Examples of sunlabs.brazil.server.Handler

• sunlabs.brazil.server.Handler
  The interface for writing HTTP handlers. Provides basic functionality to accept HTTP requests and dispatch to methods that handle the request.

  The {@link #init(Server,String)} method is called before thisHandler processes the first HTTP request, to allow it to prepare itself, such as by allocating any resources needed for the lifetime of the server.

  The {@link #respond(Request)} method is called to handle an HTTP request.This method, and all methods it calls must be thread-safe since they may handle HTTP requests from multiple sockets concurrently. However, each concurrent request gets its own individual {@link Request} object.

  Any instance variables should be initialized in the {@link #init(Server,String)}, and only referenced, but not set in the {@link #respond(Request)} method. If any state needs to be retained, it should be done either by associating it with the {@link Request}object, or using the {@link sunlabs.brazil.session.SessionManager session manager}. Class statics should be avoided, as it is possible, and even common to run multiple unrelated Brazil servers in the same JVM. As above, the {@link sunlabs.brazil.session.SessionManager session manager}should be used instead. @author Stephen Uhler (stephen.uhler@sun.com) @author Colin Stevens (colin.stevens@sun.com) @version 2.3

      } else if (request.url.endsWith(CONFIG_SET)) {
    Properties local = new Properties(server.props);
    request.getQueryData(local);

    String name = local.getProperty(HANDLER, "");
    Handler h = ChainHandler.initHandler(server, "", name);

    String result = "result=properties uploaded";
    if (h == null) {
        result = "error=properties malformed";
    } else {

      server.log(Server.LOG_DIAGNOSTIC, prefix,
        "role " + role + " prefix: " +
        server.props.get(proxyPrefix + PREFIX));
      try {
          Class proxyClass = Class.forName(PROXY_CLASS);
    Handler h = (Handler) proxyClass.newInstance();
    if (h.init(server, proxyPrefix)) {
        proxies.put(server.props.get(proxyPrefix + PREFIX),
          new RoleData(role, h));
    } else {
        server.log(Server.LOG_WARNING, prefix,
          "No proxy specified" +

  /*
   * See if this prefix matches one of the roles
   */

  Handler handler = null;    // the handler for this url
  String role = null;    // the role for this url
  Enumeration keys = proxies.keys();
  while(keys.hasMoreElements()) {
      String key = (String) keys.nextElement();
      if (request.url.startsWith(key)) {
    RoleData data = (RoleData) proxies.get(key);
    handler = data.handler;
    role = data.role;
    break;
      }
  }

  if (role == null) {
      request.log(Server.LOG_DIAGNOSTIC,"  No prefix match for: " +
        request.url);
      request.sendError(400, "Not found", "No matching role");
      return true;
  }

  /*
   * Set a browser cookie, if it doesn't exist
   */

  if (cookieValue == null) {
      do {
    cookieValue = Guid.getString();
      } while (cookieValue.length() < 14);
      cookieValue = cookieValue.substring(0,14);
      request.log(Server.LOG_DIAGNOSTIC,"  New cookie: " + cookieValue);
      request.addHeader("Set-Cookie", cookieName + "=" + cookieValue
        + "; path=" + UrlPrefix);
  }

  request.props.put("challenge", cookieValue);

  /*
   * No token, Send client the login page.  Then the request should
   * be re-issued by the client with the credentials in the query data.
   */

  if (!Token.haveToken(cookieValue)) {
      Token.getToken(cookieValue);  // create a blank token
      returnLogin(request, "");
      return true;
  }
  Token token = Token.getToken(cookieValue);

  /*
   * Have an empty token, Call the STS handler to get the
   * proper credentials.  The client card data should be
   * in the query data.   Make sure we add the challenge to the
   * query data.
   *
   * XXX Technicaly this is incorrect.  We need to generate our own request object, instead of
   * trying to pervert the original one.
   */

  if (token.getId() == null) {
      String save = request.url;
      request.url = authUrl;

      if (request.query.length() > 0) {
        request.query += "&random=" + cookieValue;
      } else {
        request.query = "random=" + cookieValue;
      }

      request.log(Server.LOG_DIAGNOSTIC,
        "  About to call token handler: " + authUrl
        + " query: " + request.query
        + " params: " + request.getQueryData(null)
        + " post: " + request.postData
        + " headers: " + request.headers
        + " request.method:" +  request.method );

      boolean ok = tokenHandler.respond(request);
      request.log(Server.LOG_DIAGNOSTIC, "  result " + ok + " (" +
        request.props + ")");
      request.url = save;

      /*
       * at this point we should have the credentials in the request.
       * If not - return to the login page.
       * If so, remember the credentials in our token object.
       */

      String id = (String) request.props.get(idKey);
      String error = request.props.getProperty("error", "unknown");
      if (id == null) {
    request.log(Server.LOG_DIAGNOSTIC, "   Can't find: " +
      idKey + " in request data");
    returnLogin(request, "No token id found in request data: " +
      error.substring(error.lastIndexOf(":")+1));
    return true;
      }
      String roles = (String) request.props.get(roleKey);
      if (roles == null) {
    request.log(Server.LOG_DIAGNOSTIC, "   Can't find: " +
      roleKey + " in request data");
    returnLogin(request, "No roles available for id " + id);
    return true;
      }
      token.setToken(id, roles);

      /*
       * Strip off the query data used for token validation.
       * This should restore the query info that was presented as
       * part of the original request.
       */

       // request.query="";
  }

  /*
   * Have a token, make sure its still valid.  If so, call the
   * proper handler, otherwise redirect to the login page with
   * the appropriate error message.  We should remember the URL,
   * so we can redirect back here when reauthentication is complete.
   */

  if (token.getAge() > maxAge || token.getIdle() > maxIdle ||
        token.getUses() > maxUses) {
      String message;
      if (token.getAge() > maxAge) {
        message = "Session is too old";
      } else if (token.getIdle() > maxIdle) {
    message = "Session was idle too long";
      } else {
    message = "Session was used up";
      }
      Token.removeToken(cookieValue);
      returnLogin(request, message);
      return true;
  }
  request.log(Server.LOG_DIAGNOSTIC, "Credentials check: " +
    " age=" + token.getAge() +
    " idle=" + token.getIdle() +
    " uses=" + token.getUses());

  /*
   * Now check the url against the list of allowed roles
   */

  Vector valid = token.getRoles();
  if (valid.contains(role)) {
      if (handler != null) {
    request.log(Server.LOG_DIAGNOSTIC, "  dispatching to proxy " + role);
    return handler.respond(request);
      } else {
    request.log(Server.LOG_DIAGNOSTIC, "  dispatching next handler");
    return false;
      }
  } else {