mirrors
/
sonarqube
镜像来自 https://github.com/SonarSource/sonarqube.git
關注 1
收藏 0
複製 0
程式碼 問題 0 版本發佈 237 Wiki 活動
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
27138 提交
59 分支
目錄樹: dbfde91e6e
分支列表 標籤
${ item.name }
建立分支 ${ searchTerm }
從 'dbfde91e6e'
${ noResults }
sonarqube/sonar-ws/src/main/java/org/sonarqube/ws/client/HttpConnector.java

HttpConnector.java 13KB
原始文件 Blame 歷史記錄

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2018 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonarqube.ws.client;

  21. 

  22. import java.io.IOException;

  23. import java.net.Proxy;

  24. import java.util.Map;

  25. import java.util.concurrent.TimeUnit;

  26. import javax.annotation.Nullable;

  27. import javax.net.ssl.SSLSocketFactory;

  28. import javax.net.ssl.X509TrustManager;

  29. import okhttp3.Call;

  30. import okhttp3.Credentials;

  31. import okhttp3.FormBody;

  32. import okhttp3.HttpUrl;

  33. import okhttp3.MediaType;

  34. import okhttp3.MultipartBody;

  35. import okhttp3.OkHttpClient;

  36. import okhttp3.Request;

  37. import okhttp3.RequestBody;

  38. import okhttp3.Response;

  39. 

  40. import static com.google.common.base.Preconditions.checkArgument;

  41. import static com.google.common.base.Strings.isNullOrEmpty;

  42. import static com.google.common.base.Strings.nullToEmpty;

  43. import static java.lang.String.format;

  44. import static java.net.HttpURLConnection.HTTP_MOVED_PERM;

  45. import static java.net.HttpURLConnection.HTTP_MOVED_TEMP;

  46. import static java.nio.charset.StandardCharsets.UTF_8;

  47. import static okhttp3.internal.http.StatusLine.HTTP_PERM_REDIRECT;

  48. import static okhttp3.internal.http.StatusLine.HTTP_TEMP_REDIRECT;

  49. 

  50. /**

  51.  * Connect to any SonarQube server available through HTTP or HTTPS.

  52.  * <p>TLS 1.0, 1.1 and 1.2 are supported on both Java 7 and 8. SSLv3 is not supported.</p>

  53.  * <p>The JVM system proxies are used.</p>

  54.  */

  55. public class HttpConnector implements WsConnector {

  56. 

  57.   public static final int DEFAULT_CONNECT_TIMEOUT_MILLISECONDS = 30_000;

  58.   public static final int DEFAULT_READ_TIMEOUT_MILLISECONDS = 60_000;

  59. 

  60.   /**

  61.    * Base URL with trailing slash, for instance "https://localhost/sonarqube/".

  62.    * It is required for further usage of {@link HttpUrl#resolve(String)}.

  63.    */

  64.   private final HttpUrl baseUrl;

  65.   private final String systemPassCode;

  66.   private final OkHttpClient okHttpClient;

  67.   private final OkHttpClient noRedirectOkHttpClient;

  68. 

  69.   private HttpConnector(Builder builder) {

  70.     this.baseUrl = HttpUrl.parse(builder.url.endsWith("/") ? builder.url : format("%s/", builder.url));

  71.     checkArgument(this.baseUrl != null, "Malformed URL: '%s'", builder.url);

  72. 

  73.     OkHttpClientBuilder okHttpClientBuilder = new OkHttpClientBuilder();

  74.     okHttpClientBuilder.setUserAgent(builder.userAgent);

  75. 

  76.     if (!isNullOrEmpty(builder.login)) {

  77.       // password is null when login represents an access token. In this case

  78.       // the Basic credentials consider an empty password.

  79.       okHttpClientBuilder.setCredentials(Credentials.basic(builder.login, nullToEmpty(builder.password), UTF_8));

  80.     }

  81.     this.systemPassCode = builder.systemPassCode;

  82.     okHttpClientBuilder.setProxy(builder.proxy);

  83.     okHttpClientBuilder.setProxyLogin(builder.proxyLogin);

  84.     okHttpClientBuilder.setProxyPassword(builder.proxyPassword);

  85.     okHttpClientBuilder.setConnectTimeoutMs(builder.connectTimeoutMs);

  86.     okHttpClientBuilder.setReadTimeoutMs(builder.readTimeoutMs);

  87.     okHttpClientBuilder.setSSLSocketFactory(builder.sslSocketFactory);

  88.     okHttpClientBuilder.setTrustManager(builder.sslTrustManager);

  89.     this.okHttpClient = okHttpClientBuilder.build();

  90.     this.noRedirectOkHttpClient = newClientWithoutRedirect(this.okHttpClient);

  91.   }

  92. 

  93.   private static OkHttpClient newClientWithoutRedirect(OkHttpClient client) {

  94.     return client.newBuilder()

  95.       .followRedirects(false)

  96.       .followSslRedirects(false)

  97.       .build();

  98.   }

  99. 

  100.   @Override

  101.   public String baseUrl() {

  102.     return baseUrl.url().toExternalForm();

  103.   }

  104. 

  105.   public OkHttpClient okHttpClient() {

  106.     return okHttpClient;

  107.   }

  108. 

  109.   @Override

  110.   public WsResponse call(WsRequest httpRequest) {

  111.     if (httpRequest instanceof GetRequest) {

  112.       return get((GetRequest) httpRequest);

  113.     }

  114.     if (httpRequest instanceof PostRequest) {

  115.       return post((PostRequest) httpRequest);

  116.     }

  117.     throw new IllegalArgumentException(format("Unsupported implementation: %s", httpRequest.getClass()));

  118.   }

  119. 

  120.   private WsResponse get(GetRequest getRequest) {

  121.     HttpUrl.Builder urlBuilder = prepareUrlBuilder(getRequest);

  122.     completeUrlQueryParameters(getRequest, urlBuilder);

  123. 

  124.     Request.Builder okRequestBuilder = prepareOkRequestBuilder(getRequest, urlBuilder).get();

  125.     return new OkHttpResponse(doCall(prepareOkHttpClient(okHttpClient, getRequest), okRequestBuilder.build()));

  126.   }

  127. 

  128.   private WsResponse post(PostRequest postRequest) {

  129.     HttpUrl.Builder urlBuilder = prepareUrlBuilder(postRequest);

  130. 

  131.     RequestBody body;

  132.     Map<String, PostRequest.Part> parts = postRequest.getParts();

  133.     if (parts.isEmpty()) {

  134.       // parameters are defined in the body (application/x-www-form-urlencoded)

  135.       FormBody.Builder formBody = new FormBody.Builder();

  136.       postRequest.getParameters().getKeys()

  137.         .forEach(key -> postRequest.getParameters().getValues(key)

  138.           .forEach(value -> formBody.add(key, value)));

  139.       body = formBody.build();

  140. 

  141.     } else {

  142.       // parameters are defined in the URL (as GET)

  143.       completeUrlQueryParameters(postRequest, urlBuilder);

  144. 

  145.       MultipartBody.Builder bodyBuilder = new MultipartBody.Builder().setType(MultipartBody.FORM);

  146.       parts.entrySet().forEach(param -> {

  147.         PostRequest.Part part = param.getValue();

  148.         bodyBuilder.addFormDataPart(

  149.           param.getKey(),

  150.           part.getFile().getName(),

  151.           RequestBody.create(MediaType.parse(part.getMediaType()), part.getFile()));

  152.       });

  153.       body = bodyBuilder.build();

  154.     }

  155.     Request.Builder okRequestBuilder = prepareOkRequestBuilder(postRequest, urlBuilder).post(body);

  156.     Response response = doCall(prepareOkHttpClient(noRedirectOkHttpClient, postRequest), okRequestBuilder.build());

  157.     response = checkRedirect(response, postRequest);

  158.     return new OkHttpResponse(response);

  159.   }

  160. 

  161.   private HttpUrl.Builder prepareUrlBuilder(WsRequest wsRequest) {

  162.     String path = wsRequest.getPath();

  163.     return baseUrl

  164.       .resolve(path.startsWith("/") ? path.replaceAll("^(/)+", "") : path)

  165.       .newBuilder();

  166.   }

  167. 

  168.   private static OkHttpClient prepareOkHttpClient(OkHttpClient okHttpClient, WsRequest wsRequest) {

  169.     if (!wsRequest.getTimeOutInMs().isPresent()) {

  170.       return okHttpClient;

  171.     }

  172. 

  173.     return okHttpClient.newBuilder()

  174.       .readTimeout(wsRequest.getTimeOutInMs().getAsInt(), TimeUnit.MILLISECONDS)

  175.       .build();

  176.   }

  177. 

  178.   private static void completeUrlQueryParameters(BaseRequest<?> request, HttpUrl.Builder urlBuilder) {

  179.     request.getParameters().getKeys()

  180.       .forEach(key -> request.getParameters().getValues(key)

  181.         .forEach(value -> urlBuilder.addQueryParameter(key, value)));

  182.   }

  183. 

  184.   private Request.Builder prepareOkRequestBuilder(WsRequest getRequest, HttpUrl.Builder urlBuilder) {

  185.     Request.Builder okHttpRequestBuilder = new Request.Builder()

  186.       .url(urlBuilder.build())

  187.       .header("Accept", getRequest.getMediaType())

  188.       .header("Accept-Charset", "UTF-8");

  189.     if (systemPassCode != null) {

  190.       okHttpRequestBuilder.header("X-Sonar-Passcode", systemPassCode);

  191.     }

  192.     getRequest.getHeaders().getNames().forEach(name -> okHttpRequestBuilder.header(name, getRequest.getHeaders().getValue(name).get()));

  193.     return okHttpRequestBuilder;

  194.   }

  195. 

  196.   private static Response doCall(OkHttpClient client, Request okRequest) {

  197.     Call call = client.newCall(okRequest);

  198.     try {

  199.       return call.execute();

  200.     } catch (IOException e) {

  201.       throw new IllegalStateException("Fail to request " + okRequest.url(), e);

  202.     }

  203.   }

  204. 

  205.   private Response checkRedirect(Response response, PostRequest postRequest) {

  206.     switch (response.code()) {

  207.       case HTTP_MOVED_PERM:

  208.       case HTTP_MOVED_TEMP:

  209.       case HTTP_TEMP_REDIRECT:

  210.       case HTTP_PERM_REDIRECT:

  211.         // OkHttpClient does not follow the redirect with the same HTTP method. A POST is

  212.         // redirected to a GET. Because of that the redirect must be manually implemented.

  213.         // See:

  214.         // https://github.com/square/okhttp/blob/07309c1c7d9e296014268ebd155ebf7ef8679f6c/okhttp/src/main/java/okhttp3/internal/http/RetryAndFollowUpInterceptor.java#L316

  215.         // https://github.com/square/okhttp/issues/936#issuecomment-266430151

  216.         return followPostRedirect(response, postRequest);

  217.       default:

  218.         return response;

  219.     }

  220.   }

  221. 

  222.   private Response followPostRedirect(Response response, PostRequest postRequest) {

  223.     String location = response.header("Location");

  224.     if (location == null) {

  225.       throw new IllegalStateException(format("Missing HTTP header 'Location' in redirect of %s", response.request().url()));

  226.     }

  227.     HttpUrl url = response.request().url().resolve(location);

  228. 

  229.     // Don't follow redirects to unsupported protocols.

  230.     if (url == null) {

  231.       throw new IllegalStateException(format("Unsupported protocol in redirect of %s to %s", response.request().url(), location));

  232.     }

  233. 

  234.     Request.Builder redirectRequest = response.request().newBuilder();

  235.     redirectRequest.post(response.request().body());

  236.     response.body().close();

  237.     return doCall(prepareOkHttpClient(noRedirectOkHttpClient, postRequest), redirectRequest.url(url).build());

  238.   }

  239. 

  240.   /**

  241.    * @since 5.5

  242.    */

  243.   public static Builder newBuilder() {

  244.     return new Builder();

  245.   }

  246. 

  247.   public static class Builder {

  248.     private String url;

  249.     private String userAgent;

  250.     private String login;

  251.     private String password;

  252.     private Proxy proxy;

  253.     private String proxyLogin;

  254.     private String proxyPassword;

  255.     private String systemPassCode;

  256.     private int connectTimeoutMs = DEFAULT_CONNECT_TIMEOUT_MILLISECONDS;

  257.     private int readTimeoutMs = DEFAULT_READ_TIMEOUT_MILLISECONDS;

  258.     private SSLSocketFactory sslSocketFactory = null;

  259.     private X509TrustManager sslTrustManager = null;

  260. 

  261.     /**

  262.      * Private since 5.5.

  263.      *

  264.      * @see HttpConnector#newBuilder()

  265.      */

  266.     private Builder() {

  267.     }

  268. 

  269.     /**

  270.      * Optional User  Agent

  271.      */

  272.     public Builder userAgent(@Nullable String userAgent) {

  273.       this.userAgent = userAgent;

  274.       return this;

  275.     }

  276. 

  277.     /**

  278.      * Mandatory HTTP server URL, eg "http://localhost:9000"

  279.      */

  280.     public Builder url(String url) {

  281.       this.url = url;

  282.       return this;

  283.     }

  284. 

  285.     /**

  286.      * Optional login/password, for example "admin"

  287.      */

  288.     public Builder credentials(@Nullable String login, @Nullable String password) {

  289.       this.login = login;

  290.       this.password = password;

  291.       return this;

  292.     }

  293. 

  294.     /**

  295.      * Optional access token, for example {@code "ABCDE"}. Alternative to {@link #credentials(String, String)}

  296.      */

  297.     public Builder token(@Nullable String token) {

  298.       this.login = token;

  299.       this.password = null;

  300.       return this;

  301.     }

  302. 

  303.     /**

  304.      * Sets a specified timeout value, in milliseconds, to be used when opening HTTP connection.

  305.      * A timeout of zero is interpreted as an infinite timeout. Default value is {@link #DEFAULT_CONNECT_TIMEOUT_MILLISECONDS}

  306.      */

  307.     public Builder connectTimeoutMilliseconds(int i) {

  308.       this.connectTimeoutMs = i;

  309.       return this;

  310.     }

  311. 

  312.     /**

  313.      * Optional SSL socket factory with which SSL sockets will be created to establish SSL connections.

  314.      * If not set, a default SSL socket factory will be used, base d on the JVM's default key store.

  315.      */

  316.     public Builder setSSLSocketFactory(@Nullable SSLSocketFactory sslSocketFactory) {

  317.       this.sslSocketFactory = sslSocketFactory;

  318.       return this;

  319.     }

  320. 

  321.     /**

  322.      * Optional SSL trust manager used to validate certificates.

  323.      * If not set, a default system trust manager will be used, based on the JVM's default truststore.

  324.      */

  325.     public Builder setTrustManager(@Nullable X509TrustManager sslTrustManager) {

  326.       this.sslTrustManager = sslTrustManager;

  327.       return this;

  328.     }

  329. 

  330.     /**

  331.      * Sets the read timeout to a specified timeout, in milliseconds.

  332.      * A timeout of zero is interpreted as an infinite timeout. Default value is {@link #DEFAULT_READ_TIMEOUT_MILLISECONDS}

  333.      */

  334.     public Builder readTimeoutMilliseconds(int i) {

  335.       this.readTimeoutMs = i;

  336.       return this;

  337.     }

  338. 

  339.     public Builder proxy(@Nullable Proxy proxy) {

  340.       this.proxy = proxy;

  341.       return this;

  342.     }

  343. 

  344.     public Builder proxyCredentials(@Nullable String proxyLogin, @Nullable String proxyPassword) {

  345.       this.proxyLogin = proxyLogin;

  346.       this.proxyPassword = proxyPassword;

  347.       return this;

  348.     }

  349. 

  350.     public Builder systemPassCode(@Nullable String systemPassCode) {

  351.       this.systemPassCode = systemPassCode;

  352.       return this;

  353.     }

  354. 

  355.     public HttpConnector build() {

  356.       checkArgument(!isNullOrEmpty(url), "Server URL is not defined");

  357.       return new HttpConnector(this);

  358.     }

  359.   }

  360. 

  361. }