mirrors
/
archiva
mirror of https://github.com/apache/archiva.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 70 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2560 Commits
73 Branches
Tree: 6681581426
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '6681581426'
${ noResults }
archiva/archiva-modules/archiva-web/archiva-webdav/src/main/java/org/apache/maven/archiva/webdav/RepositoryServlet.java

RepositoryServlet.java 9.7KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282 
  1. package org.apache.maven.archiva.webdav;

  2. 

  3. /*

  4.  * Licensed to the Apache Software Foundation (ASF) under one

  5.  * or more contributor license agreements.  See the NOTICE file

  6.  * distributed with this work for additional information

  7.  * regarding copyright ownership.  The ASF licenses this file

  8.  * to you under the Apache License, Version 2.0 (the

  9.  * "License"); you may not use this file except in compliance

  10.  * with the License.  You may obtain a copy of the License at

  11.  *

  12.  *  http://www.apache.org/licenses/LICENSE-2.0

  13.  *

  14.  * Unless required by applicable law or agreed to in writing,

  15.  * software distributed under the License is distributed on an

  16.  * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY

  17.  * KIND, either express or implied.  See the License for the

  18.  * specific language governing permissions and limitations

  19.  * under the License.

  20.  */

  21. 

  22. import java.io.File;

  23. import java.io.IOException;

  24. import java.util.Map;

  25. 

  26. import javax.servlet.ServletConfig;

  27. import javax.servlet.ServletException;

  28. import javax.servlet.http.HttpServletRequest;

  29. import javax.servlet.http.HttpServletResponse;

  30. 

  31. import org.apache.jackrabbit.webdav.DavException;

  32. import org.apache.jackrabbit.webdav.DavLocatorFactory;

  33. import org.apache.jackrabbit.webdav.DavMethods;

  34. import org.apache.jackrabbit.webdav.DavResource;

  35. import org.apache.jackrabbit.webdav.DavResourceFactory;

  36. import org.apache.jackrabbit.webdav.DavServletResponse;

  37. import org.apache.jackrabbit.webdav.DavSessionProvider;

  38. import org.apache.jackrabbit.webdav.WebdavRequest;

  39. import org.apache.jackrabbit.webdav.WebdavRequestImpl;

  40. import org.apache.jackrabbit.webdav.WebdavResponse;

  41. import org.apache.jackrabbit.webdav.WebdavResponseImpl;

  42. import org.apache.jackrabbit.webdav.server.AbstractWebdavServlet;

  43. import org.apache.maven.archiva.configuration.ArchivaConfiguration;

  44. import org.apache.maven.archiva.configuration.ConfigurationEvent;

  45. import org.apache.maven.archiva.configuration.ConfigurationListener;

  46. import org.apache.maven.archiva.configuration.ManagedRepositoryConfiguration;

  47. import org.apache.maven.archiva.security.ServletAuthenticator;

  48. import org.codehaus.plexus.spring.PlexusToSpringUtils;

  49. import org.codehaus.redback.integration.filter.authentication.HttpAuthenticator;

  50. import org.slf4j.Logger;

  51. import org.slf4j.LoggerFactory;

  52. import org.springframework.web.context.WebApplicationContext;

  53. import org.springframework.web.context.support.WebApplicationContextUtils;

  54. 

  55. /**

  56.  * RepositoryServlet

  57.  * 

  58.  * @version $Id$

  59.  */

  60. public class RepositoryServlet

  61.     extends AbstractWebdavServlet

  62.     implements ConfigurationListener

  63. {

  64.     private Logger log = LoggerFactory.getLogger( RepositoryServlet.class );

  65. 

  66.     private ArchivaConfiguration configuration;

  67. 

  68.     private Map<String, ManagedRepositoryConfiguration> repositoryMap;

  69. 

  70.     private DavLocatorFactory locatorFactory;

  71. 

  72.     private DavResourceFactory resourceFactory;

  73. 

  74.     private DavSessionProvider sessionProvider;

  75. 

  76.     private final Object reloadLock = new Object();

  77. 

  78.     public void init( javax.servlet.ServletConfig servletConfig )

  79.         throws ServletException

  80.     {

  81.         super.init( servletConfig );

  82.         initServers( servletConfig );

  83.     }

  84. 

  85.     /**

  86.      * Service the given request. This method has been overridden and copy/pasted to allow better exception handling and

  87.      * to support different realms

  88.      * 

  89.      * @param request

  90.      * @param response

  91.      * @throws ServletException

  92.      * @throws java.io.IOException

  93.      */

  94.     @Override

  95.     protected void service( HttpServletRequest request, HttpServletResponse response )

  96.         throws ServletException, IOException

  97.     {

  98.         WebdavRequest webdavRequest = new WebdavRequestImpl( request, getLocatorFactory() );

  99.         // DeltaV requires 'Cache-Control' header for all methods except 'VERSION-CONTROL' and 'REPORT'.

  100.         int methodCode = DavMethods.getMethodCode( request.getMethod() );

  101.         boolean noCache =

  102.             DavMethods.isDeltaVMethod( webdavRequest ) &&

  103.                 !( DavMethods.DAV_VERSION_CONTROL == methodCode || DavMethods.DAV_REPORT == methodCode );

  104.         WebdavResponse webdavResponse = new WebdavResponseImpl( response, noCache );

  105.         DavResource resource = null;

  106.         

  107.         try

  108.         {   

  109.             // make sure there is a authenticated user

  110.             if ( !getDavSessionProvider().attachSession( webdavRequest ) )

  111.             {

  112.                 return;

  113.             }

  114. 

  115.             // check matching if=header for lock-token relevant operations

  116.             resource =

  117.                 getResourceFactory().createResource( webdavRequest.getRequestLocator(), webdavRequest, webdavResponse );

  118.             

  119.             if ( !isPreconditionValid( webdavRequest, resource ) )

  120.             {

  121.                 webdavResponse.sendError( DavServletResponse.SC_PRECONDITION_FAILED );

  122.                 return;

  123.             }

  124.             if ( !execute( webdavRequest, webdavResponse, methodCode, resource ) )

  125.             {

  126.                 super.service( request, response );

  127.             }

  128. 

  129.         }

  130.         catch ( UnauthorizedDavException e )

  131.         {

  132.             webdavResponse.setHeader( "WWW-Authenticate", getAuthenticateHeaderValue( e.getRepositoryName() ) );

  133.             webdavResponse.sendError( e.getErrorCode(), e.getStatusPhrase() );

  134.         }

  135.         catch ( BrowserRedirectException e )

  136.         {

  137.             response.sendRedirect( e.getLocation() );

  138.         }

  139.         catch ( DavException e )

  140.         {

  141.             if ( e.getErrorCode() == HttpServletResponse.SC_UNAUTHORIZED )

  142.             {

  143.                 final String msg = "Should throw " + UnauthorizedDavException.class.getName();

  144.                 log.error( msg );

  145.                 webdavResponse.sendError( e.getErrorCode(), msg );

  146.             }

  147.             else if ( e.getCause() != null )

  148.             {

  149.                 webdavResponse.sendError( e.getErrorCode(), e.getCause().getMessage() );

  150.             }

  151.             else

  152.             {

  153.                 webdavResponse.sendError( e.getErrorCode(), e.getMessage() );

  154.             }

  155.         }

  156.         finally

  157.         {  

  158.             getDavSessionProvider().releaseSession( webdavRequest );

  159.         }

  160.     }

  161. 

  162.     public synchronized void initServers( ServletConfig servletConfig )

  163.     {

  164.         WebApplicationContext wac =

  165.             WebApplicationContextUtils.getRequiredWebApplicationContext( servletConfig.getServletContext() );

  166. 

  167.         configuration =

  168.             (ArchivaConfiguration) wac.getBean( PlexusToSpringUtils.buildSpringId( ArchivaConfiguration.class.getName() ) );

  169.         configuration.addListener( this );

  170. 

  171.         repositoryMap = configuration.getConfiguration().getManagedRepositoriesAsMap();

  172. 

  173.         for ( ManagedRepositoryConfiguration repo : repositoryMap.values() )

  174.         {

  175.             File repoDir = new File( repo.getLocation() );

  176. 

  177.             if ( !repoDir.exists() )

  178.             {

  179.                 if ( !repoDir.mkdirs() )

  180.                 {

  181.                     // Skip invalid directories.

  182.                     log( "Unable to create missing directory for " + repo.getLocation() );

  183.                     continue;

  184.                 }

  185.             }

  186.         }

  187. 

  188.         resourceFactory =

  189.             (DavResourceFactory) wac.getBean( PlexusToSpringUtils.buildSpringId( ArchivaDavResourceFactory.class ) );        

  190.         locatorFactory = new ArchivaDavLocatorFactory();

  191.         

  192.         ServletAuthenticator servletAuth =

  193.             (ServletAuthenticator) wac.getBean( PlexusToSpringUtils.buildSpringId( ServletAuthenticator.class.getName() ) );

  194.         HttpAuthenticator httpAuth =

  195.             (HttpAuthenticator) wac.getBean( PlexusToSpringUtils.buildSpringId( HttpAuthenticator.ROLE, "basic" ) );

  196.         

  197.         sessionProvider = new ArchivaDavSessionProvider( servletAuth, httpAuth );

  198.     }

  199. 

  200.     public void configurationEvent( ConfigurationEvent event )

  201.     {

  202.         if ( event.getType() == ConfigurationEvent.SAVED )

  203.         {

  204.             initRepositories();

  205.         }

  206.     }

  207. 

  208.     private void initRepositories()

  209.     {

  210.         synchronized ( repositoryMap )

  211.         {

  212.             repositoryMap.clear();

  213.             repositoryMap.putAll( configuration.getConfiguration().getManagedRepositoriesAsMap() );

  214.         }

  215. 

  216.         synchronized ( reloadLock )

  217.         {

  218.             initServers( getServletConfig() );

  219.         }

  220.     }

  221. 

  222.     public synchronized ManagedRepositoryConfiguration getRepository( String prefix )

  223.     {

  224.         if ( repositoryMap.isEmpty() )

  225.         {

  226.             repositoryMap.putAll( configuration.getConfiguration().getManagedRepositoriesAsMap() );

  227.         }

  228.         return repositoryMap.get( prefix );

  229.     }

  230. 

  231.     ArchivaConfiguration getConfiguration()

  232.     {

  233.         return configuration;

  234.     }

  235. 

  236.     protected boolean isPreconditionValid( final WebdavRequest request, final DavResource davResource )

  237.     {

  238.         // check for read or write access to the resource when resource-based permission is implemented

  239.         

  240.         return true;

  241.     }

  242. 

  243.     public DavSessionProvider getDavSessionProvider()

  244.     {

  245.         return sessionProvider;

  246.     }

  247. 

  248.     public void setDavSessionProvider( final DavSessionProvider davSessionProvider )

  249.     {

  250.         this.sessionProvider = davSessionProvider;

  251.     }

  252. 

  253.     public DavLocatorFactory getLocatorFactory()

  254.     {

  255.         return locatorFactory;

  256.     }

  257. 

  258.     public void setLocatorFactory( final DavLocatorFactory davLocatorFactory )

  259.     {

  260.         locatorFactory = davLocatorFactory;

  261.     }

  262. 

  263.     public DavResourceFactory getResourceFactory()

  264.     {

  265.         return resourceFactory;

  266.     }

  267. 

  268.     public void setResourceFactory( final DavResourceFactory davResourceFactory )

  269.     {

  270.         resourceFactory = davResourceFactory;

  271.     }

  272. 

  273.     public String getAuthenticateHeaderValue()

  274.     {

  275.         throw new UnsupportedOperationException();

  276.     }

  277. 

  278.     public String getAuthenticateHeaderValue( String repository )

  279.     {

  280.         return "Basic realm=\"Repository Archiva Managed " + repository + " Repository\"";

  281.     }

  282. }