4D Documentation

Edit

Configuración

The 4D web server settings include security parameters, listening ports, defaults paths, and various options covering all the server features. 4D provides default values for every settings.

Where to configure settings?

There are different ways to configure the 4D web server settings, depending on the scope and the server you want to set:

Setting locationAlcanceServidor web a utilizar
objeto webServerTemporary (current session)Any web server, including component web servers
WEB SET OPTION or a WEB XXX commandTemporary (current session)Servidor principal
Settings dialog box (Web pages)Permanent (all sessions, stored on disk)Servidor principal

Some settings are not available from all locations.

Caché

Puede ajustarse conNombreComentarios
Caja de diálogo de parámetrosConfiguration page/Use the 4D Web cache
Caja de diálogo de parámetrosConfiguration page/Page Cache Size

Enables and configures the web page cache.

The 4D web server has a cache that allows you to load static pages, GIF images, JPEG images (<512 kb) and style sheets (.css files) in memory, as they are requested. Using the cache allows you to significantly increase the web server’s performance when sending static pages. The cache is shared between all the web processes.

You can modify the size of the cache in the Pages Cache Size area. The value you set depends on the number and size of your website’s static pages, as well as the resources that the host machines has at its disposal.

While using your web database, you can check the performance of the cache by using the WEB GET STATISTICS command. If, for example, you notice that the cache’s rate of use is close to 100%, you may want to consider increasing the size that has been allocated to it. The [/4DSTATS] and [/4DHTMLSTATS] URLs allow you to also obtain information about the cache’s state.

Carpeta de certificados

Puede ajustarse conNombreComentarios
objeto webServercertificateFolderText property but can be a 4D.Folder object when used with the settings parameter of the start() function.

Folder where the TLS certificate files for the web server are located.

By default with 4D or 4D Server, these files must be placed next to the project folder.

With 4D in remote mode, these files must be located in the local resources folder of the database on the remote machine (see 4D Client Database Folder paragraph of the Get 4D folder command). You must copy these files manually on the remote machine.

TLS certificate files are key.pem (document containing the private encryption key) and cert.pem (document containing the certificate).

Character Set

Puede ajustarse conNombreComentarios
objeto webServercharacterSetMIBEnum integer or Name string
WEB SET OPTIONWeb character setMIBEnum integer or Name string
Caja de diálogo de parámetrosOptions (II) page/Standard SetPop up menu

Defines the set of characters to be used by the 4D web server. The default value actually depends on the language of the OS.

This setting is also used for generating Quick Reports in HTML format .

Lista de cifrado

Puede ajustarse conNombreComentarios
objeto webServercipherSuiteTexto

Cipher list used for the secure protocol; sets the priority of ciphering algorithms implemented by the web server. Can be a sequence of strings separated by colons (for example "ECDHE-RSA-AES128-..."). See the ciphers page on the OpenSSL site.

The default cipher list used by 4D can be modified for the session using the SET DATABASE PARAMETER command, in which case the modification applies to the entire 4D application, including the web server, SQL server, client/server connections, as well as the HTTP client and all the 4D commands that make use of the secure protocol.

Parámetros CORS

Puede ajustarse conNombreComentarios
objeto webServerCORSSettingsCollection of objects (List of allowed hosts and methods for the CORS service)
WEB SET OPTIONWeb CORS settingsCollection of objects (List of allowed hosts and methods for the CORS service)
Caja de diálogo de parámetrosOptions (II) page/Domain names and HTTP methods allowedClick on the [+] button to add an allowed domain name and its method(s)

List of allowed hosts and methods for the CORS service.

Domain names (host property)

Domain name or IP address from where external pages are allowed to send data requests to the Server via CORS. Multiple domain attributes can be added to create a white list. Several syntaxes are supported:

HTTP methods allowed (methods property)

Accepted HTTP method(s) for the corresponding CORS host. The following HTTP methods are supported:

  • GET
  • HEAD
  • POST
  • PUT
  • DELETE
  • OPTIONS
  • TRACE
  • PATCH

Separate each method with a ";" (e,g,: "post;get"). If methods is empty, null, or undefined, all methods are enabled.

Ver también

Activar CORS

Debug log

Puede ajustarse conNombreComentarios
objeto webServerdebugLognumber
WEB SET OPTIONWeb debug lognumber

Status of the HTTP request log file of the web server (HTTPDebugLog_nn.txt, stored in the "Logs" folder of the application -- nn is the file number). It is useful for debugging issues related to the Web server. It records each request and each response in raw mode. Whole requests, including headers, are logged; optionally, body parts can be logged as well.

ValorConstanteDescripción
0wdl disableWeb HTTP debug log is disabled

|1|wdl enable without body|Web HTTP debug log is enabled without body parts (body size is provided in this case)| |3|wdl enable with response body|Web HTTP debug log is enabled with body part in response only| |5|wdl enable with request body|Web HTTP debug log is enabled with body part in request only| |7|wdl enable with all body parts|Web HTTP debug log is enabled with body parts in response and request|

Página de inicio por defecto

Puede ajustarse conNombreComentarios
objeto webServerdefaultHomepageTexto
WEB SET HOME PAGECan be different for each web process
Caja de diálogo de parámetrosConfiguration page/Default Home Page

Designate a default home page for the web server. This page can be static or [semi-dynamic].

By default, when the web server is launched for the first time, 4D creates a home page named "index.html" and puts it in the HTML root folder. If you do not modify this configuration, any browser connecting to the web server will obtain the following page:

You can designate another default home page by entering its pathname.

  • The path is relative to the default HTML root folder.
  • The path is expressed with the POSIX syntax (folders are separated by a slash ("/"))
  • The path must neither start not end with a slash.

For example, if you want the default home page to be "MyHome.htm", and it is located in the "Web" folder (itself located in the default HTML root folder), use "Web/MyHome.htm".

If you do not specify any default home page, the On Web Connection database method is called. It is up to you to process the request procedurally.

Activar CORS

Puede ajustarse conNombreComentarios
objeto webServerCORSEnabledBoolean, true to enable the CORS (false by default)
WEB SET OPTIONWeb CORS enabled0 (disabled, default) or 1 (enabled)
Caja de diálogo de parámetrosOptions (II) page/Enable CORSUnchecked by default

The 4D web server implements cross-origin resource sharing (CORS) to allow specific Web pages served from another domain to access the current Web application's resources via XHR calls, e.g., using REST. For security reasons, "cross-domain" requests are forbidden at the browser level by default. When enabled, XHR calls (e.g. REST requests) from Web pages outside the domain can be allowed in your application (you need to define the list of allowed addresses in the CORS domain list, see CORS Settings below). In this case, if a non-allowed domain or method sends a cross site request, it is rejected with a "403 - forbidden" error response.

When disabled (default), all cross site requests sent with CORS are ignored.

For more information about CORS, please refer to the Cross-origin resource sharing page on Wikipedia.

Ver también

Parámetros CORS

Activar HTTP

Puede ajustarse conNombreComentarios
objeto webServerHTTPEnabledbooleano
WEB SET OPTIONWeb HTTP enabled
Caja de diálogo de parámetrosConfiguration page/Enable HTTP

Indicates whether or not the web server will accept non-secure connections.

Enable HTTPS

Puede ajustarse conNombreComentarios
objeto webServerHTTPSEnabledbooleano
WEB SET OPTIONWeb HTTPS enabled
Caja de diálogo de parámetrosConfiguration page/Enable HTTPS

Status for communication over HTTPS. This option is described in this section.

Activar HSTS

Puede ajustarse conNombreComentarios
objeto webServerHSTSEnabledBoolean, true to enable HSTS (default is false)
WEB SET OPTIONWeb HSTS enabled0 (disabled, default) or 1 (enabled)

HTTP Strict Transport Security (HSTS) status.

When HTTPS is enabled, keep in mind that if HTTP is also enabled, the browser can still switch between HTTPS and HTTP (for example, in the browser URL area, the user can replace "https" by "http"). To forbid http redirections, you can disable HTTP, however in this case an error message is displayed to client HTTP requests.

HSTS allows the 4D web server to declare that browsers should only interact with it via secure HTTPS connections. Once activated, the 4D web server will automatically add HSTS-related information to all response headers. Browsers will record the HSTS information the first time they receive a response from the 4D web server, then any future HTTP requests will automatically be transformed into HTTPS requests. The length of time this information is stored by the browser is specified with the Web HSTS max age setting.

HSTS requires that HTTPS is enabled on the server. HTTP must also be enabled to allow client initial connections.

You can get the current connection mode using the WEB Is secured connection command.

HSTS Max Age

Puede ajustarse conNombreComentarios
objeto webServerHSTSMaxAgenumber in seconds
WEB SET OPTIONWeb HSTS max agenumber in seconds

Specifies the maximum length of time (in seconds) that HSTS is active for each new client connection. This information is stored on the client side for the specified duration. Default value is 63072000 (2 years)

Warning: Once HSTS is enabled, client connections will continue to use this mechanism for the specified duration. When you are testing your applications, it is recommended to set a short duration to be able to switch between secured and non-secured connection modes if necessary.

HTTP Compression Level

Puede ajustarse conNombreComentarios
objeto webServerHTTPCompressionLevel
WEB SET OPTIONWeb HTTP compression levelApplies to Web and Web Service

Compression level for all compressed HTTP exchanges for the 4D web server (client requests or server replies). This setting lets you optimize exchanges by either privileging speed of execution (less compression) or the amount of compression (less speed). The choice of a value depends on the size and type of data exchanged.

Pass 1 to 9 as value where 1 is the fastest compression and 9 the highest. You can also pass -1 to get a compromise between speed and rate of compression. By default, the compression level is 1 (faster compression).

HTTP Compression Threshold

Puede ajustarse conNombreComentarios
objeto webServerHTTPCompressionThreshold
WEB SET OPTIONWeb HTTP compression threshold

In the framework of optimized HTTP exchanges, size threshold for requests below which exchanges should not be compressed. This setting is useful in order to avoid losing machine time by compressing small exchanges.

Pass the size expressed in bytes as value. By default, the compression threshold is set to 1024 bytes.

Puerto HTTP

Puede ajustarse conNombreComentarios
objeto webServerHTTPPortnumber
WEB SET OPTIONWeb port ID
Caja de diálogo de parámetrosConfiguration page/HTTP Port

Listening IP (TCP) port number for HTTP. By default, 4D publishes a web application on the regular Web HTTP Port (TCP port), which is port 80. If that port is already used by another web service, you need to change the HTTP Port used by 4D for this database.

In macOS, modifying the HTTP port allows you to start the 4D web server without being the root user of the machine (see macOS HelperTool).

From a web browser, you need to include the non-default HTTP port number into the address you enter for connecting to the web application. The address must have a suffix consisting of a colon followed by the port number. For example, if you are using the HTTP port number 8080, you will specify "123.4.567.89:8080".

Warning: If you use TCP port numbers other than the default numbers (80 for standard HTTP and 443 for HTTPS), be careful not to use port numbers that are defaults for other services that you might want to use simultaneously. For example, if you also plan to use the FTP protocol on your web server machine, do not use the TCP port 20 and 21, which are the default ports for that protocol. Ports numbers below 256 are reserved for well known services and ports numbers from 256 to 1024 are reserved for specific services originated on the UNIX platforms. For maximum security, specify a port number beyond these intervals (for example, in the 2000's or 3000's).

If you specify 0, 4D will use the default HTTP port number 80.

HTTP Trace

Puede ajustarse conNombreComentarios
objeto webServerHTTPTraceBoolean, default = false
WEB SET OPTIONWeb HTTP TRACEInteger, default = 0 (disabled)

HTTP TRACE method activation in the 4D web server. For security reasons, by default the 4D web server rejects HTTP TRACE requests with an error 405. If necessary, you can enable the HTTP TRACE method, in which case the 4D Web server replies to HTTP TRACE requests with the request line, header, and body.

Puerto HTTPS

Puede ajustarse conNombreComentarios
objeto webServerHTTPSPortnumber
WEB SET OPTIONWeb HTTPS port ID
Caja de diálogo de parámetrosConfiguration page/HTTPS Port

Listening IP port number for HTTPS connections via TLS. By default, the value is 443 (standard value). See also HTTP Port for information on port numbers.

Inactive Process Timeout

Puede ajustarse conNombreComentarios
objeto webServerinactiveProcessTimeout
WEB SET OPTIONWeb inactive process timeout
Caja de diálogo de parámetrosOptions (I) page/Inactive Process TimeoutSlider

Life duration (in minutes) of inactive processes associated with sessions. At the end of the timeout, the process is killed on the server, the On Web Close Process database method is called, then the session context is destroyed.

Default: 480 minutes (pass 0 to restore the default value)

Inactive Session Timeout

Puede ajustarse conNombreComentarios
objeto webServerinactiveSessionTimeout
WEB SET OPTIONWeb inactive session timeout

Life duration (in minutes) of inactive sessions (duration set in cookie). At the end of this period, the session cookie expires and is no longer sent by the HTTP client.

Default: 480 minutes (pass 0 to restore the default value)

IP Address to listen

Puede ajustarse conNombreComentarios
objeto webServerIPAddressToListen
WEB SET OPTIONWeb IP address to listen
Caja de diálogo de parámetrosConfiguration page/IP AddressPop up menu

IP address strings on which the 4D web server will receive HTTP requests (4D local and 4D Server).

By default, no specific address is defined (Any value in the Settings dialog box), which means that the server responds to all IP addresses. When you designate a specific address, the server only responds to requests sent to this address. This feature is designed for 4D web servers located on machines with multiple TCP/IP addresses. It is, for example, frequently the case of most host providers.

Possible values: IP address string. Both IPv6 string formats (e.g. "2001:0db8:0000:0000:0000:ff00:0042:8329") and IPv4 string formats (e.g. "123.45.67.89") are supported.

Acerca de la compatibilidad con IPv6

  • No warning when TCP port is occupied
    When the server is set to respond on "Any" IP addresses, if the TCP port is being used by another application, this is not indicated when the server is started. In fact, 4D server does not detect any error in this case because the port remains free on the IPv6 address. However, it is not possible to access it using the IPv4 address of the machine, nor by means of the local address: 127.0.0.1.

    If your 4D server does not seem to be responding on the port defined, you can test the address [::1] on the server machine (equivalent to 127.0.0.1 for IPv6, add [:portNum] to test another port number). If 4D responds, it is likely that another application is using the port in IPv4.

  • IPv4-mapped IPv6 addresses
    To standardize processing, 4D provides a standard hybrid representation of IPv4 addresses in IPv6. These addresses are written with a 96-bit prefix in IPv6 format, followed by 32 bits written in the dot-decimal notation of IPv4. For example, ::ffff:192.168.2.34 represents the IPv4 address 192.168.2.34.

  • Indication of port numbers
    Since IPv6 notation uses colons (:), adding port numbers may lead to some confusion, for example:

    2001:0DB8::85a3:0:ac1f:8001 // IPv6 address
    2001:0DB8::85a3:0:ac1f:8001:8081 // IPv6 address with port 8081

To avoid this confusion, we recommend using the [ ] notation whenever you combine an IPv6 address with a port number, for instance:

    [2001:0DB8::85a3:0:ac1f:8001]:8081 //IPv6 address with port 8081

Keep Session

Puede ajustarse conNombreComentarios
objeto webServerkeepSession
WEB SET OPTIONWeb keep session
Caja de diálogo de parámetrosOptions (I) page/Automatic Session Management

Session management enabling status for the 4D web server. Session mechanism is described in the Session Management section.

Default is true (enabled).

When this option is checked, the "Reuse Temporary Contexts" option is automatically checked (and locked).

Log Recording

Puede ajustarse conNombreComentarios
objeto webServerlogRecording
WEB SET OPTIONWeb log recording
Caja de diálogo de parámetrosLog (type) page/Log FormatPop up menu

Starts or stops the recording of requests received by the 4D web server in the logweb.txt file and sets its format. By default, requests are not recorded (0/No Log File). When enabled, the logweb.txt file is automatically placed in the Logs folder.

This setting allows you to select the format of this file. Available values are:

ValorNombre del formatoDescripción
0No hay archivo de historialPor defecto
1Record in CLF formatCommon Log Format - Each line of the file represents a request, such as: host rfc931 user [DD/MMM/YYYY:HH:MM:SS] "request" state length - Each field is separated by a space and each line ends by the CR/LF sequence.
2Registro en formato DLFCombined Log Format - Similar to CLF format but adds two additional HTTP fields at the end of each request: Referer and User-agent.
3Registro en formato ELFExtended Log Format - To be customized in the Settings dialog box
4Registro en formato WLFWebStar Log Format - To be customized in the Settings dialog box

Formats 3 and 4 are custom formats whose contents must be set beforehand in the Settings dialog box. If you use one of these formats without any of its fields having been selected on this page, the log file will not be generated.

Maximum Concurrent Web Processes

Puede ajustarse conNombreComentarios
objeto webServermaxConcurrentProcesses
WEB SET OPTIONWeb max concurrent processes
Caja de diálogo de parámetrosOptions (I) page/Maximum Concurrent Web Processes

Strictly high limit of concurrent web processes that can be simultaneously open on the server. This parameter allows prevention of server saturation as the result of massive number of requests. When the maximum number of concurrent Web processes (minus one) is reached, 4D no longer creates new processes and sends the HTTP status 503 - Service Unavailable to all new requests.

By default, the value is 100. You can set the number anywhere between 10 and 32000.

Tamaño máximo de la petición

Puede ajustarse conNombreComentarios
objeto webServermaxRequestSize
WEB SET OPTIONWeb maximum requests size

Maximum size (in bytes) of incoming HTTP requests (POST) that the web server is authorized to process. By default, the value is 2 000 000, i.e. a little less than 2 MB. Passing the maximum value (2 147 483 648) means that, in practice, no limit is set.

This limit is used to avoid web server saturation due to incoming requests that are too large. When a request reaches this limit, the 4D web server rejects it.

Valores posibles: 500 000 a 2 147 483 648.

Número máximo de sesiones

Puede ajustarse conNombreComentarios
objeto webServermaxSessions
WEB SET OPTIONWeb max sessions

Maximum number of simultaneous sessions. When you reach the limit set, the oldest session is closed (and On Web Close Process database method is called) if the Web server needs to create a new one. The number of simultaneous sessions cannot exceed the maximum number of Web processes (100 by default).

Default value: 100 (pass 0 to restore the default value).

Versión mínima de TLS

Puede ajustarse conNombreComentarios
objeto webServerminTLSVersionnumber

Minimum TLS version accepted for connections. Connection attempts from clients supporting only versions below the minimum will be rejected.

Valores posibles:

  • 1 = TLSv1_0
  • 2 = TLSv1_1
  • 3 = TLSv1_2 (por defecto)
  • 4 = TLSv1_3

If modified, the server must be restarted to use the new value.

The minimum TLS version used by 4D can be modified for the session using the SET DATABASE PARAMETER command, in which case the modification applies to the entire 4D application, including the web server, SQL server and client/server connections.

Nombre

Puede ajustarse conNombreComentarios
objeto webServername

Name of the web server application. Useful when component web servers are started.

Versión OpenSSL

Puede ajustarse conNombreComentarios
objeto webServeropenSSLVersionSólo lectura

Version of the OpenSSL library used.

Perfect Forward Secrecy

Puede ajustarse conNombreComentarios
objeto webServerperfectForwardSecrecyBooleano, de sólo lectura

True if PFS is available on the web server (see TLS section).

Robots.txt

Certain robots (query engines, spiders...) scroll through web servers and static pages. If you do not want robots to be able to access your entire site, you can define which URLs they are not allowed to access.

To do so, put the ROBOTS.TXT file at the server's root. This file must be structured in the following manner:

   User-Agent: <name>
   Disallow: <URL> or <beginning of the URL>

Por ejemplo:

   User-Agent: *
   Disallow: /4D
   Disallow: /%23%23
   Disallow: /GIFS/
  • “User-Agent: *” - all robots are affected.
  • “Disallow: /4D” - robots are not allowed to access URLs beginning with /4D.
  • “Disallow: /%23%23” - robots are not allowed to access URLs beginning with /%23%23.
  • “Disallow: /GIFS/’ - robots are not allowed to access the /GIFS/ folder or its subfolders.

Otro ejemplo:

   User-Agent: *
   Disallow: /

In this case, robots are not allowed to access the entire site.

Root Folder

Puede ajustarse conNombreComentarios
objeto webServerrootFolderText property but can be a 4D.Folder object when used with the settings parameter of the start() function
WEB SET ROOT FOLDER
Caja de diálogo de parámetrosConfiguration page/Default HTML Root

Path of web server root folder, i.e. the folder in which 4D will search for the static and semi-dynamic HTML pages, pictures, etc., to send to the browsers. The path is formatted in POSIX full path. The web server will need to be restarted in order for the new root folder to be taken into account.

Moreover, the HTML root folder defines, on the web server hard drive, the hierarchical level above which the files will not be accessible. If a requested URL or a 4D command tries to access a file located above the HTML root folder, an error is returned indicating that the file has not been found.

By default, 4D defines a HTML Root folder named WebFolder. If it does not already exist, the HTML root folder is physically created on disk at the moment the Web server is launched for the first time. The root folder is created:

  • with 4D (local) and 4D Server, at the same level as the Project folder.
  • with 4D in remote mode, in the local resources folder.

You can designate another default HTML root folder by entering its pathname.

  • The path is relative to the Project folder (4D local and 4D Server) or to the folder containing the 4D application or software package (4D in remote mode).
  • The path is expressed with the POSIX syntax (folders are separated by a slash ("/"))
  • To "go up" one level in the folder hierarchy, enter “..” (two periods) before the folder name
  • The path must not start with a slash (except if you want the HTML root folder to be the Project or 4D remote folder, but for access to the folders above to be forbidden, in which case you can pass "/" as the root folder).

For example, if you want the HTML root folder to be the "Web" subfolder in the "MyWebApp" folder, enter "MyWebApp/Web".

When the HTML root folder is modified, the cache is cleared so as to not store files whose access is restricted.

Session Cookie Domain

Puede ajustarse conNombreComentarios
objeto webServersessionCookieDomain
WEB SET OPTIONWeb session cookie domain

Value of the "domain" field of the session cookie. Useful for controlling the scope of the session cookies. If you set, for example, the value "/*.4d.fr" for this selector, the client will only send a cookie when the request is addressed to the domain ".4d.fr", which excludes servers hosting external static data.

Nombre de la cookie de sesión

Puede ajustarse conNombreComentarios
objeto webServersessionCookieName
WEB SET OPTIONWeb session cookie name

Name of the cookie used for saving the session ID. Por defecto = "4DSID".

Ruta de la cookie de sesión

Puede ajustarse conNombreComentarios
objeto webServersessionCookiePath
WEB SET OPTIONWeb session cookie path

Campo "path" de la cookie de sesión. Used to control the scope of the session cookies. If you set, for example, the value "/4DACTION" for this selector, the client will only send a cookie for dynamic requests beginning with 4DACTION, and not for pictures, static pages, etc.

Session Cookie SameSite

Puede ajustarse conNombreComentarios
objeto webServersessionCookieSameSite

Value of the SameSite attribute value of the session cookie. This attribute allows you to declare if your cookie should be restricted to a first-party or same-site context, as a protection from some cross-site request forgery (CSRF) attacks.

For a detailed description of the SameSite attribute, please refer to the Mozilla documentation or this web.dev page.

Hay tres valores disponibles:

  • "Strict" (default SameSite attribute value for 4D session cookies): cookies will only be sent in the first-party context, i.e. context matching the domain of the current site, and never to third-party websites.
  • "Lax": Cookies are not sent on cross-site subrequests (for example to load images or frames into a third-party site), but are sent when a user is navigating to the origin site (i.e. they follow a link).
  • "Ninguna": las cookies se envían en todos los contextos, es decir, en las respuestas a las solicitudes de primera parte y de origen cruzado. When "None" value is used, the cookie Secure attribute must also be set (or the cookie will be blocked).

The Secure attribute value of the session cookie is automatically set to "True" if the connection is HTTPS (whatever the SameSite attribute value).

It is not recommended to set SameSite=None on a HTTP server since the Secure attribute will be missing (used in HTTPS only) and cookies will be blocked.

Session IP Address Validation

Can be set with|Name|Comments| |---|---|---| |webServer object|sessionIPAddressValidation|| |WEB SET OPTION|Web session enable IP address validation||

IP address validation status for session cookies. For security reasons, by default the 4D web server checks the IP address of each request containing a session cookie and rejects it if this address does not match the IP address used to create the cookie. En algunas aplicaciones específicas, es posible que desee desactivar esta validación y aceptar las cookies de sesión, incluso cuando sus direcciones IP no coinciden. For example when mobile devices switch between Wifi and 4G/5G networks, their IP address will change. In this case, you must pass 0 in this option to allow clients to be able to continue using their Web sessions even when the IP addresses change. Note that this setting lowers the security level of your application.

When it is modified, this setting is effective immediately (you do not need to restart the HTTP server).

Possible values: 0 (disabled) or 1 (enabled, default).

Parámetros obsoletos

The following settings are still supported but rely on deprecated features or technologies. It is usually recommended to keep default values.

Allow database Access through 4DSYNC URLs

This option controls the support of HTTP synchronization requests containing deprecated /4DSYNC URLs.

Reuse temporary contexts (in remote mode)

Allows you to optimize the operation of the 4D Web Server in remote mode by reusing web processes created for processing previous web requests. In fact, the web server in 4D needs a specific web process for the handling of each web request; in remote mode, when necessary, this process connects to the 4D Server machine in order to access the data and database engine. It thus generates a temporary context using its own variables, selections, etc. Once the request has been dealt with, this process is killed.

When the Reuse Temporary Contexts option is checked, in remote mode 4D maintains the specific web processes and reuses them for subsequent requests. By removing the process creation stage, web server performance is improved.

In return, you must make sure in this case to systematically initialize the variables used in 4D methods in order to avoid getting incorrect results. Similarly, it is necessary to erase any current selections or records defined during the previous request.

  • This option is checked (and locked) automatically when the Automatic Session Management option is checked. In fact, the session management mechanism is actually based on the principle of recycling web processes: each session uses the same process that is maintained during the lifespan of the session. However, note that session processes cannot be "shared" between different sessions: once the session is over, the process is automatically killed (and not reused). It is therefore unnecessary to reset the selections or variables in this case.

  • This option only has an effect with a 4D web server in remote mode. With a 4D in local mode, all web processes (other than session processes) are killed after their use.

Send Extended Characters Directly

When this option is checked, the web server sends extended characters “as is” in semi-dynamic pages, without converting them into HTML entities. This option has shown a speed increase on most foreign operating systems (especially the Japanese system).

Conexiones Keep-Alive

The 4D Web Server can use keep-alive connections. The keep-alive option allows you to maintain a single open TCP connection for the set of exchanges between the web browser and the server to save system resources and to optimize transfers.

The Use Keep-Alive Connections option enables or disables keep-alive TCP connections for the web server. This option is enabled by default. In most cases, it is advisable to keep this option check since it accelerates the exchanges. If the web browser does not support connection keep alive, the 4D Web Server automatically switches to HTTP/1.0.

The 4D Web Server keep-alive function concerns all TCP/IP connections (HTTP, HTTPS). Note however that keep-alive connections are not always used for all 4D web processes.

In some cases, other optimized internal functions may be invoked. Keep-alive connections are useful mainly for static pages.

Two options allow you to set how the keep-alive connections work:

  • Number of requests by connection: Allows you to set the maximum number of requests and responses able to travel over a connection keep alive. Limiting the number of requests per connection allows you to prevent server flooding due to a large number of incoming requests (a technique used by hackers).

    The default value (100) can be increased or decreased depending on the resources of the machine hosting the 4D Web Server.

  • Timeout: This value defines the maximum wait period (in seconds) during which the web server maintains an open TCP connection without receiving any requests from the web browser. Once this period is over, the server closes the connection.

    If the web browser sends a request after the connection is closed, a new TCP connection is automatically created. This operation is not visible for the user.

GeneralidadesAdministración