Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:68073
Return-Path: <leverton@gmail.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 69241 invoked from network); 6 Jul 2013 17:07:23 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 6 Jul 2013 17:07:23 -0000
Authentication-Results: pb1.pair.com header.from=leverton@gmail.com; sender-id=pass
Authentication-Results: pb1.pair.com smtp.mail=leverton@gmail.com; spf=pass; sender-id=pass
Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.215.47 as permitted sender)
X-PHP-List-Original-Sender: leverton@gmail.com
X-Host-Fingerprint: 209.85.215.47 mail-la0-f47.google.com  
Received: from [209.85.215.47] ([209.85.215.47:45983] helo=mail-la0-f47.google.com)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 29/35-41520-ACE48D15 for <internals@lists.php.net>; Sat, 06 Jul 2013 13:07:22 -0400
Received: by mail-la0-f47.google.com with SMTP id fe20so2799149lab.34
        for <internals@lists.php.net>; Sat, 06 Jul 2013 10:07:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :cc:content-type;
        bh=oujg5BCajAE1NygmB0hSSaskDSewl+/vQYXAwjzYyr8=;
        b=lNA++fuvszL5yL7czw0x0OrAwN/66rXNPOAZgt0DsDj/fmPwYzR/Oj4NwnFxM51x0z
         g+6Zr/qShaAF2i8DlT97Fz3lAvmmMr21d7hq2dNneWSCRcp1Vx5wG2r6q9NRmJGfb/kh
         Ud2zjyJD/hJqw7iVRXFNGL9FQrbWTYDNzBnmTxjWBDUqG0ocektw9ZlCi2GVAV4cjDSZ
         iIG2Jb+WbtrfGNmoVAeuIr/MvGrDIw9DXtVIjJQamCAJlIVEbB21qkpUXhWm2I330T74
         r9hq7sf9++ObgkA0EHpA38wgJiHlV4BMLcbmjns6TD2xcy+k+6LOonz9NbDiSo1kSH/l
         klmQ==
MIME-Version: 1.0
X-Received: by 10.152.42.171 with SMTP id p11mr7128307lal.79.1373130439272;
 Sat, 06 Jul 2013 10:07:19 -0700 (PDT)
Received: by 10.112.27.148 with HTTP; Sat, 6 Jul 2013 10:07:19 -0700 (PDT)
In-Reply-To: <CAA=k7mWP_Nn_wJp9VdaQ4vxCCZQmbBaFsHyzOPVjkRK3LRNbNQ@mail.gmail.com>
References: <CAH8Mpnmn8MMEN-WLRLSvgppe5RzPjK6NwyXhyuh7FDKU4fxfuA@mail.gmail.com>
	<CAN=kQJctJfkZ-DtJFH1cOouWO9EQG+ja_Gqm6diX62v9PD2DjQ@mail.gmail.com>
	<CAA=k7mWP_Nn_wJp9VdaQ4vxCCZQmbBaFsHyzOPVjkRK3LRNbNQ@mail.gmail.com>
Date: Sat, 6 Jul 2013 12:07:19 -0500
Message-ID: <CAN=kQJeDH-BomNqTAadVUjO2TuSHFKEvSxPj3qkU3vrKVN=fvw@mail.gmail.com>
To: Mario Brandt <jblond@gmail.com>
Cc: Daniel Lowrey <rdlowrey@gmail.com>, "internals@lists.php.net" <internals@lists.php.net>
Content-Type: text/plain; charset=ISO-8859-1
Subject: Re: [PHP-DEV] Re: Access-Control-Allow-Origin header in CLI server
From: leverton@gmail.com (Matthew Leverton)

On Sat, Jul 6, 2013 at 7:59 AM, Mario Brandt <jblond@gmail.com> wrote:
> You can use the router script to add that header of your desire into
> every request.
>
That's what I currently do. And I agree that if somebody wants to
deviate from the reasonable set of defaults that PHP provides, then he
must set them in a router script. I don't think the CLI server should
be a configurable web server.

But IMO, this is no different from PHP maintaining and delivering a
small set of Content-type headers. Of course you could take the same
hardline approach and tell the developer to set all of the content
headers himself because you're worried that somebody might use PNG as
a data file that holds ping pong scores. But neither the existence of
this nor the content-type have any reasonable side effects.

I'm just throwing this out here; I've got nothing more to say and am
fine with the powers-to-be doing whatever they feel appropriate.

--
Matthew Leverton