RewriteEngine On
# put authorization details in our header
RewriteCond %{REQUEST_URI} ^/blah-api/
RewriteRule /(.*) - [E=X-HTTP_AUTHORIZATION:%{HTTP:Authorization}]
# put request REST path into another header
RewriteCond %{REQUEST_URI} ^/blah-api/
RewriteCond %{REQUEST_URI} !^/blah-api/api-dispatch.cgi
RewriteRule /jobtips-api/(.*)$ /blah-api/api-dispatch.cgi [E=X-BLAH_RESOURCE:$1,PT]

I haven't used lighttpd, but this seemed interesting. I read through the source of lighttpd's mod_rewrite module and there's nothing there that uses environment variables, so if it's possible to do what you want at all in lighttpd, it's not done with mod_rewrite.

If it's your own app, I'd recommend porting the app to lighttpd, not the Apache rewrite rules.

It's a bit hackish that that uses mod_rewrite in Apache the first place; you're not rewriting URLs, after all, you're filling the environment based on their content. But the reason for that hack is that Apache prevents you from accessing HTTP auth info in the environment in the first place.

This code snippet looks as though lighttpd simply doesn't require the workaround; you should be able to use the HTTP_AUTHENTICATION environment variable without having to populate it yourself. (Note that there's no "X_" there.)

Your second recipe ought to be easy; the full request path should be in REQUEST_URI in the environment to begin with, and you can trim out the constant in your app instead of having mod_rewrite do it. Based on that other snippet (I don't know much ruby, and even less rails, and still less lighttpd), something like

@request.env["REQUEST_URI"].scan(/^\/jobtips-api\/(.*)$/i).to_s

One thing you might find handy is to write a little app that just goes through each element of @request.env and prints out its name and value; that way you can find out empirically if what you need is in the environment.
posted by mendel at 7:25 PM on February 16, 2006

This thread is closed to new comments.