. Closing theResponsedoes terminate the underlying TCP/IP connection in order to clean up resources.You should make sure to always attach a
requestevent listener like above. TheServerwill not respond to an incoming HTTP request otherwise and keep the TCP/IP connection pending until the other side chooses to close the connection. -
Feature: Support
HTTP/1.1andHTTP/1.0forRequestandResponse. (#124, #125, #126, #127, #128 by @clue and #139 by @legionth)The outgoing
Responsewill automatically use the same HTTP version as the incomingRequestmessage and will only applyHTTP/1.1semantics if applicable. This includes that theResponsewill automatically attach aDateandConnection: closeheader if applicable.This implies that the
Servernow automatically responds with HTTP error messages for invalid requests (status 400) and those exceeding internal request header limits (status 431).
-
Feature / BC break: Change
Requestmethods to be in line with PSR-7 (#117 by @clue)- Rename
getQuery()togetQueryParams() - Rename
getHttpVersion()togetProtocolVersion() - Change
getHeaders()to always return an array of string values for each header
- Rename
-
Feature / BC break: Update Socket component to v0.5 and add secure HTTPS server support (#90 and #119 by @clue)
// old plaintext HTTP server $socket = new React\Socket\Server($loop); $socket->listen(8080, '127.0.0.1'); $http = new React\Http\Server($socket); // new plaintext HTTP server $socket = new React\Socket\Server('127.0.0.1:8080', $loop); $http = new React\Http\Server($socket); // new secure HTTPS server $socket = new React\Socket\Server('127.0.0.1:8080', $loop); $socket = new React\Socket\SecureServer($socket, $loop, array( 'local_cert' => __DIR__ . '/localhost.pem' )); $http = new React\Http\Server($socket);
-
BC break: Mark internal APIs as internal or private and remove unneeded
ServerInterface(#118 by @clue, #95 by @legionth)
-
Feature: Add request header accessors (à la PSR-7) (#103 by @clue)
// get value of host header $host = $request->getHeaderLine('Host'); // get list of all cookie headers $cookies = $request->getHeader('Cookie');
-
Feature: Forward
pause()andresume()fromRequestto underlying connection (#110 by @clue)// support back-pressure when piping request into slower destination $request->pipe($dest); // manually pause/resume request $request->pause(); $request->resume();
-
Fix: Fix
100-continueto be handled case-insensitive and ignore it for HTTP/1.0. Similarly, outgoing response headers are now handled case-insensitive, e.g we no longer apply chunked transfer encoding with mixed-caseContent-Length. (#107 by @clue)// now handled case-insensitive $request->expectsContinue(); // now works just like properly-cased header $response->writeHead($status, array('content-length' => 0));
-
Fix: Do not emit empty
dataevents and ignore empty writes in order to not mess up chunked transfer encoding (#108 and #112 by @clue) -
Lock and test minimum required dependency versions and support PHPUnit v5 (#113, #115 and #114 by @andig)
-
Fix: Do not take start of body into account when checking maximum header size (#88 by @nopolabs)
-
Fix: Remove
datalistener ifHeaderParseremits an error (#83 by @nick4fake) -
First class support for PHP 5.3 through PHP 7 and HHVM (#101 and #102 by @clue, #66 by @WyriHaximus)
-
Improve test suite by adding PHPUnit to require-dev, improving forward compatibility with newer PHPUnit versions and replacing unneeded test stubs (#92 and #93 by @nopolabs, #100 by @legionth)
- Remove all listeners after emitting error in RequestHeaderParser #68 @WyriHaximus
- Catch Guzzle parse request errors #65 @WyriHaximus
- Remove branch-alias definition as per reactphp/reactphp#343 #58 @WyriHaximus
- Add functional example to ease getting started #64 by @clue
- Naming, immutable array manipulation #37 @cboden
- Replaced guzzle/parser with guzzlehttp/psr7 by @cboden
- FIX Continue Header by @iannsp
- Missing type hint by @marenzo
- BC break: Bump minimum PHP version to PHP 5.4, remove 5.3 specific hacks
- BC break: Update to React/Promise 2.0
- BC break: Update to Evenement 2.0
- Dependency: Autoloading and filesystem structure now PSR-4 instead of PSR-0
- Bump React dependencies to v0.4
- Bump React dependencies to v0.3
- Bug fix: Emit end event when Response closes (@beaucollins)
- Bug fix: Forward drain events from HTTP response (@cs278)
- Dependency: Updated guzzle deps to
3.0.*
- Version bump
- Feature: Support HTTP 1.1 continue
- Bump React dependencies to v0.2
- Version bump
- First tagged release