Protocol::HTTP::Response - HTTP response class


    use Protocol::HTTP::Response;

    # construction of new response
    my $res = Protocol::HTTP::Response->new({
        code    => 200,
        message => 'Have a good day',
        headers => {Lang => 'Perl'},
        body    => "Lorem ipsum dolor",
        cookies => {session => {
            value     => "sit amen",
            domain    => "",
            path      => "/",
            max_age   => 1000,
            secure    => 1,
            http_only => 1,
            same_site => COOKIE_SAMESITE_NONE,



    # in real world it should be in connection with request
    my $req = Protocol::HTTP::Request->new({
        method       => METHOD_POST,
        uri          => "/hello/world",
        http_version => 10,
    $res = Protocol::HTTP::Response->new({
        code    => 200,
        body    => "Lorem ipsum dolor",
    $res->cookie('session' => { value => 'some-id', path => '/some/path'});

    # just a hint, no real compression occurs here

    # passing $request is crucial, as it accounts the http_version,
    # compression preferences etc.


This class represents client HTTP response, which is specialization of Protocol::HTTP::Message. An instance of the class can be constructed either direcly via new method to send a new response (server-side), or via parsing incoming request with Protocol::HTTP::ResponseParser (client-side).

When a message is ready it can be serialized via to_string method. It is important to pass the original request to it, as some properties of the request will be accounted. For example, if client requested HTTP 1.0, the response will also be HTTP 1.0 (despite the default HTTP 1.1). Another example is compression settings: if client does not prefer to have compressed response (e.g. it does not support brotli compression), then the response will not be compressed. That's way there is no need to have multiple boilerplate code checks.



Constructs new response from the hash of properties, i.e. code, message, cookies, headers, body, http_version, chunked, compressed

See corresponding methods documentation below and in Protocol::HTTP::Message to find out what these parameters support.


Get/set HTTP status code, e.g. 200, 404 etc. By default, response will have status code 200 if you don't set one.


Get/set HTTP reason message in the status line. By default, response will have default status message for selected status code ("OK" for 200, "Not found" for 404, etc) if you don't set one.


Get/set multiple response cookies.

Please note, this is response cookies, i.e. set by server-side, and they have different API than request cookies.

Setting response cookies will emit one or more "Set-Cookie" headers on serialization.

The hash key is cookie name, and value is a hashref with properties. See cookie method below for properties list.

        Sit => {
            value     => 'amen',
            domain    => "",
            path      => "/some/path",
            max_age   => 3600,
        hello => {
            value     => "world",
            domain    => "",
            path      => "/some/path",
            secure    => 1,
            http_only => 1,
            same_site => Protocol::HTTP::Response::COOKIE_SAMESITE_STRICT,

cookie($name, [\%properties])

Returns (as hashref) or sets single cookie with name $name.

Available properties:








An expiration date after which cookie should no longer be sent by client. Can be a Date object or anything that its one-argument constructor supports (UNIX timestamp, string in various formats, etc)


An amount of seconds from now after which cookie should no longer be sent by client. If both expires and max_age are present then max_age takes precedence


If set to true, client should send the cookie only via secure connection.


If set to true, the cookie cannot be accessed through client side script


Allows servers to assert that a cookie ought not to be sent along with cross-site requests, which provides some protection against cross-site request forgery attacks

Available values are

    $response->cookie('MyCookie' => {
        value     => 'MyValue',
        domain    => "",
        path      => '/my/path',
        expires   => "2020-06-01 23:59:59",
        secure    => 1,
        http_only => 1,
        same_site => Protocol::HTTP::Response::COOKIE_SAMESITE_LAX,
    my $coo = $respone->cookie('MyCookie');
    say $coo->{value};


Serialize response for the given request. Request preferences will be taken into account. This one should be used in production.


Serialize response to string without any context request. This will disable compression, assume that the client is capable of parsing HTTP 1.1, etc..., i.e. make a number of assumptions.