Охіh&  4  2А<                   	  
                                               !  "  #  $  %  &  '  (  )  *  +  ,  -  .  /  0  1  2  3  4  5  6  7  8  9  :  ;           Safe-Inferred%&  н   wai›A special datatype to indicate that the WAI handler has received the
 response. This is to avoid the need for Rank2Types in the definition of
 Application.It is highlyШ  advised that only WAI handlers import and use the data
 constructor for this data type.  waiп Information on which part to be sent.
   Sophisticated application handles Range (and If-Range) then
   create  . waiЩ The size of the request body. In the case of chunked bodies, the size will
 not be known.
  waiеRepresents a streaming HTTP response body. It's a function of two
 parameters; the first parameter provides a means of sending another chunk of
 data, and the second parameter provides a means of flushing the data to the
 client. waiс Information on the request sent by the client. This abstracts away the
 details of the underlying implementation. waiRequest method such as GET. waiHTTP version such as 1.1. waiџExtra path information sent by the client. The meaning varies slightly
 depending on backend; in a standalone server setting, this is most likely
 all information after the domain name. In a CGI application, this would be
 the information following the path to the CGI executable itself.вMiddlewares and routing tools should not modify this raw value, as it may
 be used for such things as creating redirect destinations by applications.
 Instead, if you are writing a middleware or routing framework, modify the
 pathInfoЕ  instead. This is the approach taken by systems like Yesod
 subsites.NoteМ : At the time of writing this documentation, there is at least one
 system (Network.Wai.UrlMap from 	wai-extraЉ) that does not follow the
 above recommendation. Therefore, it is recommended that you test the
 behavior of your application when using rawPathInfo0 and any form of
 library that might modify the Request. waiД If no query string was specified, this should be empty. This value
 willЯ  include the leading question mark.
 Do not modify this raw value - modify queryString instead. wai?A list of headers (a pair of key and value) in an HTTP request. wai-Was this request made over an SSL connection?Note that this value will not  tell you if the client originally made
 this request over SSL, but rather whether the current connection is SSL.
 The distinction lies with reverse proxies. In many cases, the client will
 connect to a load balancer over SSL, but connect to the WAI handler
 without SSL. In such a case,  	 will be  <=, but from a user
 perspective, there is a secure connection. waiThe client's host information. waiч Path info in individual pieces - the URL without a hostname/port and
 without a query string, split on forward slashes. wai Parsed query string information. wai(Get the next chunk of the body. Returns  =П  when the
 body is fully consumed. Since 3.2.2, this is deprecated in favor of  ". waiК A location for arbitrary data to be shared by applications and middleware. waiЪ The size of the request body. In the case of a chunked request body,
 this may be unknown.  wai/The value of the Host header in a HTTP request.  wai0The value of the Range header in a HTTP request.  wai2The value of the Referer header in a HTTP request.! wai5The value of the User-Agent header in a HTTP request."wai(Get the next chunk of the body. Returns  =" when the
 body is fully consumed.#waiSet the  В  attribute on a request without triggering a
 deprecation warning.Ь The supplied IO action should return the next chunk of the body each time it
 is called and  =! when it has been fully consumed. $ 	
! "#$! "#
	           Safe-Inferred   2V' waiA 
Middleware= is a component that sits between the server and application.It can modify both the   and  ж ,
 to provide simple transformations that are required for all (or most of)
 your web server™@s routes.Users of middleware'If you are trying to apply one or more  '
s to your  (,
 just call them as functions.For example, if you have corsMiddleware and authorizationMiddleware/,
 and you want to authorize first, you can do:Е let allMiddleware app = authorizationMiddleware (corsMiddleware app)
to get a new  'Ы , which first authorizes, then sets, CORS headers.
 The њ@outerќ@ middleware is called first.You can also chain them via >:м let allMiddleware =
        authorizationMiddleware
      . corsMiddleware
      . ¦@ more middleware here ¦@
Then, once you have an app :: Application&, you can wrap it
 in your middleware:-let myApp = allMiddleware app :: Application
and run it as usual:Warp.run port myApp
Authors of middlewareWhen fully expanded,  ' has the type signature:Њ(Request -> (Response -> IO ResponseReceived) -> IO ResponseReceived) -> Request -> (Response -> IO ResponseReceived) -> IO ResponseReceivedor if we shorten to .type Respond = Response -> IO ResponseReceived:Ш (Request -> Respond -> IO ResponseReceived) -> Request -> Respond -> IO ResponseReceivedж so a middleware definition takes 3 arguments, an inner application, a request and a response callback."Compare with the type of a simple  (:)Request -> Respond -> IO ResponseReceivedIt takes the   and Respond , but not the extra application.9Said differently, a middleware has the power of a normal  (
 ”@ it can inspect the   and return a  % ”@
 but it can (and in many cases it should) also call the  ( which was passed to it.Modifying the  Х A lot of middleware just looks at the request and does something based on its values.For example, the authorizationMiddleware from above could look at the Authorization
 HTTP header and run https://jwt.io/JWT) verification logic against the database.?authorizationMiddleware app req respond = do
  case verifyJWT ( а  req) of
    InvalidJWT err -> respond (invalidJWTResponse err)
    ValidJWT -> app req respond
с Notice how the inner app is called when the validation was successful.
 If it was not, we can respond
 e.g. with <https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/401HTTP 401 Unauthorized,
 by constructing a   with  + and passing it to respond.#Passing arguments to and from your  'В Middleware must often be configurable.
 Let™@s say you have a type JWTSettings‡ that you want to be passed to the middleware.
 Simply pass an extra argument to your middleware. Then your middleware type turns into:іauthorizationMiddleware :: JWTSettings -> Application -> Request -> Respond -> IO ResponseReceived
authorizationMiddleware jwtSettings req respond =
  case verifyJWT jwtSettings ( а  req) of
    InvalidJWT err -> respond (invalidJWTResponse err)
    ValidJWT -> app req respond
or alternatively:5authorizationMiddleware :: JWTSettings -> Middleware
'Perhaps less intuitively, you can also pass on% data from middleware to the wrapped  (:јauthorizationMiddleware :: JWTSettings -> (JWT -> Application) -> Request -> Respond -> IO ResponseReceived
authorizationMiddleware jwtSettings req respond =
  case verifyJWT jwtSettings ( и  req) of
    InvalidJWT err -> respond (invalidJWTResponse err)
    ValidJWT jwt -> app jwt req respond
Ъ although then, chaining different middleware has to take this extra argument into account:‹let finalApp =
      authorizationMiddleware
        (\jwt -> corsMiddleware
           (¦@ more middleware here ¦@
             (app jwt)))
Modifying the   ' can also modify the  + that is returned by the inner application.This is done by taking the respond$ callback, using it to define a new respond',
 and passing this new respond' to the app:ЌgzipMiddleware app req respond = do
  let respond' resp = do
        resp' <- gzipResponseBody resp
        respond resp'
  app req respond'
•However, modifying the response (especially the response body) is not trivial,
 so in order to get a sense of how to do it (dealing with the type of  01),
 it™@s best to look at an example, for example Ь https://hackage.haskell.org/package/wai-extra/docs/src/Network.Wai.Middleware.Gzip.html#gzip the GZIP middleware of wai-extra.( waiThe WAI application.ІNote that, since WAI 3.0, this type is structured in continuation passing
 style to allow for proper safe resource handling. This was handled in the
 past via other means (e.g., 	ResourceT). As a demonstration:®app :: Application
app req respond = bracket_
    (putStrLn "Allocating scarce resource")
    (putStrLn "Cleaning up")
    (respond $ responseLBS status200 [] "Hello World")
)  wai	Creating   from a file.*  wai	Creating   from  ?..Some questions and answers about the usage of  ? here:с Q1. Shouldn't it be at the user's discretion to use Builders internally and
 then create a stream of ByteStrings?д A1. That would be less efficient, as we wouldn't get cheap concatenation
 with the response headers.к Q2. Isn't it really inefficient to convert from ByteString to Builder, and
 then right back to ByteString?еA2. No. If the ByteStrings are small, then they will be copied into a larger
 buffer, which should be a performance gain overall (less system calls). If
 they are already large, then an insert operation is used
 to avoid copying.Ъ Q3. Doesn't this prevent us from creating comet-style servers, since data
 will be cached?м A3. You can force a Builder to output a ByteString before it is an
 optimal size by sending a flush command.+  wai	Creating   from  @. This is a wrapper for
    *.,  wai	Creating   from a stream of values.Н In order to allocate resources in an exception-safe manner, you can use the
 bracket  pattern outside of the call to responseStream. As a trivial
 example:ђapp :: Application
app req respond = bracket_
    (putStrLn "Allocating scarce resource")
    (putStrLn "Cleaning up")
    $ respond $ responseStream status200 [] $ \write flush -> do
        write $ byteString "Hello\n"
        flush
        write $ byteString "World\n"
$Note that in some cases you can use bracket from inside responseStream„
 as well. However, placing the call on the outside allows your status value
 and response headers to depend on the scarce resource.- waiіCreate a response for a raw application. This is useful for "upgrade"
 situations such as WebSockets, where an application requests for the server
 to grant it raw network access.–This function requires a backup response to be provided, for the case where
 the handler in question does not support such upgrading (e.g., CGI apps).Е In the event that you read from the request body before returning a
 responseRaw, behavior is undefined.. wai
Accessing  A in  ./  wai
Accessing  B in  .0  wai#Converting the body information in   to a  
.1  waiИ Apply the provided function to the response header list of the Response.2waiГ Apply the provided function to the response status of the Response.3  waiA default, blank request.4wai.Apply a function that modifies a request as a  '5  wai/Apply a function that modifies a response as a  '6  waiConditionally apply a  '7 wai7Get the request body as a lazy ByteString. However, do notЙ  use any lazy
 I/O, instead reading the entire body into memory strictly.е Note: Since this function consumes the request body, future calls to it will return the empty string.8waiSynonym for  7Ж .
 This function name is meant to signal the non-idempotent nature of  7.9waiЋGet the request body as a lazy ByteString. This uses lazy I/O under the
 surface, and therefore all typical warnings regarding lazy I/O apply.е Note: Since this function consumes the request body, future calls to it will return the empty string.:waiSynonym for  9Ж .
 This function name is meant to signal the non-idempotent nature of  9.;wai>Apply the provided function to the request header list of the  . 3 	
! "#'()*+,-./0123456789:;3(' 3	" !789:#;
)*+,-./012645  Г                      	  
                                                                 !   "   #   $   %   &  '  (   )   *   +   ,   -   .   /   0   1   2   3   4   5   6   7   8   9   :   ; <=> ?@ A BC D ?EF ?GH IJK ILMО  wai-3.2.4-505yavFEWpQJTWXjRRik8nNetwork.WaiNetwork.Wai.InternalResponseReceivedFilePartfilePartOffsetfilePartByteCountfilePartFileSizeRequestBodyLengthChunkedBodyKnownLengthStreamingBodyResponseResponseFileResponseBuilderResponseStreamResponseRawRequestrequestMethodhttpVersionrawPathInforawQueryStringrequestHeadersisSecure
remoteHostpathInfoqueryStringrequestBodyvaultrequestBodyLengthrequestHeaderHostrequestHeaderRangerequestHeaderRefererrequestHeaderUserAgentgetRequestBodyChunksetRequestBodyChunks$fShowRequest$fShowFilePart$fShowRequestBodyLength
MiddlewareApplicationresponseFileresponseBuilderresponseLBSresponseStreamresponseRawresponseStatusresponseHeadersresponseToStreammapResponseHeadersmapResponseStatusdefaultRequestmodifyRequestmodifyResponse	ifRequeststrictRequestBodyconsumeRequestBodyStrictlazyRequestBodyconsumeRequestBodyLazymapRequestHeadersghc-prim	GHC.TypesFalsebytestring-0.11.3.1Data.ByteString.InternalemptybaseGHC.Base. Data.ByteString.Builder.InternalBuilderData.ByteString.Lazy.Internal
ByteString(http-types-0.12.4-8sVzaiF2LjrERDtipkARMDNetwork.HTTP.Types.StatusStatusNetwork.HTTP.Types.HeaderResponseHeaders