Delicious Bookmark this on Delicious Share on Facebook SlashdotSlashdot It! Digg! Digg



PHP : Function Reference : Apache-specific Functions : virtual

virtual

Perform an Apache sub-request (PHP 4, PHP 5)
bool virtual ( string filename )

virtual() is an Apache-specific function which is similar to <!--#include virtual...--> in mod_include. It performs an Apache sub-request. It is useful for including CGI scripts or .shtml files, or anything else that you would parse through Apache. Note that for a CGI script, the script must generate valid CGI headers. At the minimum that means it must generate a Content-type header.

To run the sub-request, all buffers are terminated and flushed to the browser, pending headers are sent too.

This function is only supported when PHP is installed as an Apache module.

Parameters

filename

The file that the virtual command will be performed on.

Return Values

Performs the virtual command on success, or returns FALSE on failure.

ChangeLog

Version Description
4.0.6 This function may be used on PHP files. However, it is typically better to use include() or require() for PHP files.

Notes

Warning:

The query string can be passed to the included file but $_GET is copied from the parent script and only $_SERVER['QUERY_STRING'] is filled with the passed query string. The query string may only be passed when using Apache 2. The requested file will not be listed in the Apache access log.

Note:

Environment variables set in the requested file are not visible to the calling script.

Note:

As of PHP 4.3.3 you can use this function with the NSAPI server module in Netscape/iPlanet/SunONE webservers, too.

Related Examples ( Source code ) » virtual


Code Examples / Notes » virtual

vcaron

You can use virtual() to implement your own dispatcher/auth handler in an efficient and effective way.
For instance if you have a bunch of images you would like to be served statically by Apache (its job after all), but with a more com
plex access pattern than mod_access allows you to do (say a MySQL lookup with your app logic), try this simple Apache rule:
 Order Allow,Deny
 Allow from env=PHP_ALLOW
Then in your PHP script, before sending any content or header:
<?php
$image = "/some/URL/path/test.png";
if (client_may_view_image($image)) {
 apache_setenv('PHP_ALLOW', '1');
 if (virtual($image))
   exit(0);
 echo "Ops, failed to fetched granted image $image (hammer your webmaster).\n";
} else
 echo "Sorry buddy, you're not allowed in here.\n";
?>
Of course very Apache-ish, but it's much more efficient and uniform to rely on Apache rather than passthru() and mime_content_type()
hacks : it does the path lookup and auth/security audit as the admin expects, use the best static serving it can (think 'sendfile')
and you can even chain your request with another embedded script eg. in mod_perl.


ruibal_deleted_p*at*gmail__dot__com

when php is installed as an apache module, this works pretty well for writing your own php preprocessor/information logger. For example, requests to any URI underneath pre.php will first be executed by pre.php, then returned to the user.
<?
$docroot        = $_SERVER['DOCUMENT_ROOT'];
$script_root    = str_replace( basename($_SERVER['SCRIPT_NAME']),'',$_SERVER['SCRIPT_NAME'] );
$script_ext     = substr( $_SERVER['SCRIPT_NAME'], strrpos( $_SERVER['SCRIPT_NAME'],'.' ) );
$fakework_root  = $script_root.basename( $_SERVER['SCRIPT_NAME'] ).'/';
$framework_root = $script_root.'_'.basename( $_SERVER['SCRIPT_NAME'], $script_ext ).'/';
$frequest_root  = dirname( $framework_root.substr( $_SERVER['PATH_INFO'], 1 )).'/';
$frequest_name  = basename( $_SERVER['PATH_INFO'] );
$frequest_ext   = (strrpos($frequest_name,'.')===FALSE ? FALSE : strtolower(substr( $frequest_name, ( strrpos( $frequest_name, '.' )+1 ) ) ) );
$frequest_full  = $frequest_root.$frequest_name;
$doc_frequest   = $docroot.$frequest_full;
$doc_framework   = $docroot.$framework_root;
$DO_PARSE = in_array( $frequest_ext, $chk_exts );
if( $DO_PARSE )
{
   $tmpfname = tempnam( $doc_framework.'tmp', 'aj_' ).($frequest_ext? ('.'.$frequest_ext) : '');
   if( ($to_parse=@file_get_contents($doc_frequest))===FALSE )
       $to_parse="404";
   $tmpvname = str_replace( $docroot, '', $tmpfname );
   $tmpvname = str_replace( '\\\\', '/', $tmpvname );
// - - - - - - - - - - - - - - - - - - - - - - - - - - -
//  Do processing of data stored in $to_parse
// - - - - - - - - - - - - - - - - - - - - - - - - - - -
   $to_parse = striptags( $to_parse );
// - - - - - - - - - - - - - - - - - - - - - - - - - - -
   $handle = fopen($tmpfname, "w");
   fwrite($handle, $to_parse);
   fclose($handle);
   @virtual( $tmpvname.$getvars );
   unlink( $tmpfname );
}
else
   @virtual( $frequest_full.$getvars );
?>
So all files in http://server/sub/pre.php/path/ are really located in http://server/sub/_pre/path/
All this needs is some kind of caching mechanism.
But yeah, this could be modified to add watermarks with the image functions, convert to xml with Tidy, check for extensions better with mimeTypes, proxy content with cURL, validate $_SERVER['HTTP_REFERER'] or $_SERVER['HTTP_USER_AGENT'], etc etc
This gives you much more over than the auto_prepend_file, and auto_append_file, for certain functionality
The key is the virtual function _because_ it delivers the modified content with an apache subrequest.


david

Virtual returns the HTTP entity header after the requested file, when it's the first output to the page.
The work-around to prevent seeing the header is, of course, to output something (such as echo " "; ) before calling virtual.


adam

One should probably use include() instead of virtual() if it is straight html text.  There is no advantage to using the apache sub-process over php (escpecially since you're calling it from php).  You may end up with a warning like this:
Warning: virtual(): A session is active. You cannot change the session module's ini settings at this time.


anonymous

Note that QUERY_STRING seems to get inherited, so to make a virtual request WITHOUT one, one needs to explicitly append a "?" to the URL of the sub-request (to cause the creation of a "null" query string).  Of course, if the desired URL has its own query string, that will override and an additional "?" should not be appended.
This was with PHP 4.4.7 (released May 2007).


logang

If you want to pass all post and get values to the cgi script you can use this code:
$QSTRING = $QUERY_STRING;
while (list ($header, $value) = each ($HTTP_POST_VARS))
{
  $QSTRING = $QSTRING.'&'.$header.'='.$value;
}
virtual($script.'?'.$QSTRING);
It takes all the values of $HTTP_POST_VARS and appends them in the proper format to the values you get in $QUERY_STRING


chardin

If you are having problems using virtual include becuase of files being stored in different directories, a root-relative path will make things much easier:
virtual ("/root directory/directory/filename.htm/");
where root directory is the root directory of your site (ask your sys admin if you dont know what it is) Don't include the protocol or host name.
This will also allow you to move your files around your site without having to redirect your includes which is *very* helpfull


php

I saw the note above about the length of the query string... but didn't know what it was, so have altered the code so it can post to the script.
Probly only works on nix systems as it makes use of the echo function...
This code also will look evaluate the result, so you can get cgi to dynamically create PHP (probly best to watch out that posted variables do not include script!)
<?
$CGISCRIPT="./cgi-bin/cgiscript.cgi";
// preparing the arguments passed to this PHP page
$QSTRING = $QUERY_STRING;
foreach ($HTTP_POST_VARS as $header=> $value ){
if($QSTRING==""){
$QSTRING = $header.'='.urlencode($value);
}else{
$QSTRING = $QSTRING.'&'.$header.'='.urlencode($value);
}
}

putenv('REQUEST_METHOD=POST');
putenv('CONTENT_TYPE=application/x-www-form-urlencoded');
putenv('CONTENT_LENGTH='.strlen($QSTRING));
putenv('QUERY_STRING='.$QSTRING);
unset($return_array);
exec('echo "'.$QSTRING.'"| '.$CGISCRIPT, $return_array, $return_val);
//The 1st line of my script was "Content...." ... so remove it!
$firstline=array_shift($return_array);
//evaluate the code
eval('?>'.implode($return_array,''));
?>


crazyted

I have a header that's include()'ed on each of my pages. I then wanted to add a Perl script to that header file (header.php) via the virtual() command.
Since my header is used by documents in my /www folder along with other folders inside that (and inside those), and virtual() seems to take only relative paths, I had to write some code to dynamically get the path to the perl script.
Hope this helps some ppl out:
 $cwd = getcwd();
 $script_name = "cgi-bin/perl_script.pl";
 $count = substr_count($cwd, '/');
 $count = $count - 3;
 // get rid of extra absolute paths since my directory is /home/user/www
 // Add additional path information
 for($i = 1; $i <= $count; $i++){
   $script_name = "../".$script_name;  
 }
 virtual($script_name);


abentley

Here's an update to tomwk's code:
function safe_virtual( $filename )
{
  $curDir = getcwd();
  virtual ( $filename );
  chdir( $curDir );
}
This is better if you've already changed your current directory to be something other than your script's directory.  It works for PHP4 and above.


s dot dan

Another way of passing arguments:
If you have some CGI programs that depend on some libraries where you can't change the source code (in my case an online payment library), you can pass the arguments by changing some environment variables.
Of course the CGI program has to get the GET/POST variables in the usual manner.
It simulates, more or less, a direct call from the server to a CGI program:
// preparing the arguments passed to this PHP page
$QSTRING = $QUERY_STRING;
// pay attention to the maximum length of the QUERY string.
while (list ($header, $value) = each ($HTTP_POST_VARS)){
 if (empty($QSTRING))
   $QSTRING = $header.'='.$value;
else
   $QSTRING = $QSTRING.'&'.$header.'='.$value;
}
putenv('REQUEST_METHOD=GET');
putenv('QUERY_STRING='.$QSTRING);
unset($return_array);
exec('my_CGI', $return_array, $return_val);
Now you can parse the output of 'my_CGI' in return_array.


Change Language


Follow Navioo On Twitter
apache_child_terminate
apache_get_modules
apache_get_version
apache_getenv
apache_lookup_uri
apache_note
apache_request_headers
apache_reset_timeout
apache_response_headers
apache_setenv
ascii2ebcdic
ebcdic2ascii
getallheaders
virtual
eXTReMe Tracker