From kiuma72 at gmail.com  Fri Jan  4 18:05:23 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Fri, 4 Jan 2008 19:05:23 +0100
Subject: [hunchentoot-devel] Running Hunchentoot with ssl
Message-ID: <4d3bc9370801041005x6381a80dla5c5855edeca82f0@mail.gmail.com>

Hello,
I'm trying to figure out how to run Hunchentoot with SSL but I'm getting
lost.
I'm using it under a gentoo linux installation.
I think the problem is with my ssl certificete file.

to create it I use `openssl genrsa -out File.pem 1024` but since
(defparameter *x* (hunchentoot:start-server :port 4443 :ssl-certificate-file
#P"/home/kiuma/File.pem")) does not start the server.

Does anybody know how to create a test certificate file with openssl or
another tool ?

Thanks in advance,
kiuma
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080104/6ecf3754/attachment.html>

From brian at liberatinginsight.com  Fri Jan  4 18:11:43 2008
From: brian at liberatinginsight.com (Brian)
Date: Fri, 04 Jan 2008 13:11:43 -0500
Subject: [hunchentoot-devel] Running Hunchentoot with ssl
In-Reply-To: <4d3bc9370801041005x6381a80dla5c5855edeca82f0@mail.gmail.com>
References: <4d3bc9370801041005x6381a80dla5c5855edeca82f0@mail.gmail.com>
Message-ID: <477E76DF.3040202@liberatinginsight.com>

I always use the How To's found on the OpenSSL website which you can 
find here

http://www.openssl.org/docs/HOWTO/



Andrea Chiumenti wrote:
> Hello,
> I'm trying to figure out how to run Hunchentoot with SSL but I'm 
> getting lost.
> I'm using it under a gentoo linux installation.
> I think the problem is with my ssl certificete file.
>
> to create it I use `openssl genrsa -out File.pem 1024` but since
> (defparameter *x* (hunchentoot:start-server :port 4443 
> :ssl-certificate-file #P"/home/kiuma/File.pem")) does not start the 
> server.
>
> Does anybody know how to create a test certificate file with openssl 
> or another tool ?
>
> Thanks in advance,
> kiuma
> ------------------------------------------------------------------------
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel



From brian at liberatinginsight.com  Fri Jan  4 18:27:04 2008
From: brian at liberatinginsight.com (Brian)
Date: Fri, 04 Jan 2008 13:27:04 -0500
Subject: [hunchentoot-devel] Running Hunchentoot with ssl
In-Reply-To: <477E76DF.3040202@liberatinginsight.com>
References: <4d3bc9370801041005x6381a80dla5c5855edeca82f0@mail.gmail.com>
	<477E76DF.3040202@liberatinginsight.com>
Message-ID: <477E7A78.3070103@liberatinginsight.com>

I also just noticed that you didn't provide the private key file input 
to your start server function. Try something like:

          (hunchentoot::start-server :port 443
                                     ;:ssl-privatekey-password <password 
to key file if version of lisp supports this>
                                     :ssl-certificate-file 
*ssl-certificate-path*
                                     :ssl-privatekey-file 
*ssl-private-key-path*)

You will need both the certificate and private key files to start a 
secure server. The howto listed below provides the directions, make sure 
you use the instructions on a self-signed certificate when producing the 
certificate file.


Brian wrote:
> I always use the How To's found on the OpenSSL website which you can 
> find here
>
> http://www.openssl.org/docs/HOWTO/
>
>
>
> Andrea Chiumenti wrote:
>> Hello,
>> I'm trying to figure out how to run Hunchentoot with SSL but I'm 
>> getting lost.
>> I'm using it under a gentoo linux installation.
>> I think the problem is with my ssl certificete file.
>>
>> to create it I use `openssl genrsa -out File.pem 1024` but since
>> (defparameter *x* (hunchentoot:start-server :port 4443 
>> :ssl-certificate-file #P"/home/kiuma/File.pem")) does not start the 
>> server.
>>
>> Does anybody know how to create a test certificate file with openssl 
>> or another tool ?
>>
>> Thanks in advance,
>> kiuma
>> ------------------------------------------------------------------------
>>
>> _______________________________________________
>> tbnl-devel site list
>> tbnl-devel at common-lisp.net
>> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
>



From kiuma72 at gmail.com  Fri Jan  4 18:27:35 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Fri, 4 Jan 2008 19:27:35 +0100
Subject: [hunchentoot-devel] Running Hunchentoot with ssl
In-Reply-To: <477E76DF.3040202@liberatinginsight.com>
References: <4d3bc9370801041005x6381a80dla5c5855edeca82f0@mail.gmail.com>
	<477E76DF.3040202@liberatinginsight.com>
Message-ID: <4d3bc9370801041027n61f8ffbet7528f74b8a49a64a@mail.gmail.com>

Brian,
of course I had already given a look to HOWTOs. ;-p

On Jan 4, 2008 7:11 PM, Brian <brian at liberatinginsight.com> wrote:

> I always use the How To's found on the OpenSSL website which you can
> find here
>
> http://www.openssl.org/docs/HOWTO/
>
>
>
> Andrea Chiumenti wrote:
> > Hello,
> > I'm trying to figure out how to run Hunchentoot with SSL but I'm
> > getting lost.
> > I'm using it under a gentoo linux installation.
> > I think the problem is with my ssl certificete file.
> >
> > to create it I use `openssl genrsa -out File.pem 1024` but since
> > (defparameter *x* (hunchentoot:start-server :port 4443
> > :ssl-certificate-file #P"/home/kiuma/File.pem")) does not start the
> > server.
> >
> > Does anybody know how to create a test certificate file with openssl
> > or another tool ?
> >
> > Thanks in advance,
> > kiuma
> > ------------------------------------------------------------------------
> >
> > _______________________________________________
> > tbnl-devel site list
> > tbnl-devel at common-lisp.net
> > http://common-lisp.net/mailman/listinfo/tbnl-devel
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080104/0c7dfc02/attachment.html>

From brian at liberatinginsight.com  Fri Jan  4 18:39:56 2008
From: brian at liberatinginsight.com (Brian)
Date: Fri, 04 Jan 2008 13:39:56 -0500
Subject: [hunchentoot-devel] Running Hunchentoot with ssl
In-Reply-To: <4d3bc9370801041027n61f8ffbet7528f74b8a49a64a@mail.gmail.com>
References: <4d3bc9370801041005x6381a80dla5c5855edeca82f0@mail.gmail.com>
	<477E76DF.3040202@liberatinginsight.com>
	<4d3bc9370801041027n61f8ffbet7528f74b8a49a64a@mail.gmail.com>
Message-ID: <477E7D7C.7080100@liberatinginsight.com>

Try the following:

1. Create the private key file

    openssl genrsa -out privkey.pem 2048

2. Then create the certificate using the private key

    openssl req -new -x509 -key privkey.pem -out cacert.pem -days 1095

3. (hunchentoot::start-server :port 443
                                   
                                    :ssl-certificate-file "cacert.pem"
                                    :ssl-privatekey-file "privkey.pem")

 


Andrea Chiumenti wrote:
> Brian,
> of course I had already given a look to HOWTOs. ;-p
>
> On Jan 4, 2008 7:11 PM, Brian <brian at liberatinginsight.com 
> <mailto:brian at liberatinginsight.com>> wrote:
>
>     I always use the How To's found on the OpenSSL website which you can
>     find here
>
>     http://www.openssl.org/docs/HOWTO/
>
>
>
>     Andrea Chiumenti wrote:
>     > Hello,
>     > I'm trying to figure out how to run Hunchentoot with SSL but I'm
>     > getting lost.
>     > I'm using it under a gentoo linux installation.
>     > I think the problem is with my ssl certificete file.
>     >
>     > to create it I use `openssl genrsa -out File.pem 1024` but since
>     > (defparameter *x* (hunchentoot:start-server :port 4443
>     > :ssl-certificate-file #P"/home/kiuma/File.pem")) does not start the
>     > server.
>     >
>     > Does anybody know how to create a test certificate file with openssl
>     > or another tool ?
>     >
>     > Thanks in advance,
>     > kiuma
>     >
>     ------------------------------------------------------------------------
>
>     >
>     > _______________________________________________
>     > tbnl-devel site list
>     > tbnl-devel at common-lisp.net <mailto:tbnl-devel at common-lisp.net>
>     > http://common-lisp.net/mailman/listinfo/tbnl-devel
>
>     _______________________________________________
>     tbnl-devel site list
>     tbnl-devel at common-lisp.net <mailto:tbnl-devel at common-lisp.net>
>     http://common-lisp.net/mailman/listinfo/tbnl-devel
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel



From kiuma72 at gmail.com  Fri Jan  4 18:41:17 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Fri, 4 Jan 2008 19:41:17 +0100
Subject: [hunchentoot-devel] Running Hunchentoot with ssl
In-Reply-To: <477E7A78.3070103@liberatinginsight.com>
References: <4d3bc9370801041005x6381a80dla5c5855edeca82f0@mail.gmail.com>
	<477E76DF.3040202@liberatinginsight.com>
	<477E7A78.3070103@liberatinginsight.com>
Message-ID: <4d3bc9370801041041p579b261dn724deec8bde0ed05@mail.gmail.com>

into /home/kiuma/pem
I've executed:
>openssl genrsa -out CA.key 1024
>openssl req -new -key CA.key -x509 -days 1095  -out CA.crt

Country Name (2 letter code) [AU]:IT
State or Province Name (full name) [Some-State]:Milano
Locality Name (eg, city) []:Monza
Organization Name (eg, company) [Internet Widgits Pty Ltd]:wingstech.priv
Organizational Unit Name (eg, section) []:kasa.wingstech.priv
Common Name (eg, YOUR name) []:Chiumenti Andrea
Email Address []:my at e.mail

the in slime repl:

(defparameter *x* (hunchentoot:start-server :port 4443 :ssl-certificate-file
#P"/home/kiuma/pem/CA.key" :ssl-certificate-file
#P"/home/kiuma/pem/CA.crt"))

The server stays mute :((
On Jan 4, 2008 7:27 PM, Brian <brian at liberatinginsight.com> wrote:

> I also just noticed that you didn't provide the private key file input
> to your start server function. Try something like:
>
>          (hunchentoot::start-server :port 443
>                                     ;:ssl-privatekey-password <password
> to key file if version of lisp supports this>
>                                     :ssl-certificate-file
> *ssl-certificate-path*
>                                     :ssl-privatekey-file
> *ssl-private-key-path*)
>
> You will need both the certificate and private key files to start a
> secure server. The howto listed below provides the directions, make sure
> you use the instructions on a self-signed certificate when producing the
> certificate file.
>
>
> Brian wrote:
> > I always use the How To's found on the OpenSSL website which you can
> > find here
> >
> > http://www.openssl.org/docs/HOWTO/
> >
> >
> >
> > Andrea Chiumenti wrote:
> >> Hello,
> >> I'm trying to figure out how to run Hunchentoot with SSL but I'm
> >> getting lost.
> >> I'm using it under a gentoo linux installation.
> >> I think the problem is with my ssl certificete file.
> >>
> >> to create it I use `openssl genrsa -out File.pem 1024` but since
> >> (defparameter *x* (hunchentoot:start-server :port 4443
> >> :ssl-certificate-file #P"/home/kiuma/File.pem")) does not start the
> >> server.
> >>
> >> Does anybody know how to create a test certificate file with openssl
> >> or another tool ?
> >>
> >> Thanks in advance,
> >> kiuma
> >>
> ------------------------------------------------------------------------
> >>
> >> _______________________________________________
> >> tbnl-devel site list
> >> tbnl-devel at common-lisp.net
> >> http://common-lisp.net/mailman/listinfo/tbnl-devel
> >
> > _______________________________________________
> > tbnl-devel site list
> > tbnl-devel at common-lisp.net
> > http://common-lisp.net/mailman/listinfo/tbnl-devel
> >
> >
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080104/40ad133b/attachment.html>

From kiuma72 at gmail.com  Fri Jan  4 18:47:29 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Fri, 4 Jan 2008 19:47:29 +0100
Subject: [hunchentoot-devel] Running Hunchentoot with ssl
In-Reply-To: <4d3bc9370801041041p579b261dn724deec8bde0ed05@mail.gmail.com>
References: <4d3bc9370801041005x6381a80dla5c5855edeca82f0@mail.gmail.com>
	<477E76DF.3040202@liberatinginsight.com>
	<477E7A78.3070103@liberatinginsight.com>
	<4d3bc9370801041041p579b261dn724deec8bde0ed05@mail.gmail.com>
Message-ID: <4d3bc9370801041047m51d10eefxae0df5ce82f7a5e5@mail.gmail.com>

Stupid me: Ididn't checkout the logs
[2008-01-04 19:46:13 [ERROR]] Error while processing connection: SSL
initialization error: Can't load RSA private key ~A

what does it mean ?

On Jan 4, 2008 7:41 PM, Andrea Chiumenti <kiuma72 at gmail.com> wrote:

> into /home/kiuma/pem
> I've executed:
> >openssl genrsa -out CA.key 1024
> >openssl req -new -key CA.key -x509 -days 1095  -out CA.crt
>
> Country Name (2 letter code) [AU]:IT
> State or Province Name (full name) [Some-State]:Milano
> Locality Name (eg, city) []:Monza
> Organization Name (eg, company) [Internet Widgits Pty Ltd]:wingstech.priv
> Organizational Unit Name (eg, section) []:kasa.wingstech.priv
> Common Name (eg, YOUR name) []:Chiumenti Andrea
> Email Address []:my at e.mail
>
> the in slime repl:
>
> (defparameter *x* (hunchentoot:start-server :port 4443
> :ssl-certificate-file #P"/home/kiuma/pem/CA.key" :ssl-certificate-file
> #P"/home/kiuma/pem/CA.crt"))
>
> The server stays mute :((
>
> On Jan 4, 2008 7:27 PM, Brian <brian at liberatinginsight.com> wrote:
>
> > I also just noticed that you didn't provide the private key file input
> > to your start server function. Try something like:
> >
> >          (hunchentoot::start-server :port 443
> >                                     ;:ssl-privatekey-password <password
> > to key file if version of lisp supports this>
> >                                     :ssl-certificate-file
> > *ssl-certificate-path*
> >                                     :ssl-privatekey-file
> > *ssl-private-key-path*)
> >
> > You will need both the certificate and private key files to start a
> > secure server. The howto listed below provides the directions, make sure
> > you use the instructions on a self-signed certificate when producing the
> >
> > certificate file.
> >
> >
> > Brian wrote:
> > > I always use the How To's found on the OpenSSL website which you can
> > > find here
> > >
> > > http://www.openssl.org/docs/HOWTO/
> > >
> > >
> > >
> > > Andrea Chiumenti wrote:
> > >> Hello,
> > >> I'm trying to figure out how to run Hunchentoot with SSL but I'm
> > >> getting lost.
> > >> I'm using it under a gentoo linux installation.
> > >> I think the problem is with my ssl certificete file.
> > >>
> > >> to create it I use `openssl genrsa -out File.pem 1024` but since
> > >> (defparameter *x* (hunchentoot:start-server :port 4443
> > >> :ssl-certificate-file #P"/home/kiuma/File.pem")) does not start the
> > >> server.
> > >>
> > >> Does anybody know how to create a test certificate file with openssl
> > >> or another tool ?
> > >>
> > >> Thanks in advance,
> > >> kiuma
> > >>
> > ------------------------------------------------------------------------
> > >>
> > >> _______________________________________________
> > >> tbnl-devel site list
> > >> tbnl-devel at common-lisp.net
> > >> http://common-lisp.net/mailman/listinfo/tbnl-devel
> > >
> > > _______________________________________________
> > > tbnl-devel site list
> > > tbnl-devel at common-lisp.net
> > > http://common-lisp.net/mailman/listinfo/tbnl-devel
> > >
> > >
> >
> > _______________________________________________
> > tbnl-devel site list
> > tbnl-devel at common-lisp.net
> > http://common-lisp.net/mailman/listinfo/tbnl-devel
> >
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080104/886a9699/attachment.html>

From brian at liberatinginsight.com  Fri Jan  4 19:03:12 2008
From: brian at liberatinginsight.com (Brian)
Date: Fri, 04 Jan 2008 14:03:12 -0500
Subject: [hunchentoot-devel] Running Hunchentoot with ssl
In-Reply-To: <4d3bc9370801041041p579b261dn724deec8bde0ed05@mail.gmail.com>
References: <4d3bc9370801041005x6381a80dla5c5855edeca82f0@mail.gmail.com>
	<477E76DF.3040202@liberatinginsight.com>
	<477E7A78.3070103@liberatinginsight.com>
	<4d3bc9370801041041p579b261dn724deec8bde0ed05@mail.gmail.com>
Message-ID: <477E82F0.6060504@liberatinginsight.com>

The code you included below for starting the server has a typo in it. 
You provided the keywork :ssl-certificate-file twice. Try using this instead

(defparameter *x* (hunchentoot:start-server :port 4443 
:ssl-privatekey-file #P"/home/kiuma/pem/CA.key" :ssl-certificate-file 
#P"/home/kiuma/pem/CA.crt"))

Also I assume you want port 4443 and not the standard 443
 

Andrea Chiumenti wrote:
> into /home/kiuma/pem
> I've executed:
> >openssl genrsa -out CA.key 1024
> >openssl req -new -key CA.key -x509 -days 1095  -out CA.crt
>
> Country Name (2 letter code) [AU]:IT
> State or Province Name (full name) [Some-State]:Milano
> Locality Name (eg, city) []:Monza
> Organization Name (eg, company) [Internet Widgits Pty Ltd]:wingstech.priv
> Organizational Unit Name (eg, section) []:kasa.wingstech.priv
> Common Name (eg, YOUR name) []:Chiumenti Andrea
> Email Address []:my at e.mail <mailto:my at e.mail>
>
> the in slime repl:
>
> (defparameter *x* (hunchentoot:start-server :port 4443 
> :ssl-certificate-file #P"/home/kiuma/pem/CA.key" :ssl-certificate-file 
> #P"/home/kiuma/pem/CA.crt"))
>
> The server stays mute :((
> On Jan 4, 2008 7:27 PM, Brian <brian at liberatinginsight.com 
> <mailto:brian at liberatinginsight.com>> wrote:
>
>     I also just noticed that you didn't provide the private key file input
>     to your start server function. Try something like:
>
>              (hunchentoot::start-server :port 443
>                                         ;:ssl-privatekey-password
>     <password
>     to key file if version of lisp supports this>
>                                         :ssl-certificate-file
>     *ssl-certificate-path*
>                                         :ssl-privatekey-file
>     *ssl-private-key-path*)
>
>     You will need both the certificate and private key files to start a
>     secure server. The howto listed below provides the directions,
>     make sure
>     you use the instructions on a self-signed certificate when
>     producing the
>     certificate file.
>
>
>     Brian wrote:
>     > I always use the How To's found on the OpenSSL website which you can
>     > find here
>     >
>     > http://www.openssl.org/docs/HOWTO/
>     >
>     >
>     >
>     > Andrea Chiumenti wrote:
>     >> Hello,
>     >> I'm trying to figure out how to run Hunchentoot with SSL but I'm
>     >> getting lost.
>     >> I'm using it under a gentoo linux installation.
>     >> I think the problem is with my ssl certificete file.
>     >>
>     >> to create it I use `openssl genrsa -out File.pem 1024` but since
>     >> (defparameter *x* (hunchentoot:start-server :port 4443
>     >> :ssl-certificate-file #P"/home/kiuma/File.pem")) does not start the
>     >> server.
>     >>
>     >> Does anybody know how to create a test certificate file with
>     openssl
>     >> or another tool ?
>     >>
>     >> Thanks in advance,
>     >> kiuma
>     >>
>     ------------------------------------------------------------------------
>     >>
>     >> _______________________________________________
>     >> tbnl-devel site list
>     >> tbnl-devel at common-lisp.net <mailto:tbnl-devel at common-lisp.net>
>     >> http://common-lisp.net/mailman/listinfo/tbnl-devel
>     <http://common-lisp.net/mailman/listinfo/tbnl-devel>
>     >
>     > _______________________________________________
>     > tbnl-devel site list
>     > tbnl-devel at common-lisp.net <mailto:tbnl-devel at common-lisp.net>
>     > http://common-lisp.net/mailman/listinfo/tbnl-devel
>     >
>     >
>
>     _______________________________________________
>     tbnl-devel site list
>     tbnl-devel at common-lisp.net <mailto:tbnl-devel at common-lisp.net>
>     http://common-lisp.net/mailman/listinfo/tbnl-devel
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel



From kiuma72 at gmail.com  Fri Jan  4 19:07:15 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Fri, 4 Jan 2008 20:07:15 +0100
Subject: [hunchentoot-devel] Running Hunchentoot with ssl
In-Reply-To: <477E82F0.6060504@liberatinginsight.com>
References: <4d3bc9370801041005x6381a80dla5c5855edeca82f0@mail.gmail.com>
	<477E76DF.3040202@liberatinginsight.com>
	<477E7A78.3070103@liberatinginsight.com>
	<4d3bc9370801041041p579b261dn724deec8bde0ed05@mail.gmail.com>
	<477E82F0.6060504@liberatinginsight.com>
Message-ID: <4d3bc9370801041107y5d20d39dm94d81945273c71c0@mail.gmail.com>

Thank you very much, it's working now!

On Jan 4, 2008 8:03 PM, Brian <brian at liberatinginsight.com> wrote:

> The code you included below for starting the server has a typo in it.
> You provided the keywork :ssl-certificate-file twice. Try using this
> instead
>
> (defparameter *x* (hunchentoot:start-server :port 4443
> :ssl-privatekey-file #P"/home/kiuma/pem/CA.key" :ssl-certificate-file
> #P"/home/kiuma/pem/CA.crt"))
>
> Also I assume you want port 4443 and not the standard 443
>
>
> Andrea Chiumenti wrote:
> > into /home/kiuma/pem
> > I've executed:
> > >openssl genrsa -out CA.key 1024
> > >openssl req -new -key CA.key -x509 -days 1095  -out CA.crt
> >
> > Country Name (2 letter code) [AU]:IT
> > State or Province Name (full name) [Some-State]:Milano
> > Locality Name (eg, city) []:Monza
> > Organization Name (eg, company) [Internet Widgits Pty Ltd]:
> wingstech.priv
> > Organizational Unit Name (eg, section) []:kasa.wingstech.priv
> > Common Name (eg, YOUR name) []:Chiumenti Andrea
> > Email Address []:my at e.mail <mailto:my at e.mail>
> >
> > the in slime repl:
> >
> > (defparameter *x* (hunchentoot:start-server :port 4443
> > :ssl-certificate-file #P"/home/kiuma/pem/CA.key" :ssl-certificate-file
> > #P"/home/kiuma/pem/CA.crt"))
> >
> > The server stays mute :((
> > On Jan 4, 2008 7:27 PM, Brian <brian at liberatinginsight.com
> > <mailto:brian at liberatinginsight.com>> wrote:
> >
> >     I also just noticed that you didn't provide the private key file
> input
> >     to your start server function. Try something like:
> >
> >              (hunchentoot::start-server :port 443
> >                                         ;:ssl-privatekey-password
> >     <password
> >     to key file if version of lisp supports this>
> >                                         :ssl-certificate-file
> >     *ssl-certificate-path*
> >                                         :ssl-privatekey-file
> >     *ssl-private-key-path*)
> >
> >     You will need both the certificate and private key files to start a
> >     secure server. The howto listed below provides the directions,
> >     make sure
> >     you use the instructions on a self-signed certificate when
> >     producing the
> >     certificate file.
> >
> >
> >     Brian wrote:
> >     > I always use the How To's found on the OpenSSL website which you
> can
> >     > find here
> >     >
> >     > http://www.openssl.org/docs/HOWTO/
> >     >
> >     >
> >     >
> >     > Andrea Chiumenti wrote:
> >     >> Hello,
> >     >> I'm trying to figure out how to run Hunchentoot with SSL but I'm
> >     >> getting lost.
> >     >> I'm using it under a gentoo linux installation.
> >     >> I think the problem is with my ssl certificete file.
> >     >>
> >     >> to create it I use `openssl genrsa -out File.pem 1024` but since
> >     >> (defparameter *x* (hunchentoot:start-server :port 4443
> >     >> :ssl-certificate-file #P"/home/kiuma/File.pem")) does not start
> the
> >     >> server.
> >     >>
> >     >> Does anybody know how to create a test certificate file with
> >     openssl
> >     >> or another tool ?
> >     >>
> >     >> Thanks in advance,
> >     >> kiuma
> >     >>
> >
> ------------------------------------------------------------------------
> >     >>
> >     >> _______________________________________________
> >     >> tbnl-devel site list
> >     >> tbnl-devel at common-lisp.net <mailto:tbnl-devel at common-lisp.net>
> >     >> http://common-lisp.net/mailman/listinfo/tbnl-devel
> >     <http://common-lisp.net/mailman/listinfo/tbnl-devel>
> >     >
> >     > _______________________________________________
> >     > tbnl-devel site list
> >     > tbnl-devel at common-lisp.net <mailto:tbnl-devel at common-lisp.net>
> >     > http://common-lisp.net/mailman/listinfo/tbnl-devel
> >     >
> >     >
> >
> >     _______________________________________________
> >     tbnl-devel site list
> >     tbnl-devel at common-lisp.net <mailto:tbnl-devel at common-lisp.net>
> >     http://common-lisp.net/mailman/listinfo/tbnl-devel
> >
> >
> > ------------------------------------------------------------------------
> >
> > _______________________________________________
> > tbnl-devel site list
> > tbnl-devel at common-lisp.net
> > http://common-lisp.net/mailman/listinfo/tbnl-devel
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080104/ca89f335/attachment.html>

From kiuma72 at gmail.com  Fri Jan  4 19:38:31 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Fri, 4 Jan 2008 20:38:31 +0100
Subject: [hunchentoot-devel] session shearing question
Message-ID: <4d3bc9370801041138t711624bexe84f7c43c8080d1e@mail.gmail.com>

Now that I've been able to start hunchentoot in ssl mode, if I start another
hunchentoot instance handling normal http requests, does hunchentoot shares
user session between the two instances,if not is there a possibility to do
it?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080104/90b39f57/attachment.html>

From sohail at taggedtype.net  Fri Jan  4 19:43:08 2008
From: sohail at taggedtype.net (Sohail Somani)
Date: Fri, 4 Jan 2008 19:43:08 +0000 (UTC)
Subject: [hunchentoot-devel] session shearing question
References: <4d3bc9370801041138t711624bexe84f7c43c8080d1e@mail.gmail.com>
Message-ID: <flm28c$s27$1@ger.gmane.org>

On Fri, 04 Jan 2008 20:38:31 +0100, Andrea Chiumenti wrote:

> Now that I've been able to start hunchentoot in ssl mode, if I start
> another hunchentoot instance handling normal http requests, does
> hunchentoot shares user session between the two instances,if not is
> there a possibility to do it?
> Now that I&#39;ve been able to start hunchentoot in ssl mode, if I start
> another hunchentoot instance handling normal http requests, does
> hunchentoot shares user session between the two instances,if not is
> there a possibility to do it? <br>

If I understand you correctly, I think the only way to do this is to keep 
user sessions in an out-of-process server like a database.

-- 
Sohail Somani
http://uint32t.blogspot.com



From kiuma72 at gmail.com  Fri Jan  4 19:47:42 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Fri, 4 Jan 2008 20:47:42 +0100
Subject: [hunchentoot-devel] session shearing question
In-Reply-To: <flm28c$s27$1@ger.gmane.org>
References: <4d3bc9370801041138t711624bexe84f7c43c8080d1e@mail.gmail.com>
	<flm28c$s27$1@ger.gmane.org>
Message-ID: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>

Thanks, yes you understood me correctly.

On Jan 4, 2008 8:43 PM, Sohail Somani <sohail at taggedtype.net> wrote:

> On Fri, 04 Jan 2008 20:38:31 +0100, Andrea Chiumenti wrote:
>
> > Now that I've been able to start hunchentoot in ssl mode, if I start
> > another hunchentoot instance handling normal http requests, does
> > hunchentoot shares user session between the two instances,if not is
> > there a possibility to do it?
> > Now that I&#39;ve been able to start hunchentoot in ssl mode, if I start
> > another hunchentoot instance handling normal http requests, does
> > hunchentoot shares user session between the two instances,if not is
> > there a possibility to do it? <br>
>
> If I understand you correctly, I think the only way to do this is to keep
> user sessions in an out-of-process server like a database.
>
> --
> Sohail Somani
> http://uint32t.blogspot.com
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080104/0b321258/attachment.html>

From sohail at taggedtype.net  Fri Jan  4 19:51:06 2008
From: sohail at taggedtype.net (Sohail Somani)
Date: Fri, 4 Jan 2008 19:51:06 +0000 (UTC)
Subject: [hunchentoot-devel] session shearing question
References: <4d3bc9370801041138t711624bexe84f7c43c8080d1e@mail.gmail.com>
	<flm28c$s27$1@ger.gmane.org>
	<4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
Message-ID: <flm2na$s27$2@ger.gmane.org>

I'm not so sure actually. If you are running the multiple servers in the 
same Lisp instance and you have a list of the servers, you should be able 
to move sessions between them. Not sure how but... I still think it is 
simpler to use a database.

On Fri, 04 Jan 2008 20:47:42 +0100, Andrea Chiumenti wrote:

> Thanks, yes you understood me correctly.
> 
> On Jan 4, 2008 8:43 PM, Sohail Somani <sohail at taggedtype.net> wrote:
> 
>> On Fri, 04 Jan 2008 20:38:31 +0100, Andrea Chiumenti wrote:
>>
>> > Now that I've been able to start hunchentoot in ssl mode, if I start
>> > another hunchentoot instance handling normal http requests, does
>> > hunchentoot shares user session between the two instances,if not is
>> > there a possibility to do it?
>> > Now that I&#39;ve been able to start hunchentoot in ssl mode, if I
>> > start another hunchentoot instance handling normal http requests,
>> > does hunchentoot shares user session between the two instances,if not
>> > is there a possibility to do it? <br>
>>
>> If I understand you correctly, I think the only way to do this is to
>> keep user sessions in an out-of-process server like a database.


-- 
Sohail Somani
http://uint32t.blogspot.com



From vagif at cox.net  Fri Jan  4 19:52:55 2008
From: vagif at cox.net (Vagif Verdi)
Date: Fri, 4 Jan 2008 11:52:55 -0800
Subject: [hunchentoot-devel] session shearing question
In-Reply-To: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
Message-ID: <20080104195257.UUAD11174.fed1rmmtao105.cox.net@fed1rmimpo01.cox.net>

Why do you need to mix in one session http and https?

Browsers do not support it. For example IE gives nasty popup warning every
time you mix plain and ssl html in one page.

So why bother? Make ALL user sessions SSL, and leave plain http only for
public part of web site.

 

  _____  

From: tbnl-devel-bounces at common-lisp.net
[mailto:tbnl-devel-bounces at common-lisp.net] On Behalf Of Andrea Chiumenti
Sent: Friday, January 04, 2008 11:48 AM
To: General interest list for Hunchentoot and CL-WEBDAV
Subject: Re: [hunchentoot-devel] session shearing question

 

Thanks, yes you understood me correctly.

On Jan 4, 2008 8:43 PM, Sohail Somani <sohail at taggedtype.net> wrote:

On Fri, 04 Jan 2008 20:38:31 +0100, Andrea Chiumenti wrote:

> Now that I've been able to start hunchentoot in ssl mode, if I start
> another hunchentoot instance handling normal http requests, does 
> hunchentoot shares user session between the two instances,if not is
> there a possibility to do it?

> Now that I&#39;ve been able to start hunchentoot in ssl mode, if I start

> another hunchentoot instance handling normal http requests, does
> hunchentoot shares user session between the two instances,if not is

> there a possibility to do it? <br>

If I understand you correctly, I think the only way to do this is to keep 
user sessions in an out-of-process server like a database.

--
Sohail Somani
http://uint32t.blogspot.com

_______________________________________________ 
tbnl-devel site list
tbnl-devel at common-lisp.net
http://common-lisp.net/mailman/listinfo/tbnl-devel 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080104/50b2b70d/attachment.html>

From kiuma72 at gmail.com  Fri Jan  4 21:11:05 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Fri, 4 Jan 2008 22:11:05 +0100
Subject: [hunchentoot-devel] session shearing question
In-Reply-To: <20080104195257.UUAD11174.fed1rmmtao105.cox.net@fed1rmimpo01.cox.net>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<20080104195257.UUAD11174.fed1rmmtao105.cox.net@fed1rmimpo01.cox.net>
Message-ID: <4d3bc9370801041311pba46f32he706bc357c78cf61@mail.gmail.com>

Suppose you have a web application:
When a user accesses it,  the application will create a session for this
user (not already logged).
Now suppose he will do something that need to be stored into session, as for
example filling a chart in an e-commerce
application.
Now he needs to checkout his chart, but he must login into this e-commerce
site/application, so he will be redirected to an encrypted connection, but
the session, holding the chart, must not be loosen.
This makes me think that I have to share a session (object/service) between
a pair of hunchentoot instances.

On Jan 4, 2008 8:52 PM, Vagif Verdi <vagif at cox.net> wrote:

>  Why do you need to mix in one session http and https?
>
> Browsers do not support it. For example IE gives nasty popup warning every
> time you mix plain and ssl html in one page.
>
> So why bother? Make ALL user sessions SSL, and leave plain http only for
> public part of web site.
>
>
>  ------------------------------
>
> *From:* tbnl-devel-bounces at common-lisp.net [mailto:
> tbnl-devel-bounces at common-lisp.net] *On Behalf Of *Andrea Chiumenti
> *Sent:* Friday, January 04, 2008 11:48 AM
> *To:* General interest list for Hunchentoot and CL-WEBDAV
> *Subject:* Re: [hunchentoot-devel] session shearing question
>
>
>
> Thanks, yes you understood me correctly.
>
> On Jan 4, 2008 8:43 PM, Sohail Somani <sohail at taggedtype.net> wrote:
>
> On Fri, 04 Jan 2008 20:38:31 +0100, Andrea Chiumenti wrote:
>
> > Now that I've been able to start hunchentoot in ssl mode, if I start
> > another hunchentoot instance handling normal http requests, does
> > hunchentoot shares user session between the two instances,if not is
> > there a possibility to do it?
>
> > Now that I&#39;ve been able to start hunchentoot in ssl mode, if I start
>
> > another hunchentoot instance handling normal http requests, does
> > hunchentoot shares user session between the two instances,if not is
>
> > there a possibility to do it? <br>
>
> If I understand you correctly, I think the only way to do this is to keep
> user sessions in an out-of-process server like a database.
>
> --
> Sohail Somani
> http://uint32t.blogspot.com
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
>
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080104/61e799d1/attachment.html>

From yazicivo at ttmail.com  Fri Jan  4 21:32:55 2008
From: yazicivo at ttmail.com (Volkan YAZICI)
Date: Fri, 04 Jan 2008 23:32:55 +0200
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801041311pba46f32he706bc357c78cf61@mail.gmail.com>
	(Andrea Chiumenti's message of "Fri\,
	4 Jan 2008 22\:11\:05 +0100")
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<20080104195257.UUAD11174.fed1rmmtao105.cox.net@fed1rmimpo01.cox.net>
	<4d3bc9370801041311pba46f32he706bc357c78cf61@mail.gmail.com>
Message-ID: <87r6gxgttk.fsf_-_@ttmail.com>

"Andrea Chiumenti" <kiuma72 at gmail.com> writes:
> Suppose you have a web application: When a user accesses it, the
> application will create a session for this user (not already
> logged). Now suppose he will do something that need to be stored
> into session, as for example filling a chart in an e-commerce
> application. Now he needs to checkout his chart, but he must login
> into this e-commerce site/application, so he will be redirected to
> an encrypted connection, but the session, holding the chart, must
> not be loosen. This makes me think that I have to share a session
> (object/service) between a pair of hunchentoot instances.

Then, as Sohail mentioned previously, you will need an intermediate
layer for storing temporary client data in an accesible state by both
instances. While you may achieve this by using a database server, it
might be more convenient and easy to use some sort of persistance
layer. (See cl-perec[1] and elephant[2] projects.)

[1] http://common-lisp.net/project/cl-perec/
[2] http://common-lisp.net/project/elephant/


Regards.


From kiuma72 at gmail.com  Fri Jan  4 21:54:45 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Fri, 4 Jan 2008 22:54:45 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <87r6gxgttk.fsf_-_@ttmail.com>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<20080104195257.UUAD11174.fed1rmmtao105.cox.net@fed1rmimpo01.cox.net>
	<4d3bc9370801041311pba46f32he706bc357c78cf61@mail.gmail.com>
	<87r6gxgttk.fsf_-_@ttmail.com>
Message-ID: <4d3bc9370801041354k7740b0d1g4405114eeac9c0f4@mail.gmail.com>

to have a process safe server, both cl-perec and elephant use a non pure
lisp solution :(

On Jan 4, 2008 10:32 PM, Volkan YAZICI <yazicivo at ttmail.com> wrote:

> "Andrea Chiumenti" <kiuma72 at gmail.com> writes:
> > Suppose you have a web application: When a user accesses it, the
> > application will create a session for this user (not already
> > logged). Now suppose he will do something that need to be stored
> > into session, as for example filling a chart in an e-commerce
> > application. Now he needs to checkout his chart, but he must login
> > into this e-commerce site/application, so he will be redirected to
> > an encrypted connection, but the session, holding the chart, must
> > not be loosen. This makes me think that I have to share a session
> > (object/service) between a pair of hunchentoot instances.
>
> Then, as Sohail mentioned previously, you will need an intermediate
> layer for storing temporary client data in an accesible state by both
> instances. While you may achieve this by using a database server, it
> might be more convenient and easy to use some sort of persistance
> layer. (See cl-perec[1] and elephant[2] projects.)
>
> [1] http://common-lisp.net/project/cl-perec/
> [2] http://common-lisp.net/project/elephant/
>
>
> Regards.
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080104/a58fccb6/attachment.html>

From yazicivo at ttmail.com  Fri Jan  4 22:27:53 2008
From: yazicivo at ttmail.com (Volkan YAZICI)
Date: Sat, 05 Jan 2008 00:27:53 +0200
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801041354k7740b0d1g4405114eeac9c0f4@mail.gmail.com>
	(Andrea Chiumenti's message of "Fri\,
	4 Jan 2008 22\:54\:45 +0100")
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<20080104195257.UUAD11174.fed1rmmtao105.cox.net@fed1rmimpo01.cox.net>
	<4d3bc9370801041311pba46f32he706bc357c78cf61@mail.gmail.com>
	<87r6gxgttk.fsf_-_@ttmail.com>
	<4d3bc9370801041354k7740b0d1g4405114eeac9c0f4@mail.gmail.com>
Message-ID: <87myrlgr9y.fsf_-_@ttmail.com>

"Andrea Chiumenti" <kiuma72 at gmail.com> writes:
> to have a process safe server, both cl-perec and elephant use a non
> pure lisp solution :(

So you shouldn't be using HTTPS with hunchentoot too, 'cause it
depends on a foreign ssl library. That's the trade. But you may want
to chose waiting for somebody to implement an ACID compliant storage
framework in lisp -- with tons of other indexing, concurrency, data
integrity stuff. (By the way, there exists commercial solutions. See
AllegroCache for instance.)

On the other hand, IIRC elephant could use Berkeley DB as a
backend. AFAICS, probability of finding libdb installed on a system is
much more higher than finding libssl installed.


Regards.


From kiuma72 at gmail.com  Fri Jan  4 23:01:53 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Sat, 5 Jan 2008 00:01:53 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <87myrlgr9y.fsf_-_@ttmail.com>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<20080104195257.UUAD11174.fed1rmmtao105.cox.net@fed1rmimpo01.cox.net>
	<4d3bc9370801041311pba46f32he706bc357c78cf61@mail.gmail.com>
	<87r6gxgttk.fsf_-_@ttmail.com>
	<4d3bc9370801041354k7740b0d1g4405114eeac9c0f4@mail.gmail.com>
	<87myrlgr9y.fsf_-_@ttmail.com>
Message-ID: <4d3bc9370801041501l468865efo8038d6e515862046@mail.gmail.com>

Ok,
you convinced me.
For now I can use elephant for my cl-webobjects project.
Then I could hack swarmcache (http://swarmcache.sourceforge.net/)
and port it to lisp (if I gain a bit more experience in CL coding)

On Jan 4, 2008 11:27 PM, Volkan YAZICI <yazicivo at ttmail.com> wrote:

> "Andrea Chiumenti" <kiuma72 at gmail.com> writes:
> > to have a process safe server, both cl-perec and elephant use a non
> > pure lisp solution :(
>
> So you shouldn't be using HTTPS with hunchentoot too, 'cause it
> depends on a foreign ssl library. That's the trade. But you may want
> to chose waiting for somebody to implement an ACID compliant storage
> framework in lisp -- with tons of other indexing, concurrency, data
> integrity stuff. (By the way, there exists commercial solutions. See
> AllegroCache for instance.)
>
> On the other hand, IIRC elephant could use Berkeley DB as a
> backend. AFAICS, probability of finding libdb installed on a system is
> much more higher than finding libssl installed.
>
>
> Regards.
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080105/7d82d1fd/attachment.html>

From kiuma72 at gmail.com  Sat Jan  5 10:31:06 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Sat, 5 Jan 2008 11:31:06 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801041501l468865efo8038d6e515862046@mail.gmail.com>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<20080104195257.UUAD11174.fed1rmmtao105.cox.net@fed1rmimpo01.cox.net>
	<4d3bc9370801041311pba46f32he706bc357c78cf61@mail.gmail.com>
	<87r6gxgttk.fsf_-_@ttmail.com>
	<4d3bc9370801041354k7740b0d1g4405114eeac9c0f4@mail.gmail.com>
	<87myrlgr9y.fsf_-_@ttmail.com>
	<4d3bc9370801041501l468865efo8038d6e515862046@mail.gmail.com>
Message-ID: <4d3bc9370801050231y52391034i1e31a75634f5991c@mail.gmail.com>

Hello,
this morning, when I woke up, taken from curiosity, I've opened hunchentoot
code to inspect how sessions are handled.
I've seen that session modifiers are all protected with the WITH-LOCK form,
now my question is *session-data* common to
all hunchentoot servers instantiated on the same lisp instance ?

Another question, now suppose we have in a single hunchentoot server serves
two applications ( distinguished by their path ).
It seems that hunchentoot shares the session between  these two, and
sometime it's good, but what should I do if I want applications to share
different sessions ?

On Jan 5, 2008 12:01 AM, Andrea Chiumenti <kiuma72 at gmail.com> wrote:

> Ok,
> you convinced me.
> For now I can use elephant for my cl-webobjects project.
> Then I could hack swarmcache (http://swarmcache.sourceforge.net/)
> and port it to lisp (if I gain a bit more experience in CL coding)
>
>
> On Jan 4, 2008 11:27 PM, Volkan YAZICI <yazicivo at ttmail.com> wrote:
>
> > "Andrea Chiumenti" <kiuma72 at gmail.com> writes:
> > > to have a process safe server, both cl-perec and elephant use a non
> > > pure lisp solution :(
> >
> > So you shouldn't be using HTTPS with hunchentoot too, 'cause it
> > depends on a foreign ssl library. That's the trade. But you may want
> > to chose waiting for somebody to implement an ACID compliant storage
> > framework in lisp -- with tons of other indexing, concurrency, data
> > integrity stuff. (By the way, there exists commercial solutions. See
> > AllegroCache for instance.)
> >
> > On the other hand, IIRC elephant could use Berkeley DB as a
> > backend. AFAICS, probability of finding libdb installed on a system is
> > much more higher than finding libssl installed.
> >
> >
> > Regards.
> > _______________________________________________
> > tbnl-devel site list
> > tbnl-devel at common-lisp.net
> > http://common-lisp.net/mailman/listinfo/tbnl-devel
> >
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080105/d21493ad/attachment.html>

From jeffrey at cunningham.net  Sat Jan  5 19:32:19 2008
From: jeffrey at cunningham.net (Jeff Cunningham)
Date: Sat, 05 Jan 2008 11:32:19 -0800
Subject: [hunchentoot-devel] how much virtual memory do your servers use?
Message-ID: <477FDB43.6000102@cunningham.net>

I just noticed that two hunchentoot servers I'm running (on different 
machines) are using 528m and 894m, respectively, as reported by top. Yet 
the core images that SBCL creates are only 71.5m and 62.0m, 
respectively. I was wondering if there is a memory leak, so I killed 
them and restarted them. The virtual memory usage was exactly the same 
right when they started up.

I know next to nothing about garbage collection in Lisp, so if it has 
something to do with that, I'm lost. But I'm wondering if there's 
something wrong? For the core to expand to roughly 10x in virtual memory 
seems excessive and ultimately limiting in terms of server usage.

What kind of virtual memory usage do you folks see in your servers? And 
how does it correlate with Lisp implementations? If you will send me 
some numbers I will pull together some statistics and post them.

FWIW: I'm running SBCL 1.0.12, Hunchentoot 0.14.7, and the package 
dependencies all brought up to date as of when 0.14.7 was released.

Thanks,

--Jeff


From rsynnott at gmail.com  Sat Jan  5 19:53:48 2008
From: rsynnott at gmail.com (Robert Synnott)
Date: Sat, 5 Jan 2008 19:53:48 +0000
Subject: [hunchentoot-devel] how much virtual memory do your servers use?
In-Reply-To: <477FDB43.6000102@cunningham.net>
References: <477FDB43.6000102@cunningham.net>
Message-ID: <24f203480801051153v4707b1f6j129f700519917dab@mail.gmail.com>

On Jan 5, 2008 7:32 PM, Jeff Cunningham <jeffrey at cunningham.net> wrote:
> I just noticed that two hunchentoot servers I'm running (on different
> machines) are using 528m and 894m, respectively, as reported by top. Yet
> the core images that SBCL creates are only 71.5m and 62.0m,
> respectively. I was wondering if there is a memory leak, so I killed
> them and restarted them. The virtual memory usage was exactly the same
> right when they started up.
>
> I know next to nothing about garbage collection in Lisp, so if it has
> something to do with that, I'm lost. But I'm wondering if there's
> something wrong? For the core to expand to roughly 10x in virtual memory
> seems excessive and ultimately limiting in terms of server usage.
>
> What kind of virtual memory usage do you folks see in your servers? And
> how does it correlate with Lisp implementations? If you will send me
> some numbers I will pull together some statistics and post them.
>
> FWIW: I'm running SBCL 1.0.12, Hunchentoot 0.14.7, and the package
> dependencies all brought up to date as of when 0.14.7 was released.
>
> Thanks,
>
> --Jeff
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>

VIRTUAL memory shouldn't really be a problem. Resident memory is of
more interest.
Rob.

-- 
Robert Synnott
http://myblog.rsynnott.com
MSN: rsynnott at gmail.com
Jabber: rsynnott at gmail.com


From jeffrey at cunningham.net  Sat Jan  5 20:02:51 2008
From: jeffrey at cunningham.net (Jeff Cunningham)
Date: Sat, 05 Jan 2008 12:02:51 -0800
Subject: [hunchentoot-devel] how much virtual memory do your servers use?
In-Reply-To: <24f203480801051153v4707b1f6j129f700519917dab@mail.gmail.com>
References: <477FDB43.6000102@cunningham.net>
	<24f203480801051153v4707b1f6j129f700519917dab@mail.gmail.com>
Message-ID: <477FE26B.10302@cunningham.net>

Robert Synnott wrote:
> VIRTUAL memory shouldn't really be a problem. Resident memory is of
> more interest.
> Rob.
>
>   
Are you sure? On one of these machines there is a total swap size of 
2048m, on the other there is 1436m. If my process is using up 1/3rd of 
swap, then doesn't that mean I can only run three of these servers 
before exhausting swap?

This issue was brought to my attention by the administrator of a 
commercial machine I'm running one of the Hunchentoot servers on - he 
was objecting to the amount of virtual memory it was using. He said the 
paging was impacting overall server performance.

--Jeff



From edi at agharta.de  Sat Jan  5 20:15:42 2008
From: edi at agharta.de (Edi Weitz)
Date: Sat, 05 Jan 2008 21:15:42 +0100
Subject: [hunchentoot-devel] how much virtual memory do your servers use?
In-Reply-To: <477FDB43.6000102@cunningham.net> (Jeff Cunningham's message of
	"Sat, 05 Jan 2008 11:32:19 -0800")
References: <477FDB43.6000102@cunningham.net>
Message-ID: <u3atcjafl.fsf@agharta.de>

On Sat, 05 Jan 2008 11:32:19 -0800, Jeff Cunningham <jeffrey at cunningham.net> wrote:

> What kind of virtual memory usage do you folks see in your servers?

I have several Hunchentoot applications running on different Linux
machines with an application uptime between two months and one year.
They currently all use LispWorks 4.4.6, i.e. "green threads".  Virtual
memory usage is somewhere between 35MB and 75MB, resident memory
between 30MB and 55MB.


From yoni at rabkins.net  Sat Jan  5 20:14:07 2008
From: yoni at rabkins.net (Yoni Rabkin)
Date: Sat, 05 Jan 2008 22:14:07 +0200
Subject: [hunchentoot-devel] how much virtual memory do your servers use?
In-Reply-To: <477FDB43.6000102@cunningham.net> (Jeff Cunningham's message of
	"Sat, 05 Jan 2008 11:32:19 -0800")
References: <477FDB43.6000102@cunningham.net>
Message-ID: <87ve68ghdc.fsf@rabkins.net>

Jeff Cunningham <jeffrey at cunningham.net> writes:

> What kind of virtual memory usage do you folks see in your servers?

Anywhere between 90MB and 250MB of *resident* memory. The higher values
are when they load a large data-set into memory.

These numbers are for SBCL+Hunchentoot, in images which work for a few
months at a time. The numbers have also been the consistent across
different SBCL versions.

I've never had a memory leak under SBCL+Hunchentoot which wasn't
directly my fault.

My friend is usually:

CL-USER> (room)

-- 
   "Cut your own wood and it will warm you twice"


From jeffrey at cunningham.net  Sat Jan  5 21:07:05 2008
From: jeffrey at cunningham.net (Jeff Cunningham)
Date: Sat, 05 Jan 2008 13:07:05 -0800
Subject: [hunchentoot-devel] how much virtual memory do your servers use?
In-Reply-To: <87ve68ghdc.fsf@rabkins.net>
References: <477FDB43.6000102@cunningham.net> <87ve68ghdc.fsf@rabkins.net>
Message-ID: <477FF179.1040901@cunningham.net>

Yoni Rabkin wrote:
> Jeff Cunningham <jeffrey at cunningham.net> writes:
>
>   
>> What kind of virtual memory usage do you folks see in your servers?
>>     
>
> Anywhere between 90MB and 250MB of *resident* memory. The higher values
> are when they load a large data-set into memory.
>
> These numbers are for SBCL+Hunchentoot, in images which work for a few
> months at a time. The numbers have also been the consistent across
> different SBCL versions.
>
> I've never had a memory leak under SBCL+Hunchentoot which wasn't
> directly my fault.
>
> My friend is usually:
>
> CL-USER> (room)
>
>   
Thanks - I didn't know about 'room. When I run it on one of these images 
it says its using 162m of dynamic space, but at the same time top says 
its using 690m of virtual memory. Room doesn't seem to keep track of its 
virtual memory footprint?

--Jeff


From stassats at gmail.com  Sat Jan  5 21:21:03 2008
From: stassats at gmail.com (stassats at gmail.com)
Date: Sun, 6 Jan 2008 00:21:03 +0300
Subject: [hunchentoot-devel] how much virtual memory do your servers use?
In-Reply-To: <477FDB43.6000102@cunningham.net>
References: <477FDB43.6000102@cunningham.net>
Message-ID: <9f0fec110801051321o3d7fa69pb7e8c5674a5fc376@mail.gmail.com>

On Jan 5, 2008 10:32 PM, Jeff Cunningham <jeffrey at cunningham.net> wrote:
> I just noticed that two hunchentoot servers I'm running (on different
> machines) are using 528m and 894m, respectively, as reported by top. Yet
> the core images that SBCL creates are only 71.5m and 62.0m,
> respectively. I was wondering if there is a memory leak, so I killed
> them and restarted them. The virtual memory usage was exactly the same
> right when they started up.
>
> I know next to nothing about garbage collection in Lisp, so if it has
> something to do with that, I'm lost. But I'm wondering if there's
> something wrong? For the core to expand to roughly 10x in virtual memory
> seems excessive and ultimately limiting in terms of server usage.
>
> What kind of virtual memory usage do you folks see in your servers? And
> how does it correlate with Lisp implementations? If you will send me
> some numbers I will pull together some statistics and post them.
>
> FWIW: I'm running SBCL 1.0.12, Hunchentoot 0.14.7, and the package
> dependencies all brought up to date as of when 0.14.7 was released.
>

SBCL allocates space on start, this space doesn't take nor RAM,
neither swap up, it is virtual. On my x86_64 machine it allocates 8
gigabytes.

-- 
With Best Regards, Stas.


From info at jensteich.de  Sat Jan  5 21:29:21 2008
From: info at jensteich.de (Jens Teich)
Date: Sat, 5 Jan 2008 22:29:21 +0100
Subject: [hunchentoot-devel] how much virtual memory do your servers use?
References: <477FDB43.6000102@cunningham.net>
Message-ID: <059201c84fe2$0fb85140$897eba5a@JensSony>

here uptime 72 days

hunchentoot + sbcl

swap used 17.2MB

never seen problems of that sort ...

Jens


From rsynnott at gmail.com  Sat Jan  5 21:45:40 2008
From: rsynnott at gmail.com (Robert Synnott)
Date: Sat, 5 Jan 2008 21:45:40 +0000
Subject: [hunchentoot-devel] how much virtual memory do your servers use?
In-Reply-To: <059201c84fe2$0fb85140$897eba5a@JensSony>
References: <477FDB43.6000102@cunningham.net>
	<059201c84fe2$0fb85140$897eba5a@JensSony>
Message-ID: <24f203480801051345hcb0d900gbae6094681296635@mail.gmail.com>

I've two lisp instances both with about 8GB virtual memory, on a 64bit
machine with 2GB of RAM. Effectively no swap in use, and plenty of
physical memory free. I'm not sure that the virtual memory figures are
in themselves very meaningful
Rob.


-- 
Robert Synnott
http://myblog.rsynnott.com
MSN: rsynnott at gmail.com
Jabber: rsynnott at gmail.com


From yoni at rabkins.net  Sat Jan  5 21:43:54 2008
From: yoni at rabkins.net (Yoni Rabkin)
Date: Sat, 05 Jan 2008 23:43:54 +0200
Subject: [hunchentoot-devel] how much virtual memory do your servers use?
In-Reply-To: <477FF179.1040901@cunningham.net> (Jeff Cunningham's message of
	"Sat, 05 Jan 2008 13:07:05 -0800")
References: <477FDB43.6000102@cunningham.net> <87ve68ghdc.fsf@rabkins.net>
	<477FF179.1040901@cunningham.net>
Message-ID: <87sl1caqxx.fsf@rabkins.net>

Jeff Cunningham <jeffrey at cunningham.net> writes:

> When I run it on one of these images it says its using 162m of dynamic
> space, but at the same time top says its using 690m of virtual
> memory. Room doesn't seem to keep track of its virtual memory
> footprint?

No need really. I think that the amount of dynamic memory *reserved* is
platform dependent. You can set it as a runtime option if you want. I've
never had to do this.

"M-x woman sbcl" tells me:

	--dynamic-space-size <megabytes>
	   Size  of  the  dynamic   space  reserved  on  startup  in
	   megabytes. Default value is platform dependent.

Also, note that this is no long a Hunchentoot related thread.

-- 
   "Cut your own wood and it will warm you twice"


From lists at philjordan.eu  Sun Jan  6 21:36:07 2008
From: lists at philjordan.eu (Phil Jordan)
Date: Sun, 06 Jan 2008 22:36:07 +0100
Subject: [hunchentoot-devel] how much virtual memory do your servers use?
In-Reply-To: <24f203480801051345hcb0d900gbae6094681296635@mail.gmail.com>
References: <477FDB43.6000102@cunningham.net>	<059201c84fe2$0fb85140$897eba5a@JensSony>
	<24f203480801051345hcb0d900gbae6094681296635@mail.gmail.com>
Message-ID: <478149C7.3040606@philjordan.eu>

Robert Synnott wrote:
> I've two lisp instances both with about 8GB virtual memory, on a 64bit
> machine with 2GB of RAM. Effectively no swap in use, and plenty of
> physical memory free. I'm not sure that the virtual memory figures are
> in themselves very meaningful

It sounds like the "virtual memory" figure is the amount of reserved
address space. I suspect the garbage collector expects all of its
managed memory to be in a certain address range, and to enforce this, it
mmap()s [1] those pages to anonymous private memory (or equivalent on
non-Linux systems) so no external libraries can grab them. Private
memory pages are handled as copy-on-write, and anonymous memory is
zero-initialised. So in effect, most of those 500+MB are probably
actually mapped to the same page of physical memory filled with zeroes,
at least until anything is written to them, at which point that page
will get its own chunk of memory.

[1] http://linux.die.net/man/3/mmap

~phil


From edi at agharta.de  Mon Jan  7 04:45:49 2008
From: edi at agharta.de (Edi Weitz)
Date: Mon, 07 Jan 2008 05:45:49 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801050231y52391034i1e31a75634f5991c@mail.gmail.com>
	(Andrea Chiumenti's message of "Sat, 5 Jan 2008 11:31:06 +0100")
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<20080104195257.UUAD11174.fed1rmmtao105.cox.net@fed1rmimpo01.cox.net>
	<4d3bc9370801041311pba46f32he706bc357c78cf61@mail.gmail.com>
	<87r6gxgttk.fsf_-_@ttmail.com>
	<4d3bc9370801041354k7740b0d1g4405114eeac9c0f4@mail.gmail.com>
	<87myrlgr9y.fsf_-_@ttmail.com>
	<4d3bc9370801041501l468865efo8038d6e515862046@mail.gmail.com>
	<4d3bc9370801050231y52391034i1e31a75634f5991c@mail.gmail.com>
Message-ID: <utzlqmef6.fsf@agharta.de>

On Sat, 5 Jan 2008 11:31:06 +0100, "Andrea Chiumenti" <kiuma72 at gmail.com> wrote:

> now my question is *session-data* common to all hunchentoot servers
> instantiated on the same lisp instance ?

Yes, it's a global special variable.

> Another question, now suppose we have in a single hunchentoot server
> serves two applications ( distinguished by their path ).  It seems
> that hunchentoot shares the session between these two, and sometime
> it's good, but what should I do if I want applications to share
> different sessions ?

There's currently no mechanism for this.  Unless you write your own,
of course.


From kiuma72 at gmail.com  Mon Jan  7 06:43:12 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Mon, 7 Jan 2008 07:43:12 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <utzlqmef6.fsf@agharta.de>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<20080104195257.UUAD11174.fed1rmmtao105.cox.net@fed1rmimpo01.cox.net>
	<4d3bc9370801041311pba46f32he706bc357c78cf61@mail.gmail.com>
	<87r6gxgttk.fsf_-_@ttmail.com>
	<4d3bc9370801041354k7740b0d1g4405114eeac9c0f4@mail.gmail.com>
	<87myrlgr9y.fsf_-_@ttmail.com>
	<4d3bc9370801041501l468865efo8038d6e515862046@mail.gmail.com>
	<4d3bc9370801050231y52391034i1e31a75634f5991c@mail.gmail.com>
	<utzlqmef6.fsf@agharta.de>
Message-ID: <4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>

Hello, Edi

I've spent the weekend on figuring out how to bind sessions for each
application registered and finally I've found a solution!
Before writing function redefinitions into my project, thing that I find a
bit 'dirty', do you want me to post here my modifications so
that sessions have their own realm and session cookies are bound to specific
applications ?

Cheers,
kiuma

On Jan 7, 2008 5:45 AM, Edi Weitz <edi at agharta.de> wrote:

> On Sat, 5 Jan 2008 11:31:06 +0100, "Andrea Chiumenti" <kiuma72 at gmail.com>
> wrote:
>
> > now my question is *session-data* common to all hunchentoot servers
> > instantiated on the same lisp instance ?
>
> Yes, it's a global special variable.
>
> > Another question, now suppose we have in a single hunchentoot server
> > serves two applications ( distinguished by their path ).  It seems
> > that hunchentoot shares the session between these two, and sometime
> > it's good, but what should I do if I want applications to share
> > different sessions ?
>
> There's currently no mechanism for this.  Unless you write your own,
> of course.
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080107/b17316f6/attachment.html>

From kiuma72 at gmail.com  Tue Jan  8 09:12:50 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Tue, 8 Jan 2008 10:12:50 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<20080104195257.UUAD11174.fed1rmmtao105.cox.net@fed1rmimpo01.cox.net>
	<4d3bc9370801041311pba46f32he706bc357c78cf61@mail.gmail.com>
	<87r6gxgttk.fsf_-_@ttmail.com>
	<4d3bc9370801041354k7740b0d1g4405114eeac9c0f4@mail.gmail.com>
	<87myrlgr9y.fsf_-_@ttmail.com>
	<4d3bc9370801041501l468865efo8038d6e515862046@mail.gmail.com>
	<4d3bc9370801050231y52391034i1e31a75634f5991c@mail.gmail.com>
	<utzlqmef6.fsf@agharta.de>
	<4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>
Message-ID: <4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>

Hi Edi,
are you interested in these modifications ?


(defgeneric request-realm (req)
  (:documentation "Returns the realm under which the request has been sent.
A realm is used to group resources under a common 'place', and is used for
registered web applications
to have different or common sessions for a give user."))
(defgeneric (setf request-realm) (value req)
  (:documentation "Sets the realm under which the request has been sent,
where value is the realm name.
A realm is used to group resources under a common 'place', and is used for
registered web applications
to have different or common sessions for a give user."))

(defmethod request-realm ((req hunchentoot::request))
  (aux-request-value 'realm req))

(defmethod (setf request-realm) (value (req hunchentoot::request))
  (setf (aux-request-value req) value))

(defclass session ()
  ((session-id :initform (get-next-session-id)
               :reader session-id
               :type integer
               :documentation "The unique ID \(an INTEGER) of the session.")
   (session-realm :initform (request-realm *request*)
          :reader session-realm
          :documentation "Defines a realm for this session.
A realm is injected by *request* aux parameter, and is used to group
resources that will share this session object.")
   (session-string :reader session-string
                   :documentation "The session strings encodes enough
data to safely retrieve this session. It is sent to the browser as a
cookie value or as a GET parameter.")
   (user-agent :initform (user-agent *request*)
               :reader session-user-agent
               :documentation "The incoming 'User-Agent' header that
was sent when this session was created.")
   (remote-addr :initform (real-remote-addr *request*)
              :reader session-remote-addr
              :documentation "The remote IP address of the client when
this sessions was started as returned by REAL-REMOTE-ADDR.")
   (session-start :initform (get-universal-time)
                  :reader session-start
                  :documentation "The time this session was started.")
   (last-click :initform (get-universal-time)
               :reader session-last-click
               :documentation "The last time this session was used.")
   (session-data :initarg :session-data
                 :initform nil
                 :reader session-data
                 :documentation "Data associated with this session -
see SESSION-VALUE.")
   (session-counter :initform 0
                    :reader session-counter
                    :documentation "The number of times this session
has been used.")
   (max-time :initarg :max-time
             :initform *session-max-time*
             :accessor session-max-time
             :type fixnum
             :documentation "The time \(in seconds) after which this
session expires if it's not used."))
  (:documentation "SESSION objects are automatically maintained
by Hunchentoot. They should not be created explicitly with
MAKE-INSTANCE but implicitly with START-SESSION. Note that
SESSION objects can only be created when the special variable
*REQUEST* is bound to a REQUEST object."))

(defun encode-session-string (id user-agent remote-addr start realm)
  "Create a uniquely encoded session string based on the values ID,
USER-AGENT, REMOTE-ADDR, and START"
  ;; *SESSION-SECRET* is used twice due to known theoretical
  ;; vulnerabilities of MD5 encoding
  (md5-hex (concatenate 'string
            *session-secret*
            (md5-hex (format nil "~A~A~@[~A~]~@[~A~]~A~@[~A~]"
                                         *session-secret*
                                         id
                                         (and *use-user-agent-for-sessions*
                                              user-agent)
                                         (and *use-remote-addr-for-sessions*
                                              remote-addr)
                                         start
                     realm)))))

(defun stringify-session (session)
  "Creates a string representing the SESSION object SESSION. See
ENCODE-SESSION-STRING."
  (encode-session-string (session-id session)
                         (session-user-agent session)
                         (session-remote-addr session)
                         (session-start session)
             (session-realm session))



(defun session-verify (request)
  "Tries to get a session identifier from the cookies \(or
alternatively from the GET parameters) sent by the client. This
identifier is then checked for validity against the REQUEST object
REQUEST. On success the corresponding session object \(if not too old)
is returned \(and updated). Otherwise NIL is returned."
  (let ((session-identifier (or (cookie-in *session-cookie-name* request)
                                (get-parameter *session-cookie-name*
request))))
    (unless (and session-identifier
                 (stringp session-identifier)
                 (plusp (length session-identifier)))
      (return-from session-verify nil))
    (destructuring-bind (id-string session-string)
        (split ":" session-identifier :limit 2)
      (let* ((id (and (scan "^\\d+$" id-string)
                      (parse-integer id-string
                                     :junk-allowed t)))
             (session (and id
                           (get-stored-session id)))
             (user-agent (user-agent request))
             (remote-addr (remote-addr request)))
        (unless (and session
                     session-string
                     (string= session-string
                              (session-string session))
                     (string= session-string
                              (encode-session-string id
                                                     user-agent
                                                     (real-remote-addr
request)
                                                     (session-start session)
                             (request-realm request))))
          (when *reply*
            (cond ((null session)
                    (log-message :notice "No session for session identifier
'~A' (User-Agent: '~A', IP: '~A')"
                                 session-identifier user-agent remote-addr))
                  (t
                    (log-message :warning "Fake session identifier '~A'
(User-Agent: '~A', IP: '~A')"
                                 session-identifier user-agent
remote-addr))))
          (when session
            (remove-session session))
          (return-from session-verify nil))
        (incf (slot-value session 'session-counter))
        (setf (slot-value session 'last-click) (get-universal-time))
        session))))

(defun start-session (&optional (path "/"))
  "Returns the current SESSION object. If there is no current session,
creates one and updates the corresponding data structures. In this
case the function will also send a session cookie to the browser.
This function slightly differs from standard hunchentoot implementation
because
it can bound a session to a specific url inside the same server instance."
  (count-session-usage)
  (let ((session (session *request*)))
    (when session
      (return-from start-session session))
    (setf session (make-instance 'session)
          (session *request*) session)
    (with-lock (*session-data-lock*)
      (setq *session-data* (acons (session-id session) session
*session-data*)))
    (set-cookie *session-cookie-name*
                :value (session-cookie-value session)
                :path path)
    (setq *session* session)))

On Jan 7, 2008 7:43 AM, Andrea Chiumenti <kiuma72 at gmail.com> wrote:

> Hello, Edi
>
> I've spent the weekend on figuring out how to bind sessions for each
> application registered and finally I've found a solution!
> Before writing function redefinitions into my project, thing that I find a
> bit 'dirty', do you want me to post here my modifications so
> that sessions have their own realm and session cookies are bound to
> specific applications ?
>
> Cheers,
> kiuma
>
>
> On Jan 7, 2008 5:45 AM, Edi Weitz < edi at agharta.de> wrote:
>
> > On Sat, 5 Jan 2008 11:31:06 +0100, "Andrea Chiumenti" <
> > kiuma72 at gmail.com> wrote:
> >
> > > now my question is *session-data* common to all hunchentoot servers
> > > instantiated on the same lisp instance ?
> >
> > Yes, it's a global special variable.
> >
> > > Another question, now suppose we have in a single hunchentoot server
> > > serves two applications ( distinguished by their path ).  It seems
> > > that hunchentoot shares the session between these two, and sometime
> > > it's good, but what should I do if I want applications to share
> > > different sessions ?
> >
> > There's currently no mechanism for this.  Unless you write your own,
> > of course.
> > _______________________________________________
> > tbnl-devel site list
> > tbnl-devel at common-lisp.net
> > http://common-lisp.net/mailman/listinfo/tbnl-devel
> >
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080108/f7d2ec97/attachment.html>

From kiuma72 at gmail.com  Tue Jan  8 09:18:34 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Tue, 8 Jan 2008 10:18:34 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<4d3bc9370801041311pba46f32he706bc357c78cf61@mail.gmail.com>
	<87r6gxgttk.fsf_-_@ttmail.com>
	<4d3bc9370801041354k7740b0d1g4405114eeac9c0f4@mail.gmail.com>
	<87myrlgr9y.fsf_-_@ttmail.com>
	<4d3bc9370801041501l468865efo8038d6e515862046@mail.gmail.com>
	<4d3bc9370801050231y52391034i1e31a75634f5991c@mail.gmail.com>
	<utzlqmef6.fsf@agharta.de>
	<4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>
	<4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>
Message-ID: <4d3bc9370801080118p37129259na5f924838a744f72@mail.gmail.com>

sorry a missing paren in stringify-session

On Jan 8, 2008 10:12 AM, Andrea Chiumenti <kiuma72 at gmail.com> wrote:

> Hi Edi,
> are you interested in these modifications ?
>
>
> (defgeneric request-realm (req)
>   (:documentation "Returns the realm under which the request has been
> sent.
> A realm is used to group resources under a common 'place', and is used for
> registered web applications
> to have different or common sessions for a give user."))
> (defgeneric (setf request-realm) (value req)
>   (:documentation "Sets the realm under which the request has been sent,
> where value is the realm name.
> A realm is used to group resources under a common 'place', and is used for
> registered web applications
> to have different or common sessions for a give user."))
>
> (defmethod request-realm ((req hunchentoot::request))
>   (aux-request-value 'realm req))
>
> (defmethod (setf request-realm) (value (req hunchentoot::request))
>   (setf (aux-request-value req) value))
>
> (defclass session ()
>   ((session-id :initform (get-next-session-id)
>                :reader session-id
>                :type integer
>                :documentation "The unique ID \(an INTEGER) of the
> session.")
>    (session-realm :initform (request-realm *request*)
>           :reader session-realm
>           :documentation "Defines a realm for this session.
> A realm is injected by *request* aux parameter, and is used to group
> resources that will share this session object.")
>    (session-string :reader session-string
>                    :documentation "The session strings encodes enough
> data to safely retrieve this session. It is sent to the browser as a
> cookie value or as a GET parameter.")
>    (user-agent :initform (user-agent *request*)
>                :reader session-user-agent
>                :documentation "The incoming 'User-Agent' header that
> was sent when this session was created.")
>    (remote-addr :initform (real-remote-addr *request*)
>               :reader session-remote-addr
>               :documentation "The remote IP address of the client when
> this sessions was started as returned by REAL-REMOTE-ADDR.")
>    (session-start :initform (get-universal-time)
>                   :reader session-start
>                   :documentation "The time this session was started.")
>    (last-click :initform (get-universal-time)
>                :reader session-last-click
>                :documentation "The last time this session was used.")
>    (session-data :initarg :session-data
>                  :initform nil
>                  :reader session-data
>                  :documentation "Data associated with this session -
> see SESSION-VALUE.")
>    (session-counter :initform 0
>                     :reader session-counter
>                     :documentation "The number of times this session
> has been used.")
>    (max-time :initarg :max-time
>              :initform *session-max-time*
>              :accessor session-max-time
>              :type fixnum
>              :documentation "The time \(in seconds) after which this
> session expires if it's not used."))
>   (:documentation "SESSION objects are automatically maintained
> by Hunchentoot. They should not be created explicitly with
> MAKE-INSTANCE but implicitly with START-SESSION. Note that
> SESSION objects can only be created when the special variable
> *REQUEST* is bound to a REQUEST object."))
>
> (defun encode-session-string (id user-agent remote-addr start realm)
>   "Create a uniquely encoded session string based on the values ID,
> USER-AGENT, REMOTE-ADDR, and START"
>   ;; *SESSION-SECRET* is used twice due to known theoretical
>   ;; vulnerabilities of MD5 encoding
>   (md5-hex (concatenate 'string
>             *session-secret*
>             (md5-hex (format nil "~A~A~@[~A~]~@[~A~]~A~@[~A~]"
>                                          *session-secret*
>                                          id
>                                          (and
> *use-user-agent-for-sessions*
>                                               user-agent)
>                                          (and
> *use-remote-addr-for-sessions*
>                                               remote-addr)
>                                          start
>                      realm)))))
>
> (defun stringify-session (session)
>   "Creates a string representing the SESSION object SESSION. See
> ENCODE-SESSION-STRING."
>   (encode-session-string (session-id session)
>                          (session-user-agent session)
>                          (session-remote-addr session)
>                          (session-start session)
>              (session-realm session))
>
>
>
> (defun session-verify (request)
>   "Tries to get a session identifier from the cookies \(or
> alternatively from the GET parameters) sent by the client. This
> identifier is then checked for validity against the REQUEST object
> REQUEST. On success the corresponding session object \(if not too old)
> is returned \(and updated). Otherwise NIL is returned."
>   (let ((session-identifier (or (cookie-in *session-cookie-name* request)
>                                 (get-parameter *session-cookie-name*
> request))))
>     (unless (and session-identifier
>                  (stringp session-identifier)
>                  (plusp (length session-identifier)))
>       (return-from session-verify nil))
>     (destructuring-bind (id-string session-string)
>         (split ":" session-identifier :limit 2)
>       (let* ((id (and (scan "^\\d+$" id-string)
>                       (parse-integer id-string
>                                      :junk-allowed t)))
>              (session (and id
>                            (get-stored-session id)))
>              (user-agent (user-agent request))
>              (remote-addr (remote-addr request)))
>         (unless (and session
>                      session-string
>                      (string= session-string
>                               (session-string session))
>                      (string= session-string
>                               (encode-session-string id
>                                                      user-agent
>                                                      (real-remote-addr
> request)
>                                                      (session-start
> session)
>                              (request-realm request))))
>           (when *reply*
>             (cond ((null session)
>                     (log-message :notice "No session for session
> identifier '~A' (User-Agent: '~A', IP: '~A')"
>                                  session-identifier user-agent
> remote-addr))
>                   (t
>                     (log-message :warning "Fake session identifier '~A'
> (User-Agent: '~A', IP: '~A')"
>                                  session-identifier user-agent
> remote-addr))))
>           (when session
>             (remove-session session))
>           (return-from session-verify nil))
>         (incf (slot-value session 'session-counter))
>         (setf (slot-value session 'last-click) (get-universal-time))
>         session))))
>
> (defun start-session (&optional (path "/"))
>   "Returns the current SESSION object. If there is no current session,
> creates one and updates the corresponding data structures. In this
> case the function will also send a session cookie to the browser.
> This function slightly differs from standard hunchentoot implementation
> because
> it can bound a session to a specific url inside the same server instance."
>   (count-session-usage)
>   (let ((session (session *request*)))
>     (when session
>       (return-from start-session session))
>     (setf session (make-instance 'session)
>           (session *request*) session)
>     (with-lock (*session-data-lock*)
>       (setq *session-data* (acons (session-id session) session
> *session-data*)))
>     (set-cookie *session-cookie-name*
>                 :value (session-cookie-value session)
>                 :path path)
>     (setq *session* session)))
>
>
> On Jan 7, 2008 7:43 AM, Andrea Chiumenti < kiuma72 at gmail.com> wrote:
>
> > Hello, Edi
> >
> > I've spent the weekend on figuring out how to bind sessions for each
> > application registered and finally I've found a solution!
> > Before writing function redefinitions into my project, thing that I find
> > a bit 'dirty', do you want me to post here my modifications so
> > that sessions have their own realm and session cookies are bound to
> > specific applications ?
> >
> > Cheers,
> > kiuma
> >
> >
> > On Jan 7, 2008 5:45 AM, Edi Weitz < edi at agharta.de> wrote:
> >
> > > On Sat, 5 Jan 2008 11:31:06 +0100, "Andrea Chiumenti" <
> > > kiuma72 at gmail.com> wrote:
> > >
> > > > now my question is *session-data* common to all hunchentoot servers
> > > > instantiated on the same lisp instance ?
> > >
> > > Yes, it's a global special variable.
> > >
> > > > Another question, now suppose we have in a single hunchentoot server
> > > > serves two applications ( distinguished by their path ).  It seems
> > > > that hunchentoot shares the session between these two, and sometime
> > > > it's good, but what should I do if I want applications to share
> > > > different sessions ?
> > >
> > > There's currently no mechanism for this.  Unless you write your own,
> > > of course.
> > > _______________________________________________
> > > tbnl-devel site list
> > > tbnl-devel at common-lisp.net
> > > http://common-lisp.net/mailman/listinfo/tbnl-devel
> > >
> >
> >
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080108/9b548a78/attachment.html>

From nlamirault at gmail.com  Tue Jan  8 11:05:49 2008
From: nlamirault at gmail.com (Nicolas Lamirault)
Date: Tue, 08 Jan 2008 12:05:49 +0100
Subject: [hunchentoot-devel] hunchentoot and virtual hosts.
Message-ID: <87ejcsfugi.fsf@perave.org>



hello.
I've got a  web project which have differents  environment : dev, test
and prod.
i've  got 3 web  site :  http://localhost:8888, http://localhost:8989,
and http://localhost:9090 for theses environments.
i would like to make 3 virtual hosts using apache+modlisp+hunchentoot
i modify httpd.conf life this :



<VirtualHost *:80>
	ServerName dev.myfoo.org
	LispServer 127.0.0.1 8888 "DevFoo"
	SetHandler lisp-handler
</VirtualHost>

<VirtualHost *:80>
	ServerName test.myfoo.org
	 LispServer 127.0.0.1 8989 "TestFoo"
	 SetHandler lisp-handler
</VirtualHost>

<VirtualHost *:80>
	ServerName myfoo.org
	LispServer 127.0.0.1 9090 "ProdFoo"
	SetHandler lisp-handler
</VirtualHost>

<VirtualHost _default_:80>
	DocumentRoot /var/www/
</VirtualHost>

i start the PROD web site with :

hunchentoot:start-server :port 9090 :mod-lisp-p t

i try http://www.myfoo.org, but i've got not response.
anyone understand where is my mistake on this configuration ?

thanks for any help

-- 
Nicolas Lamirault


From jeffrey at cunningham.net  Tue Jan  8 15:09:49 2008
From: jeffrey at cunningham.net (Jeff Cunningham)
Date: Tue, 08 Jan 2008 07:09:49 -0800
Subject: [hunchentoot-devel] hunchentoot and virtual hosts.
In-Reply-To: <87ejcsfugi.fsf@perave.org>
References: <87ejcsfugi.fsf@perave.org>
Message-ID: <4783923D.1060603@cunningham.net>

Nicolas Lamirault wrote:
> hello.
> I've got a  web project which have differents  environment : dev, test
> and prod.
> i've  got 3 web  site :  http://localhost:8888, http://localhost:8989,
> and http://localhost:9090 for theses environments.
> i would like to make 3 virtual hosts using apache+modlisp+hunchentoot
> i modify httpd.conf life this :
>
>
>
> <VirtualHost *:80>
> 	ServerName dev.myfoo.org
> 	LispServer 127.0.0.1 8888 "DevFoo"
> 	SetHandler lisp-handler
> </VirtualHost>
>
> <VirtualHost *:80>
> 	ServerName test.myfoo.org
> 	 LispServer 127.0.0.1 8989 "TestFoo"
> 	 SetHandler lisp-handler
> </VirtualHost>
>
> <VirtualHost *:80>
> 	ServerName myfoo.org
> 	LispServer 127.0.0.1 9090 "ProdFoo"
> 	SetHandler lisp-handler
> </VirtualHost>
>
> <VirtualHost _default_:80>
> 	DocumentRoot /var/www/
> </VirtualHost>
>
> i start the PROD web site with :
>
> hunchentoot:start-server :port 9090 :mod-lisp-p t
>
> i try http://www.myfoo.org, but i've got not response.
> anyone understand where is my mistake on this configuration ?
>
> thanks for any help
>
>   
I don't think you can have three virtual hosts listening to the same 
port 80. Apache is just listening on port 80 - it doesn't know about the 
domain name differences that got stuff mapped their. Try changing  the 
Apache ports to be distinct and it should work.

Also, I am assuming you either have DNS servers pointing myfoo.org to 
the hosting machine? Or /etc/hosts or something?

--Jeff




From edi at agharta.de  Tue Jan  8 15:22:25 2008
From: edi at agharta.de (Edi Weitz)
Date: Tue, 08 Jan 2008 16:22:25 +0100
Subject: [hunchentoot-devel] hunchentoot and virtual hosts.
In-Reply-To: <87ejcsfugi.fsf@perave.org> (Nicolas Lamirault's message of
	"Tue, 08 Jan 2008 12:05:49 +0100")
References: <87ejcsfugi.fsf@perave.org>
Message-ID: <u63y4fiku.fsf@agharta.de>

On Tue, 08 Jan 2008 12:05:49 +0100, Nicolas Lamirault <nlamirault at gmail.com> wrote:

> <VirtualHost *:80>
> 	ServerName dev.myfoo.org
> 	LispServer 127.0.0.1 8888 "DevFoo"
> 	SetHandler lisp-handler
> </VirtualHost>
>
> <VirtualHost *:80>
> 	ServerName test.myfoo.org
> 	 LispServer 127.0.0.1 8989 "TestFoo"
> 	 SetHandler lisp-handler
> </VirtualHost>
>
> <VirtualHost *:80>
> 	ServerName myfoo.org
> 	LispServer 127.0.0.1 9090 "ProdFoo"
> 	SetHandler lisp-handler
> </VirtualHost>
>
> <VirtualHost _default_:80>
> 	DocumentRoot /var/www/
> </VirtualHost>
>
> i start the PROD web site with :
>
> hunchentoot:start-server :port 9090 :mod-lisp-p t
>
> i try http://www.myfoo.org, but i've got not response.
> anyone understand where is my mistake on this configuration ?

www.myfoo.org is not one of the server names mentioned in your
configuration, you only have myfoo.org.


From edi at agharta.de  Tue Jan  8 15:24:55 2008
From: edi at agharta.de (Edi Weitz)
Date: Tue, 08 Jan 2008 16:24:55 +0100
Subject: [hunchentoot-devel] hunchentoot and virtual hosts.
In-Reply-To: <4783923D.1060603@cunningham.net> (Jeff Cunningham's message of
	"Tue, 08 Jan 2008 07:09:49 -0800")
References: <87ejcsfugi.fsf@perave.org> <4783923D.1060603@cunningham.net>
Message-ID: <u1w8sfigo.fsf@agharta.de>

On Tue, 08 Jan 2008 07:09:49 -0800, Jeff Cunningham <jeffrey at cunningham.net> wrote:

> I don't think you can have three virtual hosts listening to the same
> port 80.

Sure you can.  That's the whole point of virtual hosts.

  http://httpd.apache.org/docs/1.3/vhosts/name-based.html


From edi at agharta.de  Tue Jan  8 15:28:20 2008
From: edi at agharta.de (Edi Weitz)
Date: Tue, 08 Jan 2008 16:28:20 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>
	(Andrea Chiumenti's message of "Tue, 8 Jan 2008 10:12:50 +0100")
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<20080104195257.UUAD11174.fed1rmmtao105.cox.net@fed1rmimpo01.cox.net>
	<4d3bc9370801041311pba46f32he706bc357c78cf61@mail.gmail.com>
	<87r6gxgttk.fsf_-_@ttmail.com>
	<4d3bc9370801041354k7740b0d1g4405114eeac9c0f4@mail.gmail.com>
	<87myrlgr9y.fsf_-_@ttmail.com>
	<4d3bc9370801041501l468865efo8038d6e515862046@mail.gmail.com>
	<4d3bc9370801050231y52391034i1e31a75634f5991c@mail.gmail.com>
	<utzlqmef6.fsf@agharta.de>
	<4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>
	<4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>
Message-ID: <uwsqke3qj.fsf@agharta.de>

On Tue, 8 Jan 2008 10:12:50 +0100, "Andrea Chiumenti" <kiuma72 at gmail.com> wrote:

> are you interested in these modifications ?

Have you checked if it still works if you turn cookies off in your
browser?  Also, from a quick glance at the code I gather that the
default request realm is NIL.  Is that right?  Does that work?


From jeffrey at cunningham.net  Tue Jan  8 15:47:00 2008
From: jeffrey at cunningham.net (Jeff Cunningham)
Date: Tue, 08 Jan 2008 07:47:00 -0800
Subject: [hunchentoot-devel] hunchentoot and virtual hosts.
In-Reply-To: <u1w8sfigo.fsf@agharta.de>
References: <87ejcsfugi.fsf@perave.org> <4783923D.1060603@cunningham.net>
	<u1w8sfigo.fsf@agharta.de>
Message-ID: <47839AF4.4050001@cunningham.net>

Edi Weitz wrote:
> On Tue, 08 Jan 2008 07:09:49 -0800, Jeff Cunningham <jeffrey at cunningham.net> wrote:
>
>   
>> I don't think you can have three virtual hosts listening to the same
>> port 80.
>>     
>
> Sure you can.  That's the whole point of virtual hosts.
>
>   http://httpd.apache.org/docs/1.3/vhosts/name-based.html
> _______________________________________________
>
>   
Thanks for pointing that out.



From nlamirault at gmail.com  Tue Jan  8 16:21:13 2008
From: nlamirault at gmail.com (Nicolas Lamirault)
Date: Tue, 08 Jan 2008 17:21:13 +0100
Subject: [hunchentoot-devel] hunchentoot and virtual hosts.
In-Reply-To: <u63y4fiku.fsf@agharta.de>  (Edi Weitz's message of  "Tue\, 08 Jan
	2008 16\:22\:25 +0100")
References: <87ejcsfugi.fsf@perave.org> <u63y4fiku.fsf@agharta.de>
Message-ID: <87zlvge1ae.fsf@perave.org>

Edi Weitz <edi at agharta.de> writes:

> On Tue, 08 Jan 2008 12:05:49 +0100, Nicolas Lamirault <nlamirault at gmail.com> wrote:
>
>> <VirtualHost *:80>
>> 	ServerName dev.myfoo.org
>> 	LispServer 127.0.0.1 8888 "DevFoo"
>> 	SetHandler lisp-handler
>> </VirtualHost>
>>
>> <VirtualHost *:80>
>> 	ServerName test.myfoo.org
>> 	 LispServer 127.0.0.1 8989 "TestFoo"
>> 	 SetHandler lisp-handler
>> </VirtualHost>
>>
>> <VirtualHost *:80>
>> 	ServerName myfoo.org
>> 	LispServer 127.0.0.1 9090 "ProdFoo"
>> 	SetHandler lisp-handler
>> </VirtualHost>
>>
>> <VirtualHost _default_:80>
>> 	DocumentRoot /var/www/
>> </VirtualHost>
>>
>> i start the PROD web site with :
>>
>> hunchentoot:start-server :port 9090 :mod-lisp-p t
>>
>> i try http://www.myfoo.org, but i've got not response.
>> anyone understand where is my mistake on this configuration ?
>
> www.myfoo.org is not one of the server names mentioned in your
> configuration, you only have myfoo.org.


exact 
i modify the Apache configuration file :

<VirtualHost *:80>
 	ServerName www.myfoo.org
 	LispServer 127.0.0.1 9090 "ProdFoo"
 	SetHandler lisp-handler
 </VirtualHost>

but if i try www.myfoo.org i've got an error 500

in the apache access log file i've got only :

194.51.71.190 -  - [08/Jan/2008:17:17:02  +0100] "GET /  HTTP/1.1" 500
608  "-"  "Mozilla/5.0  (X11;   U;  Linux  i686;  en-US;  rv:1.8.1.11)
Gecko/20071204 Ubuntu/7.10 (gutsy) Firefox/2.0.0.11"

nothing in the error file ...




-- 
Nicolas Lamirault


From kiuma72 at gmail.com  Tue Jan  8 17:06:57 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Tue, 8 Jan 2008 18:06:57 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <uwsqke3qj.fsf@agharta.de>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<87r6gxgttk.fsf_-_@ttmail.com>
	<4d3bc9370801041354k7740b0d1g4405114eeac9c0f4@mail.gmail.com>
	<87myrlgr9y.fsf_-_@ttmail.com>
	<4d3bc9370801041501l468865efo8038d6e515862046@mail.gmail.com>
	<4d3bc9370801050231y52391034i1e31a75634f5991c@mail.gmail.com>
	<utzlqmef6.fsf@agharta.de>
	<4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>
	<4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>
	<uwsqke3qj.fsf@agharta.de>
Message-ID: <4d3bc9370801080906h60a4b5eajf32d0cd4ae139a22@mail.gmail.com>

should be,
give me one or two days, till I'll prepare a fully working example of
cl-webobjects (hunchentoot based application container),that mekes use of
realms.

On Jan 8, 2008 4:28 PM, Edi Weitz <edi at agharta.de> wrote:

> On Tue, 8 Jan 2008 10:12:50 +0100, "Andrea Chiumenti" <kiuma72 at gmail.com>
> wrote:
>
> > are you interested in these modifications ?
>
> Have you checked if it still works if you turn cookies off in your
> browser?  Also, from a quick glance at the code I gather that the
> default request realm is NIL.  Is that right?  Does that work?
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080108/e5bfe063/attachment.html>

From edi at agharta.de  Tue Jan  8 19:59:33 2008
From: edi at agharta.de (Edi Weitz)
Date: Tue, 08 Jan 2008 20:59:33 +0100
Subject: [hunchentoot-devel] hunchentoot and virtual hosts.
In-Reply-To: <87zlvge1ae.fsf@perave.org> (Nicolas Lamirault's message of
	"Tue, 08 Jan 2008 17:21:13 +0100")
References: <87ejcsfugi.fsf@perave.org> <u63y4fiku.fsf@agharta.de>
	<87zlvge1ae.fsf@perave.org>
Message-ID: <u1w8sdr6i.fsf@agharta.de>

On Tue, 08 Jan 2008 17:21:13 +0100, Nicolas Lamirault <nlamirault at gmail.com> wrote:

> i modify the Apache configuration file :
>
> <VirtualHost *:80>
>  	ServerName www.myfoo.org
>  	LispServer 127.0.0.1 9090 "ProdFoo"
>  	SetHandler lisp-handler
>  </VirtualHost>
>
> but if i try www.myfoo.org i've got an error 500

A 500 error is usually a sign that mod_lisp couldn't connect to the
Lisp process.  Did you try a full restart of Apache (shut down, then
start up again)?  Sometimes mod_lisp leaves "old" sockets open if you
only do a "graceful" restart.

Is your Lisp process really listening on 9090?  Have you confirmed
that your web application works correctly if you connect to it
directly, i.e. if you start it without :MOD-LISP-P T?

I think the docs somewhere say that working with mod_lisp is more
inconvenient than working without it.  One of the reasons is that you
might have to restart Apache pretty often.  Another one is that
debugging is harder.  I would recommend to develop your app
"stand-alone" and only if it works switch it to mod_lisp.

Edi.


From boldyrev+nospam at cgitftp.uiggm.nsc.ru  Wed Jan  9 05:42:06 2008
From: boldyrev+nospam at cgitftp.uiggm.nsc.ru (Ivan Boldyrev)
Date: Wed, 09 Jan 2008 11:42:06 +0600
Subject: [hunchentoot-devel] Hunchentoot performance
References: <dda3b98e0712210758w4d65d6b8y29328666d9c45c32@mail.gmail.com>
	<s0ca45-938.ln1@ibhome.cgitftp.uiggm.nsc.ru>
	<u4pe1xf0h.fsf@agharta.de>
	<i2rm45-joq.ln1@ibhome.cgitftp.uiggm.nsc.ru>
	<utzlzywex.fsf@agharta.de>
Message-ID: <ee3e55-7jk.ln1@ibhome.cgitftp.uiggm.nsc.ru>

On 10070 day of my life Edi Weitz wrote:
>> I see something strange: no difference for unibyte windows-1251, but
>> improvement for utf-8.
>
> Hmm, should've been the other way around.  Specifically, I would
> expect improvements for ASCII and LATIN-1 which is what counts for
> Chunga's internals.

utf-8 output is larger, so difference is more visible, perhaps :)

OK, this is a timing results of simple static benchmark (outputting
static Cyrillic string):

                | 0.13.1 | 0.14.1 | 0.14.1+ib
UTF-8  (13553b) | 43.93  | 45.48  | 56.22
KOI8-R (10725b) | 39.52  | 43.48  | 50.89

Result is number of pages per second, 13553b is size of output in
bytes.  UTF-8 is faster because conversion function is faster.
Number of pages is quite low because my computer is quite old :)

0.14.1+ib is a flexi-stream version with my "patch" (not ready for
publication).  Actually this patch is loadable file that redefines some
classes, methods and functions in flexi-streams and hunchentoot.
BTW, it addresses vseguip's WRITE-HEADER-LINE differently, on
flexi-streams level.

Currently slowest function on this benchmark is
FLEXI-STREAMS::CHAR-TO-OCTETS (mostly because it is called so many
times; but there is a room for improvement).  On my application slowest
function is MAKE-FLEXI-STREAM, because it calls some Hunchentoot's
functions that use it.  It can be improved too, but, I'm afraid, only
with flexi-streams' rewriting.

-- 
Ivan Boldyrev

                                          Many are called, few volunteer.



From nlamirault at gmail.com  Wed Jan  9 10:19:58 2008
From: nlamirault at gmail.com (Nicolas Lamirault)
Date: Wed, 09 Jan 2008 11:19:58 +0100
Subject: [hunchentoot-devel] hunchentoot and virtual hosts.
In-Reply-To: <87lk6ze20n.fsf@perave.org> (Nicolas Lamirault's message of "Wed\,
	09 Jan 2008 11\:17\:44 +0100")
References: <87ejcsfugi.fsf@perave.org>       <u63y4fiku.fsf@agharta.de>
	<87zlvge1ae.fsf@perave.org> <u1w8sdr6i.fsf@agharta.de>
	<87lk6ze20n.fsf@perave.org>
Message-ID: <87ejcre1wx.fsf@perave.org>


> Edi Weitz <edi at agharta.de> writes:
>
>> On Tue, 08 Jan 2008 17:21:13 +0100, Nicolas Lamirault <nlamirault at gmail.com> wrote:
>>
>>> i modify the Apache configuration file :
>>>
>>> <VirtualHost *:80>
>>>  	ServerName www.myfoo.org
>>>  	LispServer 127.0.0.1 9090 "ProdFoo"
>>>  	SetHandler lisp-handler
>>>  </VirtualHost>
>>>
>>> but if i try www.myfoo.org i've got an error 500
>>
>> A 500 error is usually a sign that mod_lisp couldn't connect to the
>> Lisp process.  Did you try a full restart of Apache (shut down, then
>> start up again)?  Sometimes mod_lisp leaves "old" sockets open if you
>> only do a "graceful" restart.

ok

>> Is your Lisp process really listening on 9090?  Have you confirmed
>> that your web application works correctly if you connect to it
>> directly, i.e. if you start it without :MOD-LISP-P T?

yes.
My site works  fine with Hunchentoot without modlisp.  I would like to
make  differents virtuals instead  of differents  port (8888  for dev,
8989 for test and 9090 for prod).

>> I think the docs somewhere say that working with mod_lisp is more
>> inconvenient than working without it.  One of the reasons is that you
>> might have to restart Apache pretty often.  Another one is that
>> debugging is harder.  I would recommend to develop your app
>> "stand-alone" and only if it works switch it to mod_lisp.

i did that :)
i'm just trying to switch to hunchentoot+mod_lisp

i think the problems comes from Apache configuration.
I start my web site in 'prod environment.

- without mod_lisp it works fine :

http://localhost:9090/index -> Http code 200, and home page correct

- with mod_lisp doesn't work
The Apache configuration :

<VirtualHost *:80>
        ServerName dev.foo.org
        ServerAdmin webmaster-dev at foo.org
        ErrorLog /var/log/apache/dev.foo.org-error_log
        CustomLog /var/log/apache/dev.foo.org-access_log common
        LispServer 127.0.0.1 8888 "DevOvorost"
        SetHandler lisp-handler
</VirtualHost>

<VirtualHost *:80>
        ServerName test.foo.org
        ServerAdmin webmaster-test at foo.org
        ErrorLog /var/log/apache/test.foo.org-error_log
        CustomLog /var/log/apache/test.foo.org-access_log common
        LispServer 127.0.0.1 8989 "TestOvorost"
        SetHandler lisp-handler
</VirtualHost>

<VirtualHost *:80>
        ServerName www.foo.org
        ServerAdmin webmaster at foo.org
        ErrorLog /var/log/apache/foo.org-error_log
        CustomLog /var/log/apache/foo.org-access_log common
        LispServer 127.0.0.1 9090 "ProdOvorost"
        SetHandler lisp-handler
</VirtualHost>

http://www.foo.org/index 
http://localhost/index
-> http error 500




-- 
Nicolas Lamirault


From kiuma72 at gmail.com  Wed Jan  9 10:27:21 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Wed, 9 Jan 2008 11:27:21 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801080906h60a4b5eajf32d0cd4ae139a22@mail.gmail.com>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<4d3bc9370801041354k7740b0d1g4405114eeac9c0f4@mail.gmail.com>
	<87myrlgr9y.fsf_-_@ttmail.com>
	<4d3bc9370801041501l468865efo8038d6e515862046@mail.gmail.com>
	<4d3bc9370801050231y52391034i1e31a75634f5991c@mail.gmail.com>
	<utzlqmef6.fsf@agharta.de>
	<4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>
	<4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>
	<uwsqke3qj.fsf@agharta.de>
	<4d3bc9370801080906h60a4b5eajf32d0cd4ae139a22@mail.gmail.com>
Message-ID: <4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>

Hello Edi,
here it is a working example.

unpack the attached file and link the two asd files to your system.

call
(asdf:oos 'asdf:load-op :cl-webobjects-test)

(in-package :cl-webobjects-test)

and then
(startme)

in your browser
go to http://localhost:4242/clwo/test/index.html

To verify the realm implementation click on the two realm tests.

I've no idea on how to do with cookies disabled, because I'm relatively new
to Hunchentoot

What I've modified for hunchentoot is locates in file src/hunchentoot-
overrides.lisp

Let me know, ciao

kiuma




On Jan 8, 2008 6:06 PM, Andrea Chiumenti <kiuma72 at gmail.com> wrote:

> should be,
> give me one or two days, till I'll prepare a fully working example of
> cl-webobjects (hunchentoot based application container),that mekes use of
> realms.
>
>
> On Jan 8, 2008 4:28 PM, Edi Weitz < edi at agharta.de> wrote:
>
> > On Tue, 8 Jan 2008 10:12:50 +0100, "Andrea Chiumenti" <
> > kiuma72 at gmail.com> wrote:
> >
> > > are you interested in these modifications ?
> >
> > Have you checked if it still works if you turn cookies off in your
> > browser?  Also, from a quick glance at the code I gather that the
> > default request realm is NIL.  Is that right?  Does that work?
> > _______________________________________________
> > tbnl-devel site list
> > tbnl-devel at common-lisp.net
> > http://common-lisp.net/mailman/listinfo/tbnl-devel
> >
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080109/cddb8d3f/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: cl-webobjects.tar.bz2
Type: application/x-bzip2
Size: 174485 bytes
Desc: not available
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080109/cddb8d3f/attachment.bin>

From marc.battyani at fractalconcept.com  Wed Jan  9 10:36:31 2008
From: marc.battyani at fractalconcept.com (Marc Battyani)
Date: Wed, 09 Jan 2008 11:36:31 +0100
Subject: [hunchentoot-devel] hunchentoot and virtual hosts.
In-Reply-To: <87ejcre1wx.fsf@perave.org>
References: <87ejcsfugi.fsf@perave.org>
	<u63y4fiku.fsf@agharta.de>	<87zlvge1ae.fsf@perave.org>
	<u1w8sdr6i.fsf@agharta.de>	<87lk6ze20n.fsf@perave.org>
	<87ejcre1wx.fsf@perave.org>
Message-ID: <4784A3AF.3040703@fractalconcept.com>



Nicolas Lamirault wrote:
> i did that :)
> i'm just trying to switch to hunchentoot+mod_lisp
>
> i think the problems comes from Apache configuration.
> I start my web site in 'prod environment.
>
> - without mod_lisp it works fine :
>
> http://localhost:9090/index -> Http code 200, and home page correct
>
> - with mod_lisp doesn't work
> The Apache configuration :
>
> <VirtualHost *:80>
>         ServerName dev.foo.org
>         ServerAdmin webmaster-dev at foo.org
>         ErrorLog /var/log/apache/dev.foo.org-error_log
>         CustomLog /var/log/apache/dev.foo.org-access_log common
>         LispServer 127.0.0.1 8888 "DevOvorost"
>         SetHandler lisp-handler
> </VirtualHost>
>
> <VirtualHost *:80>
>         ServerName test.foo.org
>         ServerAdmin webmaster-test at foo.org
>         ErrorLog /var/log/apache/test.foo.org-error_log
>         CustomLog /var/log/apache/test.foo.org-access_log common
>         LispServer 127.0.0.1 8989 "TestOvorost"
>         SetHandler lisp-handler
> </VirtualHost>
>
> <VirtualHost *:80>
>         ServerName www.foo.org
>         ServerAdmin webmaster at foo.org
>         ErrorLog /var/log/apache/foo.org-error_log
>         CustomLog /var/log/apache/foo.org-access_log common
>         LispServer 127.0.0.1 9090 "ProdOvorost"
>         SetHandler lisp-handler
> </VirtualHost>
>
> http://www.foo.org/index 
> http://localhost/index
> -> http error 500
>   
Have you enabled the virtual hosts in Apache?

NameVirtualHost *

Also don't you have <location> directives?

Here is what I use:

<VirtualHost *>
    ServerAdmin webmaster at host.some_domain.com
    DocumentRoot "/var/www/fc"
    ServerName otfr3.fractalconcept.com
    ErrorLog logs/otfr3.error.log

Redirect /index.html http://otfr3.fractalconcept.com/asp/index.html
LispServer     192.168.2.200 3041 "otfr3"

<Location /asp>
    SetHandler lisp-handler
</Location>

</VirtualHost>

Marc




From yazicivo at ttmail.com  Thu Jan 10 22:46:40 2008
From: yazicivo at ttmail.com (Volkan YAZICI)
Date: Fri, 11 Jan 2008 00:46:40 +0200
Subject: [hunchentoot-devel] Hunchentoot TODO Lisp (Was: Hunchentoot
	performance)
In-Reply-To: <uwsqwvx3p.fsf@agharta.de> (Edi Weitz's message of "Sun\,
	30 Dec 2007 19\:47\:06 +0100")
References: <dda3b98e0712210758w4d65d6b8y29328666d9c45c32@mail.gmail.com>
	<s0ca45-938.ln1@ibhome.cgitftp.uiggm.nsc.ru>
	<u4pe1xf0h.fsf@agharta.de>
	<dda3b98e0712300538m64f02ceci21dcff538a7c97c8@mail.gmail.com>
	<u63ygxfi1.fsf@agharta.de>
	<dda3b98e0712300955w227254f9w4975033f96d84fb3@mail.gmail.com>
	<uwsqwvx3p.fsf@agharta.de>
Message-ID: <87tzllnvsf.fsf_-_@ttmail.com>

Hi,

Edi Weitz <edi at agharta.de> writes:
> Anyway - not a big priority for me.

Maybe you'd want to distribute a TODO (with a ROADMAP?) with
Hunchentoot. I think many people would be happy to help you to get
those `priorities' done.


Regards.


From edi at agharta.de  Thu Jan 10 22:56:06 2008
From: edi at agharta.de (Edi Weitz)
Date: Thu, 10 Jan 2008 23:56:06 +0100
Subject: [hunchentoot-devel] Hunchentoot TODO Lisp
In-Reply-To: <87tzllnvsf.fsf_-_@ttmail.com> (Volkan YAZICI's message of
	"Fri, 11 Jan 2008 00:46:40 +0200")
References: <dda3b98e0712210758w4d65d6b8y29328666d9c45c32@mail.gmail.com>
	<s0ca45-938.ln1@ibhome.cgitftp.uiggm.nsc.ru>
	<u4pe1xf0h.fsf@agharta.de>
	<dda3b98e0712300538m64f02ceci21dcff538a7c97c8@mail.gmail.com>
	<u63ygxfi1.fsf@agharta.de>
	<dda3b98e0712300955w227254f9w4975033f96d84fb3@mail.gmail.com>
	<uwsqwvx3p.fsf@agharta.de> <87tzllnvsf.fsf_-_@ttmail.com>
Message-ID: <u1w8pffy1.fsf@agharta.de>

On Fri, 11 Jan 2008 00:46:40 +0200, Volkan YAZICI <yazicivo at ttmail.com> wrote:

> Maybe you'd want to distribute a TODO (with a ROADMAP?) with
> Hunchentoot. I think many people would be happy to help you to get
> those `priorities' done.

Yeah, good idea.

Until I've done that, you can scan the mailing list archives,
though... :)


From ch-tbnl at bobobeach.com  Fri Jan 11 00:02:32 2008
From: ch-tbnl at bobobeach.com (Cyrus Harmon)
Date: Thu, 10 Jan 2008 16:02:32 -0800
Subject: [hunchentoot-devel] Hunchentoot TODO Lisp (Was: Hunchentoot
	performance)
In-Reply-To: <87tzllnvsf.fsf_-_@ttmail.com>
References: <dda3b98e0712210758w4d65d6b8y29328666d9c45c32@mail.gmail.com>
	<s0ca45-938.ln1@ibhome.cgitftp.uiggm.nsc.ru>
	<u4pe1xf0h.fsf@agharta.de>
	<dda3b98e0712300538m64f02ceci21dcff538a7c97c8@mail.gmail.com>
	<u63ygxfi1.fsf@agharta.de>
	<dda3b98e0712300955w227254f9w4975033f96d84fb3@mail.gmail.com>
	<uwsqwvx3p.fsf@agharta.de> <87tzllnvsf.fsf_-_@ttmail.com>
Message-ID: <25F546C4-208F-4486-A55A-A936838C7820@bobobeach.com>

Agreed. And can you put DAV level 2 on the priority list? :)

Thanks,

Cyrus

On Jan 10, 2008, at 2:46 PM, Volkan YAZICI wrote:

> Hi,
>
> Edi Weitz <edi at agharta.de> writes:
>> Anyway - not a big priority for me.
>
> Maybe you'd want to distribute a TODO (with a ROADMAP?) with
> Hunchentoot. I think many people would be happy to help you to get
> those `priorities' done.
>
>
> Regards.
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel



From edi at agharta.de  Fri Jan 11 00:33:49 2008
From: edi at agharta.de (Edi Weitz)
Date: Fri, 11 Jan 2008 01:33:49 +0100
Subject: [hunchentoot-devel] Hunchentoot TODO Lisp
In-Reply-To: <25F546C4-208F-4486-A55A-A936838C7820@bobobeach.com> (Cyrus
	Harmon's message of "Thu, 10 Jan 2008 16:02:32 -0800")
References: <dda3b98e0712210758w4d65d6b8y29328666d9c45c32@mail.gmail.com>
	<s0ca45-938.ln1@ibhome.cgitftp.uiggm.nsc.ru>
	<u4pe1xf0h.fsf@agharta.de>
	<dda3b98e0712300538m64f02ceci21dcff538a7c97c8@mail.gmail.com>
	<u63ygxfi1.fsf@agharta.de>
	<dda3b98e0712300955w227254f9w4975033f96d84fb3@mail.gmail.com>
	<uwsqwvx3p.fsf@agharta.de> <87tzllnvsf.fsf_-_@ttmail.com>
	<25F546C4-208F-4486-A55A-A936838C7820@bobobeach.com>
Message-ID: <uwsqhciaa.fsf@agharta.de>

On Thu, 10 Jan 2008 16:02:32 -0800, Cyrus Harmon <ch-tbnl at bobobeach.com> wrote:

> And can you put DAV level 2 on the priority list? :)

Oh, I thought Andreas and you were finished with it by now... :)


From nlamirault at gmail.com  Fri Jan 11 16:53:01 2008
From: nlamirault at gmail.com (Nicolas Lamirault)
Date: Fri, 11 Jan 2008 17:53:01 +0100
Subject: [hunchentoot-devel] hunchentoot and virtual hosts.
In-Reply-To: <4784A3AF.3040703@fractalconcept.com> (Marc Battyani's message of
	"Wed\, 09 Jan 2008 11\:36\:31 +0100")
References: <87ejcsfugi.fsf@perave.org>       <u63y4fiku.fsf@agharta.de>
	<87zlvge1ae.fsf@perave.org> <u1w8sdr6i.fsf@agharta.de>
	<87lk6ze20n.fsf@perave.org> <87ejcre1wx.fsf@perave.org>
	<4784A3AF.3040703@fractalconcept.com>
Message-ID: <873at4cniq.fsf@perave.org>



thanks to all
my web site works fine now with hunchentoot and mod_lisp.



Marc Battyani <marc.battyani at fractalconcept.com> writes:

> Nicolas Lamirault wrote:
>> i did that :)
>> i'm just trying to switch to hunchentoot+mod_lisp
>>
>> i think the problems comes from Apache configuration.
>> I start my web site in 'prod environment.
>>
>> - without mod_lisp it works fine :
>>
>> http://localhost:9090/index -> Http code 200, and home page correct
>>
>> - with mod_lisp doesn't work
>> The Apache configuration :
>>
>> <VirtualHost *:80>
>>         ServerName dev.foo.org
>>         ServerAdmin webmaster-dev at foo.org
>>         ErrorLog /var/log/apache/dev.foo.org-error_log
>>         CustomLog /var/log/apache/dev.foo.org-access_log common
>>         LispServer 127.0.0.1 8888 "DevOvorost"
>>         SetHandler lisp-handler
>> </VirtualHost>
>>
>> <VirtualHost *:80>
>>         ServerName test.foo.org
>>         ServerAdmin webmaster-test at foo.org
>>         ErrorLog /var/log/apache/test.foo.org-error_log
>>         CustomLog /var/log/apache/test.foo.org-access_log common
>>         LispServer 127.0.0.1 8989 "TestOvorost"
>>         SetHandler lisp-handler
>> </VirtualHost>
>>
>> <VirtualHost *:80>
>>         ServerName www.foo.org
>>         ServerAdmin webmaster at foo.org
>>         ErrorLog /var/log/apache/foo.org-error_log
>>         CustomLog /var/log/apache/foo.org-access_log common
>>         LispServer 127.0.0.1 9090 "ProdOvorost"
>>         SetHandler lisp-handler
>> </VirtualHost>
>>
>> http://www.foo.org/index 
>> http://localhost/index
>> -> http error 500
>>   
> Have you enabled the virtual hosts in Apache?
>
> NameVirtualHost *
>
> Also don't you have <location> directives?
>
> Here is what I use:
>
> <VirtualHost *>
>     ServerAdmin webmaster at host.some_domain.com
>     DocumentRoot "/var/www/fc"
>     ServerName otfr3.fractalconcept.com
>     ErrorLog logs/otfr3.error.log
>
> Redirect /index.html http://otfr3.fractalconcept.com/asp/index.html
> LispServer     192.168.2.200 3041 "otfr3"
>
> <Location /asp>
>     SetHandler lisp-handler
> </Location>
>
> </VirtualHost>
>
> Marc
>
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>

-- 
Nicolas Lamirault


From edi at agharta.de  Mon Jan 14 07:52:01 2008
From: edi at agharta.de (Edi Weitz)
Date: Mon, 14 Jan 2008 08:52:01 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>
	(Andrea Chiumenti's message of "Wed, 9 Jan 2008 11:27:21 +0100")
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<4d3bc9370801041354k7740b0d1g4405114eeac9c0f4@mail.gmail.com>
	<87myrlgr9y.fsf_-_@ttmail.com>
	<4d3bc9370801041501l468865efo8038d6e515862046@mail.gmail.com>
	<4d3bc9370801050231y52391034i1e31a75634f5991c@mail.gmail.com>
	<utzlqmef6.fsf@agharta.de>
	<4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>
	<4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>
	<uwsqke3qj.fsf@agharta.de>
	<4d3bc9370801080906h60a4b5eajf32d0cd4ae139a22@mail.gmail.com>
	<4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>
Message-ID: <uk5mcc09q.fsf@agharta.de>

On Wed, 9 Jan 2008 11:27:21 +0100, "Andrea Chiumenti" <kiuma72 at gmail.com> wrote:

> I've no idea on how to do with cookies disabled, because I'm
> relatively new to Hunchentoot

Well, as I already said, I currently don't have the time to do this,
and I don't think it's a very important feature.  So, you'll either
have to send a complete and fully-tested patch that's
backwards-compatible or you'll have to wait until I get around to do
it myself.

Cheers,
Edi.


From kiuma72 at gmail.com  Mon Jan 14 12:24:26 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Mon, 14 Jan 2008 13:24:26 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <uk5mcc09q.fsf@agharta.de>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<4d3bc9370801041501l468865efo8038d6e515862046@mail.gmail.com>
	<4d3bc9370801050231y52391034i1e31a75634f5991c@mail.gmail.com>
	<utzlqmef6.fsf@agharta.de>
	<4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>
	<4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>
	<uwsqke3qj.fsf@agharta.de>
	<4d3bc9370801080906h60a4b5eajf32d0cd4ae139a22@mail.gmail.com>
	<4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>
	<uk5mcc09q.fsf@agharta.de>
Message-ID: <4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>

Edi,
As a Murphi Law confirmation, session handling with session encoded into
request doesn't work :/, I'm working on it.
Modifications are of course backward compatible!

The importance on separate sessions depends only on how a person want to use
hunchentoot, it has sense only if someone want to use hunchentoot as an
application server so having sessions bound
do 'deployed' applications.

I'll make the realm patch work very soon,
cu,

kiuma

On Jan 14, 2008 8:52 AM, Edi Weitz <edi at agharta.de> wrote:

> On Wed, 9 Jan 2008 11:27:21 +0100, "Andrea Chiumenti" <kiuma72 at gmail.com>
> wrote:
>
> > I've no idea on how to do with cookies disabled, because I'm
> > relatively new to Hunchentoot
>
> Well, as I already said, I currently don't have the time to do this,
> and I don't think it's a very important feature.  So, you'll either
> have to send a complete and fully-tested patch that's
> backwards-compatible or you'll have to wait until I get around to do
> it myself.
>
> Cheers,
> Edi.
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080114/3b51983a/attachment.html>

From kiuma72 at gmail.com  Mon Jan 14 14:33:28 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Mon, 14 Jan 2008 15:33:28 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<4d3bc9370801050231y52391034i1e31a75634f5991c@mail.gmail.com>
	<utzlqmef6.fsf@agharta.de>
	<4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>
	<4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>
	<uwsqke3qj.fsf@agharta.de>
	<4d3bc9370801080906h60a4b5eajf32d0cd4ae139a22@mail.gmail.com>
	<4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>
	<uk5mcc09q.fsf@agharta.de>
	<4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>
Message-ID: <4d3bc9370801140633l934d343j18b39e805678bb71@mail.gmail.com>

Edi,
I've been able to make it work with url-rewriting, but I don't know how
rewriting should behave when referencing other realms.
options are
1) append the sessionid for realm1 even to realm2 related resources (not
very correct).
2) append nothing if resources belong to realm 2. (correct and easy), but
when navigate from realm1 to realm2 you'll loose the session if cookies are
disabled.
3) handle a sort of parent session that holds all sessions in realms, and
then handle the url rewriting... (this requires more work)

kiuma

On Jan 14, 2008 1:24 PM, Andrea Chiumenti <kiuma72 at gmail.com> wrote:

> Edi,
> As a Murphi Law confirmation, session handling with session encoded into
> request doesn't work :/, I'm working on it.
> Modifications are of course backward compatible!
>
> The importance on separate sessions depends only on how a person want to
> use hunchentoot, it has sense only if someone want to use hunchentoot as an
> application server so having sessions bound
> do 'deployed' applications.
>
> I'll make the realm patch work very soon,
> cu,
>
> kiuma
>
>
> On Jan 14, 2008 8:52 AM, Edi Weitz <edi at agharta.de > wrote:
>
> > On Wed, 9 Jan 2008 11:27:21 +0100, "Andrea Chiumenti" <
> > kiuma72 at gmail.com> wrote:
> >
> > > I've no idea on how to do with cookies disabled, because I'm
> > > relatively new to Hunchentoot
> >
> > Well, as I already said, I currently don't have the time to do this,
> > and I don't think it's a very important feature.  So, you'll either
> > have to send a complete and fully-tested patch that's
> > backwards-compatible or you'll have to wait until I get around to do
> > it myself.
> >
> > Cheers,
> > Edi.
> > _______________________________________________
> > tbnl-devel site list
> > tbnl-devel at common-lisp.net
> > http://common-lisp.net/mailman/listinfo/tbnl-devel
> >
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080114/2b550bdd/attachment.html>

From kiuma72 at gmail.com  Mon Jan 14 15:10:19 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Mon, 14 Jan 2008 16:10:19 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801140633l934d343j18b39e805678bb71@mail.gmail.com>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<utzlqmef6.fsf@agharta.de>
	<4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>
	<4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>
	<uwsqke3qj.fsf@agharta.de>
	<4d3bc9370801080906h60a4b5eajf32d0cd4ae139a22@mail.gmail.com>
	<4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>
	<uk5mcc09q.fsf@agharta.de>
	<4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>
	<4d3bc9370801140633l934d343j18b39e805678bb71@mail.gmail.com>
Message-ID: <4d3bc9370801140710y4cc8b33aw43b9587d22391a0d@mail.gmail.com>

Option 4) if no session cookie handling, then realm is ignored (maybe this
is the most correct)

On Jan 14, 2008 3:33 PM, Andrea Chiumenti <kiuma72 at gmail.com> wrote:

> Edi,
> I've been able to make it work with url-rewriting, but I don't know how
> rewriting should behave when referencing other realms.
> options are
> 1) append the sessionid for realm1 even to realm2 related resources (not
> very correct).
> 2) append nothing if resources belong to realm 2. (correct and easy), but
> when navigate from realm1 to realm2 you'll loose the session if cookies are
> disabled.
> 3) handle a sort of parent session that holds all sessions in realms, and
> then handle the url rewriting... (this requires more work)
>
> kiuma
>
>
> On Jan 14, 2008 1:24 PM, Andrea Chiumenti <kiuma72 at gmail.com> wrote:
>
> > Edi,
> > As a Murphi Law confirmation, session handling with session encoded into
> > request doesn't work :/, I'm working on it.
> > Modifications are of course backward compatible!
> >
> > The importance on separate sessions depends only on how a person want to
> > use hunchentoot, it has sense only if someone want to use hunchentoot as an
> > application server so having sessions bound
> > do 'deployed' applications.
> >
> > I'll make the realm patch work very soon,
> > cu,
> >
> > kiuma
> >
> >
> > On Jan 14, 2008 8:52 AM, Edi Weitz < edi at agharta.de > wrote:
> >
> > > On Wed, 9 Jan 2008 11:27:21 +0100, "Andrea Chiumenti" <
> > > kiuma72 at gmail.com> wrote:
> > >
> > > > I've no idea on how to do with cookies disabled, because I'm
> > > > relatively new to Hunchentoot
> > >
> > > Well, as I already said, I currently don't have the time to do this,
> > > and I don't think it's a very important feature.  So, you'll either
> > > have to send a complete and fully-tested patch that's
> > > backwards-compatible or you'll have to wait until I get around to do
> > > it myself.
> > >
> > > Cheers,
> > > Edi.
> > > _______________________________________________
> > > tbnl-devel site list
> > > tbnl-devel at common-lisp.net
> > > http://common-lisp.net/mailman/listinfo/tbnl-devel
> > >
> >
> >
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080114/06681a8e/attachment.html>

From kiuma72 at gmail.com  Wed Jan 16 09:18:23 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Wed, 16 Jan 2008 10:18:23 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801140710y4cc8b33aw43b9587d22391a0d@mail.gmail.com>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>
	<4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>
	<uwsqke3qj.fsf@agharta.de>
	<4d3bc9370801080906h60a4b5eajf32d0cd4ae139a22@mail.gmail.com>
	<4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>
	<uk5mcc09q.fsf@agharta.de>
	<4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>
	<4d3bc9370801140633l934d343j18b39e805678bb71@mail.gmail.com>
	<4d3bc9370801140710y4cc8b33aw43b9587d22391a0d@mail.gmail.com>
Message-ID: <4d3bc9370801160118h2f3e7983gf724dfbbe52eb78@mail.gmail.com>

Hello, finally I've been able to make session sharing (the realm thing) to
work
both when cookies are enabled and when they are disabled with url-rewriting.

The behavior in url-rewriting is that, when switching from realm1 to realm2
the session is reset in realm2:
this means
(setf *session* nil) and (setf (session request) nil).

So this will make to create a new session for realm2 but it will maintain
the session for realm1.
Navigating inside the same realm maintains the session.

I need the realm behavior for my project (renamed to claw Common Lisp Action
Web) that hopefully will be soon delivered on common-lisp.net

The actual samples are built against claw, that uses the modified(patched)
version of hunchentoot v.0.15.0 .

I can add samples in hunchentoot test file too, and send the patched version
(is there a svn/cvs version around?), or if you prefer I can give the
huncentoot-overrides.lisp file that
contains modifications.

Please let me know, because I need these info to proceed with my project.

Have a nice day,
Andrea Chiumenti


On Jan 14, 2008 4:10 PM, Andrea Chiumenti <kiuma72 at gmail.com> wrote:

> Option 4) if no session cookie handling, then realm is ignored (maybe this
> is the most correct)
>
>
> On Jan 14, 2008 3:33 PM, Andrea Chiumenti <kiuma72 at gmail.com > wrote:
>
> > Edi,
> > I've been able to make it work with url-rewriting, but I don't know how
> > rewriting should behave when referencing other realms.
> > options are
> > 1) append the sessionid for realm1 even to realm2 related resources (not
> > very correct).
> > 2) append nothing if resources belong to realm 2. (correct and easy),
> > but when navigate from realm1 to realm2 you'll loose the session if cookies
> > are disabled.
> > 3) handle a sort of parent session that holds all sessions in realms,
> > and then handle the url rewriting... (this requires more work)
> >
> > kiuma
> >
> >
> > On Jan 14, 2008 1:24 PM, Andrea Chiumenti <kiuma72 at gmail.com> wrote:
> >
> > > Edi,
> > > As a Murphi Law confirmation, session handling with session encoded
> > > into request doesn't work :/, I'm working on it.
> > > Modifications are of course backward compatible!
> > >
> > > The importance on separate sessions depends only on how a person want
> > > to use hunchentoot, it has sense only if someone want to use hunchentoot as
> > > an application server so having sessions bound
> > > do 'deployed' applications.
> > >
> > > I'll make the realm patch work very soon,
> > > cu,
> > >
> > > kiuma
> > >
> > >
> > > On Jan 14, 2008 8:52 AM, Edi Weitz < edi at agharta.de > wrote:
> > >
> > > > On Wed, 9 Jan 2008 11:27:21 +0100, "Andrea Chiumenti" <
> > > > kiuma72 at gmail.com> wrote:
> > > >
> > > > > I've no idea on how to do with cookies disabled, because I'm
> > > > > relatively new to Hunchentoot
> > > >
> > > > Well, as I already said, I currently don't have the time to do this,
> > > >
> > > > and I don't think it's a very important feature.  So, you'll either
> > > > have to send a complete and fully-tested patch that's
> > > > backwards-compatible or you'll have to wait until I get around to do
> > > >
> > > > it myself.
> > > >
> > > > Cheers,
> > > > Edi.
> > > > _______________________________________________
> > > > tbnl-devel site list
> > > > tbnl-devel at common-lisp.net
> > > > http://common-lisp.net/mailman/listinfo/tbnl-devel
> > > >
> > >
> > >
> >
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080116/549a634c/attachment.html>

From leslie.polzer at gmx.net  Wed Jan 16 09:46:29 2008
From: leslie.polzer at gmx.net (Leslie P. Polzer)
Date: Wed, 16 Jan 2008 10:46:29 +0100 (CET)
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801160118h2f3e7983gf724dfbbe52eb78@mail.gmail.com>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>
	<4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>
	<uwsqke3qj.fsf@agharta.de>
	<4d3bc9370801080906h60a4b5eajf32d0cd4ae139a22@mail.gmail.com>
	<4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>
	<uk5mcc09q.fsf@agharta.de>
	<4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>
	<4d3bc9370801140633l934d343j18b39e805678bb71@mail.gmail.com>
	<4d3bc9370801140710y4cc8b33aw43b9587d22391a0d@mail.gmail.com>
	<4d3bc9370801160118h2f3e7983gf724dfbbe52eb78@mail.gmail.com>
Message-ID: <64067.88.73.240.209.1200476789.squirrel@mail.stardawn.org>


> Please let me know, because I need these info to proceed with my project.

Behold

  http://weitz.de/patches.html

lest Edi's wrath be upon ye.

  ;) Leslie



From edi at agharta.de  Wed Jan 16 17:20:12 2008
From: edi at agharta.de (Edi Weitz)
Date: Wed, 16 Jan 2008 18:20:12 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801160118h2f3e7983gf724dfbbe52eb78@mail.gmail.com>
	(Andrea Chiumenti's message of "Wed, 16 Jan 2008 10:18:23 +0100")
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<4d3bc9370801062243h429ac6b4j78cbd29fb629f61c@mail.gmail.com>
	<4d3bc9370801080112o373e322dxf9d97b9d4a7886fc@mail.gmail.com>
	<uwsqke3qj.fsf@agharta.de>
	<4d3bc9370801080906h60a4b5eajf32d0cd4ae139a22@mail.gmail.com>
	<4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>
	<uk5mcc09q.fsf@agharta.de>
	<4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>
	<4d3bc9370801140633l934d343j18b39e805678bb71@mail.gmail.com>
	<4d3bc9370801140710y4cc8b33aw43b9587d22391a0d@mail.gmail.com>
	<4d3bc9370801160118h2f3e7983gf724dfbbe52eb78@mail.gmail.com>
Message-ID: <u8x2p8z77.fsf@agharta.de>

On Wed, 16 Jan 2008 10:18:23 +0100, "Andrea Chiumenti" <kiuma72 at gmail.com> wrote:

> The behavior in url-rewriting is that, when switching from realm1 to
> realm2 the session is reset in realm2: this means (setf *session*
> nil) and (setf (session request) nil).
>
> So this will make to create a new session for realm2 but it will
> maintain the session for realm1.  Navigating inside the same realm
> maintains the session.

That means that switching realms without cookies will be different
from switching realms with cookies?  Hmm, not good.

> Please let me know, because I need these info to proceed with my
> project.

I'm not really convinced yet that this is really a useful addition for
Hunchentoot.  Also, don't having much time to think about this, are
you really sure this can't be done with the current session framework
without the need to patch Hunchentoot or to write your own session
code?

Anyway, if you need this for your own projects, don't wait for me, but
rather write code that doesn't depend on a patched Hunchentoot.  I'm
too busy right now to make any promises about updates or patches.

Edi.


From kiuma72 at gmail.com  Wed Jan 16 21:38:37 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Wed, 16 Jan 2008 22:38:37 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <u8x2p8z77.fsf@agharta.de>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<uwsqke3qj.fsf@agharta.de>
	<4d3bc9370801080906h60a4b5eajf32d0cd4ae139a22@mail.gmail.com>
	<4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>
	<uk5mcc09q.fsf@agharta.de>
	<4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>
	<4d3bc9370801140633l934d343j18b39e805678bb71@mail.gmail.com>
	<4d3bc9370801140710y4cc8b33aw43b9587d22391a0d@mail.gmail.com>
	<4d3bc9370801160118h2f3e7983gf724dfbbe52eb78@mail.gmail.com>
	<u8x2p8z77.fsf@agharta.de>
Message-ID: <4d3bc9370801161338o202bf7e2ha434d93e71bb9b3e@mail.gmail.com>

On Jan 16, 2008 6:20 PM, Edi Weitz <edi at agharta.de> wrote:

> On Wed, 16 Jan 2008 10:18:23 +0100, "Andrea Chiumenti" <kiuma72 at gmail.com>
> wrote:
>
> > The behavior in url-rewriting is that, when switching from realm1 to
> > realm2 the session is reset in realm2: this means (setf *session*
> > nil) and (setf (session request) nil).
> >
> > So this will make to create a new session for realm2 but it will
> > maintain the session for realm1.  Navigating inside the same realm
> > maintains the session.
>
> That means that switching realms without cookies will be different
> from switching realms with cookies?  Hmm, not good.

the only possibility is to rewrite/patch the url-rewriter

>
>
> > Please let me know, because I need these info to proceed with my
> > project.
>
> I'm not really convinced yet that this is really a useful addition for
> Hunchentoot.

Sorry, but are you joking ??
Suppose I'm the customer, I buy  a web application from you, this
application is a wonderful e-commerce application, and you use the "user"
session key to store a user principal.
I then "deploy" this web application on my well configured hunchentoot
running on port 4242.
Then I buy from SuperLispCoders L.t.d. another web application that is a
web-log analyzer that has an administrative area.
oops! cl-weblog uses "user" session key too, and for a totally different
need and its structure is different too!!
Please don't tell me to open another port, for policy reasons they are all
closed and my boss told me to use the same hunchentoot instance!!
..... the story continue!

 Also, don't having much time to think about this, are
> you really sure this can't be done with the current session framework
> without the need to patch Hunchentoot or to write your own session
> code?
>
> Anyway, if you need this for your own projects, don't wait for me, but
> rather write code that doesn't depend on a patched Hunchentoot.  I'm
> too busy right now to make any promises about updates or patches.
>
> Edi.
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080116/0eb6a3fe/attachment.html>

From edi at agharta.de  Wed Jan 16 21:56:12 2008
From: edi at agharta.de (Edi Weitz)
Date: Wed, 16 Jan 2008 22:56:12 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801161338o202bf7e2ha434d93e71bb9b3e@mail.gmail.com>
	(Andrea Chiumenti's message of "Wed, 16 Jan 2008 22:38:37 +0100")
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<uwsqke3qj.fsf@agharta.de>
	<4d3bc9370801080906h60a4b5eajf32d0cd4ae139a22@mail.gmail.com>
	<4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>
	<uk5mcc09q.fsf@agharta.de>
	<4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>
	<4d3bc9370801140633l934d343j18b39e805678bb71@mail.gmail.com>
	<4d3bc9370801140710y4cc8b33aw43b9587d22391a0d@mail.gmail.com>
	<4d3bc9370801160118h2f3e7983gf724dfbbe52eb78@mail.gmail.com>
	<u8x2p8z77.fsf@agharta.de>
	<4d3bc9370801161338o202bf7e2ha434d93e71bb9b3e@mail.gmail.com>
Message-ID: <uk5m95tab.fsf@agharta.de>

On Wed, 16 Jan 2008 22:38:37 +0100, "Andrea Chiumenti" <kiuma72 at gmail.com> wrote:

>> I'm not really convinced yet that this is really a useful addition
>> for Hunchentoot.
>
> Sorry, but are you joking ??

No.


From kiuma72 at gmail.com  Thu Jan 17 07:58:33 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Thu, 17 Jan 2008 08:58:33 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <uk5m95tab.fsf@agharta.de>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>
	<uk5mcc09q.fsf@agharta.de>
	<4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>
	<4d3bc9370801140633l934d343j18b39e805678bb71@mail.gmail.com>
	<4d3bc9370801140710y4cc8b33aw43b9587d22391a0d@mail.gmail.com>
	<4d3bc9370801160118h2f3e7983gf724dfbbe52eb78@mail.gmail.com>
	<u8x2p8z77.fsf@agharta.de>
	<4d3bc9370801161338o202bf7e2ha434d93e71bb9b3e@mail.gmail.com>
	<uk5m95tab.fsf@agharta.de>
Message-ID: <4d3bc9370801162358m364ddf3ei11d88a8748ca174e@mail.gmail.com>

On Jan 16, 2008 10:56 PM, Edi Weitz <edi at agharta.de> wrote:

> On Wed, 16 Jan 2008 22:38:37 +0100, "Andrea Chiumenti" <kiuma72 at gmail.com>
> wrote:
>
> >> I'm not really convinced yet that this is really a useful addition
> >> for Hunchentoot.
> >
> > Sorry, but are you joking ??
>
Hello Edi,
As someone pointed out to me,  the above sentence seems rude, my public
apologizes because that was a really free translation from
my language (I already don't know how to render it ;-)) . So please, if I
offended you somehow, I beg your pardon.
Anyway since my project seems the only with the need of different sessions,
I'll try another approach that doesn't involve hunchentoot for my needs,
before publishing the first commit.
Have a nice day,
kiuma

>
>
> No.
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080117/a7bd146e/attachment.html>

From hans at huebner.org  Thu Jan 17 08:08:35 2008
From: hans at huebner.org (=?ISO-8859-1?Q?Hans_H=FCbner?=)
Date: Thu, 17 Jan 2008 09:08:35 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801162358m364ddf3ei11d88a8748ca174e@mail.gmail.com>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<uk5mcc09q.fsf@agharta.de>
	<4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>
	<4d3bc9370801140633l934d343j18b39e805678bb71@mail.gmail.com>
	<4d3bc9370801140710y4cc8b33aw43b9587d22391a0d@mail.gmail.com>
	<4d3bc9370801160118h2f3e7983gf724dfbbe52eb78@mail.gmail.com>
	<u8x2p8z77.fsf@agharta.de>
	<4d3bc9370801161338o202bf7e2ha434d93e71bb9b3e@mail.gmail.com>
	<uk5m95tab.fsf@agharta.de>
	<4d3bc9370801162358m364ddf3ei11d88a8748ca174e@mail.gmail.com>
Message-ID: <fd2982320801170008v601ef861t4a7804fea1f67234@mail.gmail.com>

On Jan 17, 2008 8:58 AM, Andrea Chiumenti <kiuma72 at gmail.com> wrote:
> Anyway since my project seems the only with the need of different sessions,
> I'll try another approach that doesn't involve hunchentoot for my needs,
> before publishing the first commit.

I wonder why you can't get away with patching hunchentoot for your
purposes, i.e. by re-defining those internal functions of hunchentoot
that you need to change, and distribute the hunchentoot patches with
your application (?).  That way, you'll be able to publish whatever
you have, and if you create a large enough user base that is using
your software and annoyed by the way hunchentoot needs to be patched,
Edi may be easier to convince.

-Hans


From neuss at math.uni-karlsruhe.de  Thu Jan 17 09:09:39 2008
From: neuss at math.uni-karlsruhe.de (Nicolas Neuss)
Date: Thu, 17 Jan 2008 10:09:39 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801162358m364ddf3ei11d88a8748ca174e@mail.gmail.com>
	(Andrea Chiumenti's message of "Thu\,
	17 Jan 2008 08\:58\:33 +0100")
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>
	<uk5mcc09q.fsf@agharta.de>
	<4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>
	<4d3bc9370801140633l934d343j18b39e805678bb71@mail.gmail.com>
	<4d3bc9370801140710y4cc8b33aw43b9587d22391a0d@mail.gmail.com>
	<4d3bc9370801160118h2f3e7983gf724dfbbe52eb78@mail.gmail.com>
	<u8x2p8z77.fsf@agharta.de>
	<4d3bc9370801161338o202bf7e2ha434d93e71bb9b3e@mail.gmail.com>
	<uk5m95tab.fsf@agharta.de>
	<4d3bc9370801162358m364ddf3ei11d88a8748ca174e@mail.gmail.com>
Message-ID: <87ir1sakdo.fsf@ma-patru.mathematik.uni-karlsruhe.de>

"Andrea Chiumenti" <kiuma72 at gmail.com> writes:

> Anyway since my project seems the only with the need of different
> sessions, I'll try another approach that doesn't involve hunchentoot for
> my needs, before publishing the first commit.  Have a nice day, kiuma

I also have three SBCL/hunchentoot servers running on the same machine
which could be replaced by one with the help of your patches.  So, in
principle I would be interested in this feature if it could be integrated
in Hunchentoot nicely.  However, even if such a version of Hunchentoot
would be available I am not sure if running only one instance would be a
good idea, since a bug in one application would wreak havoc on all.

[I must admit that I had no problems in asking our computing center for more
open ports.  If this would not have worked, I probably would have put my
servers behind Apache/modlisp (which I probably will do anyway at some
point, because people occasionally reported problems accessing my servers
from places which allowed only connections on port 8080).]

Nicolas



From kiuma72 at gmail.com  Thu Jan 17 09:18:44 2008
From: kiuma72 at gmail.com (Andrea Chiumenti)
Date: Thu, 17 Jan 2008 10:18:44 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <87ir1sakdo.fsf@ma-patru.mathematik.uni-karlsruhe.de>
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>
	<4d3bc9370801140633l934d343j18b39e805678bb71@mail.gmail.com>
	<4d3bc9370801140710y4cc8b33aw43b9587d22391a0d@mail.gmail.com>
	<4d3bc9370801160118h2f3e7983gf724dfbbe52eb78@mail.gmail.com>
	<u8x2p8z77.fsf@agharta.de>
	<4d3bc9370801161338o202bf7e2ha434d93e71bb9b3e@mail.gmail.com>
	<uk5m95tab.fsf@agharta.de>
	<4d3bc9370801162358m364ddf3ei11d88a8748ca174e@mail.gmail.com>
	<87ir1sakdo.fsf@ma-patru.mathematik.uni-karlsruhe.de>
Message-ID: <4d3bc9370801170118p6422b3d6s6ab82752a313cb04@mail.gmail.com>

Thanks for your replies,
I'll go with what I've written then, so that who wants may evaluate the
patches, (they'll be provided into a separate lisp file, the will override
some hunchentoot functions).
The modifications will be available in one day or two into claw project
registered at common-lisp.net

For what concerning the example on port, it was just an example, to make
present that in some environment, asking configuration modifications to the
edp group of a cutomer, may result a pain (I speak for experience).

Thx for suggestions,
Have a nice day,

kiuma
On Jan 17, 2008 10:09 AM, Nicolas Neuss <neuss at math.uni-karlsruhe.de> wrote:

> "Andrea Chiumenti" <kiuma72 at gmail.com> writes:
>
> > Anyway since my project seems the only with the need of different
> > sessions, I'll try another approach that doesn't involve hunchentoot for
> > my needs, before publishing the first commit.  Have a nice day, kiuma
>
> I also have three SBCL/hunchentoot servers running on the same machine
> which could be replaced by one with the help of your patches.  So, in
> principle I would be interested in this feature if it could be integrated
> in Hunchentoot nicely.  However, even if such a version of Hunchentoot
> would be available I am not sure if running only one instance would be a
> good idea, since a bug in one application would wreak havoc on all.
>
> [I must admit that I had no problems in asking our computing center for
> more
> open ports.  If this would not have worked, I probably would have put my
> servers behind Apache/modlisp (which I probably will do anyway at some
> point, because people occasionally reported problems accessing my servers
> from places which allowed only connections on port 8080).]
>
> Nicolas
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080117/95b9b362/attachment.html>

From edi at agharta.de  Fri Jan 18 00:24:22 2008
From: edi at agharta.de (Edi Weitz)
Date: Fri, 18 Jan 2008 01:24:22 +0100
Subject: [hunchentoot-devel] Re: session shearing question
In-Reply-To: <4d3bc9370801162358m364ddf3ei11d88a8748ca174e@mail.gmail.com>
	(Andrea Chiumenti's message of "Thu, 17 Jan 2008 08:58:33 +0100")
References: <4d3bc9370801041147n54b23603vcf37043cfd720b05@mail.gmail.com>
	<4d3bc9370801090227n3dfb14d4v15bac44122deb399@mail.gmail.com>
	<uk5mcc09q.fsf@agharta.de>
	<4d3bc9370801140424m3fb0fa6crb4856b87bf3a2b27@mail.gmail.com>
	<4d3bc9370801140633l934d343j18b39e805678bb71@mail.gmail.com>
	<4d3bc9370801140710y4cc8b33aw43b9587d22391a0d@mail.gmail.com>
	<4d3bc9370801160118h2f3e7983gf724dfbbe52eb78@mail.gmail.com>
	<u8x2p8z77.fsf@agharta.de>
	<4d3bc9370801161338o202bf7e2ha434d93e71bb9b3e@mail.gmail.com>
	<uk5m95tab.fsf@agharta.de>
	<4d3bc9370801162358m364ddf3ei11d88a8748ca174e@mail.gmail.com>
Message-ID: <usl0w0ymh.fsf@agharta.de>

On Thu, 17 Jan 2008 08:58:33 +0100, "Andrea Chiumenti" <kiuma72 at gmail.com> wrote:

> As someone pointed out to me, the above sentence seems rude, my
> public apologizes because that was a really free translation from my
> language (I already don't know how to render it ;-)) . So please, if
> I offended you somehow, I beg your pardon.

Nah, no problem.  I don't think it was rude and I wasn't offended.
It's just as I said - I'm not convinced that this is really a good
addition to Hunchentoot.  I might be wrong, but at the moment I don't
have the time to think about this more deeply.

I have a long-term plan to overhaul the internals of Hunchentoot and
to make several things more user-configurable.  Parallel sessions
might fall out of this once it's done.  But don't hold your breath -
as I said, I'm busy...

Edi.


From gwking at metabang.com  Sun Jan 20 22:32:14 2008
From: gwking at metabang.com (Gary King)
Date: Sun, 20 Jan 2008 17:32:14 -0500
Subject: [hunchentoot-devel] Ways to work with case sensitive lisps...
Message-ID: <918455CB-1994-4B37-A2E6-7F2BF640F09E@metabang.com>

I was just trying to work with Hunchentoot and Allegro MoDeRn lisp and  
it's not fun. Sensibly enough, both Chunga and Hunchentoot convert  
headers and such coming from the web into assoc lists with keywords as  
keys. However, the keywords are created by upcasing the strings and  
interning them and in MoDeRn lisp, :HOST does not eq :host and this  
leaves much of the hander code confused.

I'm considering either altering make-keyword or switching the test to  
be case insensitive but I'm concerned that I may miss places that  
matter. Is anyone bumping into this?

regards,
--
Gary Warren King, metabang.com
Cell: (413) 559 8738
Fax: (206) 338-4052
gwkkwg on Skype * garethsan on AIM






From peter.eddy at gmail.com  Mon Jan 21 17:54:29 2008
From: peter.eddy at gmail.com (Peter Eddy)
Date: Mon, 21 Jan 2008 12:54:29 -0500
Subject: [hunchentoot-devel] OpenMCL and corrupted multipart/form-data
	posted binary files
Message-ID: <5aea26870801210954i307fb1c9mb0245b4022ba5bd5@mail.gmail.com>

Hi,

I noticed today that binary files uploaded to my web app running in
Hunchentoot were being corrupted (though text files look fine.) So I
tried the hunchentoot test code and found it had the same problem with
binary files. This is on OSX (Leopard), Intel 64 bit.

I then tried the same hunchentoot test app on a Linux intel 32 bit
platform with SBCL and saw similar corruption. However after updating
hunchentoot and flexi-streams and maybe other packages (I just did an
asdf-install of hunchentoot to get any new stuff, then removed all
existing fasls) the corruption went away.

Unfortunately updating packages and removing fasls didn't fix the
problem on the Mac. Is this a known problem?

On both systems I'm using:

  hunchentoot-0.15.0
  flexi-streams-0.14.0
  trivial-gray-streams-2006-09-16
  chunga-0.4.1

OpenMCL is the 2007-07-22 release
SBCL is version 1.0.13-1

thanks,
Peter


From edi at agharta.de  Mon Jan 21 20:36:15 2008
From: edi at agharta.de (Edi Weitz)
Date: Mon, 21 Jan 2008 21:36:15 +0100
Subject: [hunchentoot-devel] OpenMCL and corrupted multipart/form-data
	posted binary files
In-Reply-To: <5aea26870801210954i307fb1c9mb0245b4022ba5bd5@mail.gmail.com>
	(Peter Eddy's message of "Mon, 21 Jan 2008 12:54:29 -0500")
References: <5aea26870801210954i307fb1c9mb0245b4022ba5bd5@mail.gmail.com>
Message-ID: <ufxwqc3wg.fsf@agharta.de>

On Mon, 21 Jan 2008 12:54:29 -0500, "Peter Eddy" <peter.eddy at gmail.com> wrote:

> Is this a known problem?

No, it's the first time I hear of it.  How do you make the distinction
between "binary" and "text" files?  Hunchentoot doesn't do that, it
treats every upload as a binary file.  And what do you mean with
"corrupted"?  Is the uploaded file shorter than the original or longer
or is it the same length but wrong data?  Is this reproducible or does
it only happen sometimes?  Have you checked that this is not a browser
issue?  (You could try uploading from Drakma, for example.)  Did you
see something in Hunchentoot's log file?  Are you really sure you
removed /all/ FASL files after updating?  Do you have a chance to test
with OpenMCL on Linux instead of OS X?

Thanks,
Edi.


From peter.eddy at gmail.com  Mon Jan 21 21:36:49 2008
From: peter.eddy at gmail.com (Peter Eddy)
Date: Mon, 21 Jan 2008 16:36:49 -0500
Subject: [hunchentoot-devel] OpenMCL and corrupted multipart/form-data
	posted binary files
In-Reply-To: <ufxwqc3wg.fsf@agharta.de>
References: <5aea26870801210954i307fb1c9mb0245b4022ba5bd5@mail.gmail.com>
	<ufxwqc3wg.fsf@agharta.de>
Message-ID: <5aea26870801211336s2879da86y5e6900f78b39fa26@mail.gmail.com>

On Jan 21, 2008 3:36 PM, Edi Weitz <edi at agharta.de> wrote:
> No, it's the first time I hear of it.  How do you make the distinction
> between "binary" and "text" files?  Hunchentoot doesn't do that, it
> treats every upload as a binary file.  And what do you mean with

I uploaded a lisp source file and an image file (in separate form
submits.) Diff tells me that the source and uploaded text files are
the same, but the source binary file (a .png) is 81487 bytes, while
the uploaded binary file is 120258 bytes. So the uploaded file is
longer, not truncated. I used the same browser (Safari) on the same
machine to upload to both the Linux Hunchentoot test server (SBCL) and
the OSX one.

> "corrupted"?  Is the uploaded file shorter than the original or longer
> or is it the same length but wrong data?  Is this reproducible or does
> it only happen sometimes?  Have you checked that this is not a browser
> issue?  (You could try uploading from Drakma, for example.)  Did you
> see something in Hunchentoot's log file?  Are you really sure you
> removed /all/ FASL files after updating?  Do you have a chance to test
> with OpenMCL on Linux instead of OS X?

Tried also with Firefox and saw the same problem. The problem is
reproducible 100% of the time. I didn't see anything in the log files
except for the normal POST notice.

Oh, I've found the problem. I had the following settings in my .emacs file:

; (set-language-environment "UTF-8")
(setq slime-net-coding-system 'utf-8-unix)

Months ago I had commented out the first line while trying to track
down a crash in OpenMCL and forgot to uncomment it later. Anyway, with
both lines either enabled or both commented out, uploading works
correctly.

Sorry for the false alarm.

- Peter


From mail at chaitanyagupta.com  Tue Jan 29 17:37:46 2008
From: mail at chaitanyagupta.com (Chaitanya Gupta)
Date: Tue, 29 Jan 2008 23:07:46 +0530
Subject: [hunchentoot-devel] Does hunchentoot close the stream returned by
	SEND-HEADERS?
Message-ID: <fnno8u$8l0$1@ger.gmane.org>

Or should it be closed explicitly by the app?

Thanks,
Chaitanya



From edi at agharta.de  Tue Jan 29 19:34:36 2008
From: edi at agharta.de (Edi Weitz)
Date: Tue, 29 Jan 2008 20:34:36 +0100
Subject: [hunchentoot-devel] Does hunchentoot close the stream returned
	by SEND-HEADERS?
In-Reply-To: <fnno8u$8l0$1@ger.gmane.org> (Chaitanya Gupta's message of
	"Tue, 29 Jan 2008 23:07:46 +0530")
References: <fnno8u$8l0$1@ger.gmane.org>
Message-ID: <u1w80fmsz.fsf@agharta.de>

On Tue, 29 Jan 2008 23:07:46 +0530, Chaitanya Gupta <mail at chaitanyagupta.com> wrote:

> Or should it be closed explicitly by the app?

Handlers should definitely /not/ close the stream themselves.
Hunchentoot is supposed to do the right thing depending on the headers
sent back and forth between the client and the server - sometimes it
will close the stream, sometimes it won't.  You can check with Drakma
(for example) if that really happens, but I think it does.

Edi.


From jeffrey.k.cunningham at boeing.com  Tue Jan 29 20:43:54 2008
From: jeffrey.k.cunningham at boeing.com (Cunningham, Jeff)
Date: Tue, 29 Jan 2008 12:43:54 -0800
Subject: [hunchentoot-devel] Does hunchentoot close the stream returnedby
	SEND-HEADERS?
In-Reply-To: <F014AD23EEB9B9469410D7F0334C93D30711CE26@XCH-NW-4V2.nw.nos.boeing.com>
References: <fnno8u$8l0$1@ger.gmane.org>
	<F014AD23EEB9B9469410D7F0334C93D30711CE26@XCH-NW-4V2.nw.nos.boeing.com>
Message-ID: <479F900A.4060005@boeing.com>

Edi Weitz wrote:
> On Tue, 29 Jan 2008 23:07:46 +0530, Chaitanya Gupta <mail at chaitanyagupta.com> wrote:
>
>   
>> Or should it be closed explicitly by the app?
>>     
>
> Handlers should definitely /not/ close the stream themselves.
> Hunchentoot is supposed to do the right thing depending on the headers
> sent back and forth between the client and the server - sometimes it
> will close the stream, sometimes it won't.  You can check with Drakma
> (for example) if that really happens, but I think it does.
>
> Edi.
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>   
I use drakma regularly to examine what is happening on several 
Hunchentoot sites and Hunchentoot always seems to take care of closing 
the streams properly.

Jeff
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080129/b4557ed4/attachment.html>

From edi at agharta.de  Tue Jan 29 20:51:29 2008
From: edi at agharta.de (Edi Weitz)
Date: Tue, 29 Jan 2008 21:51:29 +0100
Subject: [hunchentoot-devel] Does hunchentoot close the stream
	returnedby SEND-HEADERS?
In-Reply-To: <479F900A.4060005@boeing.com> (Jeff Cunningham's message of
	"Tue, 29 Jan 2008 12:43:54 -0800")
References: <fnno8u$8l0$1@ger.gmane.org>
	<F014AD23EEB9B9469410D7F0334C93D30711CE26@XCH-NW-4V2.nw.nos.boeing.com>
	<479F900A.4060005@boeing.com>
Message-ID: <uk5lse4oe.fsf@agharta.de>

On Tue, 29 Jan 2008 12:43:54 -0800, "Cunningham, Jeff" <jeffrey.k.cunningham at boeing.com> wrote:

> I use drakma regularly to examine what is happening on several
> Hunchentoot sites and Hunchentoot always seems to take care of
> closing the streams properly.

Have you ever checked if it also takes care of /not/ closing the
stream if you use Drakma with something like :CLOSE NIL so that you
can re-use the stream?

Thanks,
Edi.


From jeffrey.k.cunningham at boeing.com  Tue Jan 29 22:32:20 2008
From: jeffrey.k.cunningham at boeing.com (Cunningham, Jeff)
Date: Tue, 29 Jan 2008 14:32:20 -0800
Subject: [hunchentoot-devel] Does hunchentoot close the streamreturnedby
	SEND-HEADERS?
In-Reply-To: <F014AD23EEB9B9469410D7F0334C93D30711CE29@XCH-NW-4V2.nw.nos.boeing.com>
References: <fnno8u$8l0$1@ger.gmane.org><F014AD23EEB9B9469410D7F0334C93D30711CE26@XCH-NW-4V2.nw.nos.boeing.com><479F900A.4060005@boeing.com>
	<F014AD23EEB9B9469410D7F0334C93D30711CE29@XCH-NW-4V2.nw.nos.boeing.com>
Message-ID: <479FA974.3080406@boeing.com>

Edi Weitz wrote:
> On Tue, 29 Jan 2008 12:43:54 -0800, "Cunningham, Jeff" <jeffrey.k.cunningham at boeing.com> wrote:
>
>   
>> I use drakma regularly to examine what is happening on several
>> Hunchentoot sites and Hunchentoot always seems to take care of
>> closing the streams properly.
>>     
>
> Have you ever checked if it also takes care of /not/ closing the
> stream if you use Drakma with something like :CLOSE NIL so that you
> can re-use the stream?
>
> Thanks,
> Edi.
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>   
No, I haven't. I'll see if I can give it a try here in the next day.

--Jeff
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080129/f0b6bec4/attachment.html>

From mail at chaitanyagupta.com  Thu Jan 31 07:30:40 2008
From: mail at chaitanyagupta.com (Chaitanya Gupta)
Date: Thu, 31 Jan 2008 13:00:40 +0530
Subject: [hunchentoot-devel] Does hunchentoot close the stream returned
	by SEND-HEADERS?
In-Reply-To: <u1w80fmsz.fsf@agharta.de>
References: <fnno8u$8l0$1@ger.gmane.org> <u1w80fmsz.fsf@agharta.de>
Message-ID: <fnrtel$8qu$1@ger.gmane.org>

Edi Weitz wrote:
> 
> Handlers should definitely /not/ close the stream themselves.
> Hunchentoot is supposed to do the right thing depending on the headers
> sent back and forth between the client and the server

Right, I completely forgot about keep-alive.

Thanks,

Chaitanya



From ch-tbnl at bobobeach.com  Thu Jan 31 22:08:02 2008
From: ch-tbnl at bobobeach.com (Cyrus Harmon)
Date: Thu, 31 Jan 2008 14:08:02 -0800
Subject: [hunchentoot-devel] hunchentoot CGI?
Message-ID: <68F0856D-F98F-4588-AA28-227398295248@bobobeach.com>


This may seem counterproductive but has anyone used Hunchentoot for  
running CGI scripts? It seems like this should be pretty  
straightforward, but I could be missing something.

Thanks,

Cyrus