private boolean checkPermission(
Subject roleHolder, Class<? extends RequestPermission> permissionClass, Context ctx) {
if (log.isDebugEnabled()) log.debug("checkPermission() <-");
RequestPermission permission = null;
try {
permission = permissionClass.newInstance();
} catch (Exception e) {
log.error("cannot create permission", e);
return false;
}
List<? extends Permission> permissions = roleHolder.getPermissions();
Request request = ctx.request();
if (log.isDebugEnabled()) log.debug("request : " + request);
String path = request.path();
if (log.isDebugEnabled()) log.debug("path : " + path);
return permission.isAllowed(request, permissions);
}
public static Request parseRequest(HttpServletRequest httpServletRequest) throws Exception {
Request request = new Http.Request();
Request.current.set(request);
URI uri = new URI(httpServletRequest.getRequestURI());
request.method = httpServletRequest.getMethod().intern();
request.path = uri.getPath();
request.querystring =
httpServletRequest.getQueryString() == null ? "" : httpServletRequest.getQueryString();
Logger.trace("httpServletRequest.getContextPath(): " + httpServletRequest.getContextPath());
Logger.trace("request.path: " + request.path + ", request.querystring: " + request.querystring);
Router.routeOnlyStatic(request);
if (httpServletRequest.getHeader("Content-Type") != null) {
request.contentType =
httpServletRequest.getHeader("Content-Type").split(";")[0].trim().toLowerCase().intern();
} else {
request.contentType = "text/html".intern();
}
if (httpServletRequest.getHeader("X-HTTP-Method-Override") != null) {
request.method = httpServletRequest.getHeader("X-HTTP-Method-Override").intern();
}
request.body = httpServletRequest.getInputStream();
request.secure = httpServletRequest.isSecure();
request.url =
uri.toString()
+ (httpServletRequest.getQueryString() == null
? ""
: "?" + httpServletRequest.getQueryString());
request.host = httpServletRequest.getHeader("host");
if (request.host.contains(":")) {
request.port = Integer.parseInt(request.host.split(":")[1]);
request.domain = request.host.split(":")[0];
} else {
request.port = 80;
request.domain = request.host;
}
request.remoteAddress = httpServletRequest.getRemoteAddr();
if (Play.configuration.containsKey("XForwardedSupport")
&& httpServletRequest.getHeader("X-Forwarded-For") != null) {
if (!Arrays.asList(
Play.configuration.getProperty("XForwardedSupport", "127.0.0.1").split(","))
.contains(request.remoteAddress)) {
throw new RuntimeException("This proxy request is not authorized");
} else {
request.secure =
("https".equals(Play.configuration.get("XForwardedProto"))
|| "https".equals(httpServletRequest.getHeader("X-Forwarded-Proto"))
|| "on".equals(httpServletRequest.getHeader("X-Forwarded-Ssl")));
if (Play.configuration.containsKey("XForwardedHost")) {
request.host = (String) Play.configuration.get("XForwardedHost");
} else if (httpServletRequest.getHeader("X-Forwarded-Host") != null) {
request.host = httpServletRequest.getHeader("X-Forwarded-Host");
}
if (httpServletRequest.getHeader("X-Forwarded-For") != null) {
request.remoteAddress = httpServletRequest.getHeader("X-Forwarded-For");
}
}
}
Enumeration headersNames = httpServletRequest.getHeaderNames();
while (headersNames.hasMoreElements()) {
Http.Header hd = new Http.Header();
hd.name = (String) headersNames.nextElement();
hd.values = new ArrayList<String>();
Enumeration enumValues = httpServletRequest.getHeaders(hd.name);
while (enumValues.hasMoreElements()) {
String value = (String) enumValues.nextElement();
hd.values.add(value);
}
request.headers.put(hd.name.toLowerCase(), hd);
}
request.resolveFormat();
javax.servlet.http.Cookie[] cookies = httpServletRequest.getCookies();
if (cookies != null) {
for (javax.servlet.http.Cookie cookie : cookies) {
Http.Cookie playCookie = new Http.Cookie();
playCookie.name = cookie.getName();
playCookie.path = cookie.getPath();
playCookie.domain = cookie.getDomain();
playCookie.secure = cookie.getSecure();
playCookie.value = cookie.getValue();
playCookie.maxAge = cookie.getMaxAge();
request.cookies.put(playCookie.name, playCookie);
}
}
request._init();
return request;
}
public Request parseRequest(ChannelHandlerContext ctx, HttpRequest nettyRequest)
throws Exception {
Logger.trace("parseRequest: begin");
Logger.trace("parseRequest: URI = " + nettyRequest.getUri());
int index = nettyRequest.getUri().indexOf("?");
String querystring = "";
String uri = nettyRequest.getUri();
// Remove domain and port from URI if it's present.
if (uri.startsWith("http://") || uri.startsWith("https://")) {
// Begins searching / after 9th character (last / of https://)
uri = uri.substring(uri.indexOf("/", 9));
}
String path = URLDecoder.decode(uri, "UTF-8");
if (index != -1) {
path = URLDecoder.decode(uri.substring(0, index), "UTF-8");
querystring = uri.substring(index + 1);
}
final Request request = new Request();
request.remoteAddress = getRemoteIPAddress(ctx);
request.method = nettyRequest.getMethod().getName();
request.path = path;
request.querystring = querystring;
final String contentType = nettyRequest.getHeader(CONTENT_TYPE);
if (contentType != null) {
request.contentType = contentType.split(";")[0].trim().toLowerCase();
} else {
request.contentType = "text/html";
}
if (nettyRequest.getHeader("X-HTTP-Method-Override") != null) {
request.method = nettyRequest.getHeader("X-HTTP-Method-Override").intern();
}
ChannelBuffer b = nettyRequest.getContent();
if (b instanceof FileChannelBuffer) {
FileChannelBuffer buffer = (FileChannelBuffer) b;
// An error occurred
Integer max =
Integer.valueOf(Play.configuration.getProperty("play.netty.maxContentLength", "-1"));
request.body = buffer.getInputStream();
if (!(max == -1 || request.body.available() < max)) {
request.body = new ByteArrayInputStream(new byte[0]);
}
} else {
ByteArrayOutputStream out = new ByteArrayOutputStream();
IOUtils.copy(new ChannelBufferInputStream(b), out);
byte[] n = out.toByteArray();
request.body = new ByteArrayInputStream(n);
}
request.url = uri;
request.host = nettyRequest.getHeader(HOST);
request.isLoopback =
((InetSocketAddress) ctx.getChannel().getRemoteAddress()).getAddress().isLoopbackAddress()
&& request.host.matches("^127\\.0\\.0\\.1:?[0-9]*$");
if (request.host == null) {
request.host = "";
request.port = 80;
request.domain = "";
} else {
if (request.host.contains(":")) {
final String[] host = request.host.split(":");
request.port = Integer.parseInt(host[1]);
request.domain = host[0];
} else {
request.port = 80;
request.domain = request.host;
}
}
if (Play.configuration.containsKey("XForwardedSupport")
&& nettyRequest.getHeader("X-Forwarded-For") != null) {
if (!Arrays.asList(
Play.configuration.getProperty("XForwardedSupport", "127.0.0.1").split(","))
.contains(request.remoteAddress)) {
throw new RuntimeException(
"This proxy request is not authorized: " + request.remoteAddress);
} else {
request.secure =
("https".equals(Play.configuration.get("XForwardedProto"))
|| "https".equals(nettyRequest.getHeader("X-Forwarded-Proto"))
|| "on".equals(nettyRequest.getHeader("X-Forwarded-Ssl")));
if (Play.configuration.containsKey("XForwardedHost")) {
request.host = (String) Play.configuration.get("XForwardedHost");
} else if (nettyRequest.getHeader("X-Forwarded-Host") != null) {
request.host = nettyRequest.getHeader("X-Forwarded-Host");
}
if (nettyRequest.getHeader("X-Forwarded-For") != null) {
request.remoteAddress = nettyRequest.getHeader("X-Forwarded-For");
}
}
}
addToRequest(nettyRequest, request);
request.resolveFormat();
request._init();
Logger.trace("parseRequest: end");
return request;
}
@Override
public String getPath() {
return request.path();
}