Why do HTTP servers forbid underscores in HTTP header names

by

They are not forbidden, it’s CGI legacy. See “Missing (disappearing) HTTP Headers“.

If you do not explicitly set underscores_in_headers on;, nginx will silently drop HTTP headers with underscores (which are perfectly valid according to the HTTP standard). This is done in order to prevent ambiguities when mapping headers to CGI variables, as both dashes and underscores are mapped to underscores during that process.

More Related Contents:

  1. RewriteRule Last [L] flag not working?
  2. Https to http redirect using htaccess
  3. How to CORS-enable Apache web server (including preflight and custom headers)?
  4. What is apache’s maximum url length?
  5. Are square brackets permitted in URLs?
  6. Apache 2.4 + PHP-FPM and Authorization headers
  7. How can I pre-compress files with mod_deflate in Apache 2.x?
  8. Vagrant’s port forwarding not working [closed]
  9. Apache is not sending 304 response (if mod_deflate and AddOutputFilterByType is enabled)
  10. How can I replace Apache HTTP code 404 to 200
  11. Redirect HTTP to HTTPS on default virtual host without ServerName
  12. Force HTTPS on certain URLs and force HTTP for all others
  13. Remove .php extension with .htaccess
  14. How to change XAMPP apache server port?
  15. Why is form enctype=multipart/form-data required when uploading a file?
  16. Website image caching with Apache
  17. apache redirect http to https and www to non www
  18. Can ProxyPass and ProxyPassReverse work in htaccess?
  19. How to use vhosts alongside node-http-proxy?
  20. How to encode special characters using mod_rewrite & Apache?
  21. How can I get Apache gzip compression to work?
  22. How to define a variable in apache’s httpd.conf file?
  23. Load Balancing Cluster not working with Apache HTTP Server 2.4.6 and JBoss EAP 7
  24. Redirect requests only if the file is not found?
  25. Authorization header missing in PHP POST request
  26. Can’t remove Server: Apache header
  27. How do I configure Apache2 to allow multiple simultaneous connections from same IP address?
  28. htaccess RewriteRule page with query string
  29. URL rewriting for different protocols in .htaccess
  30. Correct Apache AddType directives for font MIME types

Leave a Comment