Http_1 Flashcards
Uniform Resource Locator URL
Address of resource on the internet
URL Scheme
http - how to access a resource (other https, ftp, mailto)
Host
staples.com what is hosting the resource (could use IP address)
Url Path
Specific resource
Http default port
80
Network Port definition
An endpoint of communication in an operating system; specific services listen to prots
Network socket definition
An internal endpoint for sending or receiving data at a single node in a computer network
Url fragment
Information followed by a # used on client side to navigate to a specific section of a resources (Angular route)
Mime standards
Content type - label the content of an internet request – how a client interprets the http response
Http/1.1
Defines the language used to communicate html requests and responses
Http request
What the client sends
Http response
Response from server
Http transactions
1 request and response
URL Canonicalization
Convert all requests to same scheme ie all requests go to www.
Http Methods
Get; Post (Put, Delete, Head, Paste)
Safe Http method
Get – refresh as many times as you want
Postback
Data on the page is posted from the client to the server (posted to the same page the user is viewing
Callback
Special type of postback - a quick roundtrip to the server to get a small amount of data - calling the server and receiving some data back
PRG
Post / Redirect/ Get
Request Message syntax
Method URL Version Headers Body
Request Headers
Help with content negotiation Host header required Any header included must be honered
Common Request headers
Referer, User-Agent, Cookie, Accept
Response Message syntax
version status reason headers body
Status code 100
Informational
Status code 200
Successful
Status code 300
Redirect
Status code 400
Client error
Status code 500
Server errors
TCP
Transmition control protocol (Transport layer)(reliable)
IP
Internet Protocol(Network layer)(creates packets)
Data Link Layer
Resposible for carrying 0 and 1’s from one location to another
Parallel connections
Allow the client to download data on mulitiple connections
Persistant connection
Socket remains open
Proxy Server
Sits between the client and the server; access control device; inspect messages; log messages; load balancing
Stateless
Each request is independent of another request
_viewState
Used to manage state on asp .net web forms; passed in http messages
Cookies
Used to track and identify users; not used for authentication; assign a unique id
Where are cookies set
in the header; SET-COOKIE - browser specific
Session Cookies
Good for 1 session
Persistant cookies
Persisit – must have an expiration value
Basic Authentication
Not considered secure rarely used other then with https; url encoded
Digest Authentication
A step up from basic authentication, request is encrypted –rarely used
Windows authentication
Commonly used for intranet; cs.staples.com uses windows
Forms Authentication
Most popular, not standard. A form accepts pw and login; only secure with https
HTTPS
Same as SSL; Encrypts messages; default port 443;
How does https work?
Adds SSL/TLS layer; encrypts; server must have a certificate; browser validates that it is communicating with correct server; all traffic is encrypted; client is not authenticated via https
HTTPS downsides
Computationally expensive; can’t cache in public cache; expensive to set up and maintain
