mirrors
/
vaadin-framework
mirror of https://github.com/vaadin/framework.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 330 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
19081 Commits
114 Branches
Tree: f70bc4269c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f70bc4269c'
${ noResults }
vaadin-framework/server/src/main/java/com/vaadin/server/VaadinServletService.java

VaadinServletService.java 10KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298 
  1. /*

  2.  * Copyright 2000-2021 Vaadin Ltd.

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License"); you may not

  5.  * use this file except in compliance with the License. You may obtain a copy of

  6.  * the License at

  7.  *

  8.  * http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT

  12.  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the

  13.  * License for the specific language governing permissions and limitations under

  14.  * the License.

  15.  */

  16. 

  17. package com.vaadin.server;

  18. 

  19. import java.io.File;

  20. import java.io.IOException;

  21. import java.io.InputStream;

  22. import java.net.MalformedURLException;

  23. import java.net.URL;

  24. import java.util.List;

  25. import java.util.logging.Level;

  26. import java.util.logging.Logger;

  27. 

  28. import javax.servlet.http.HttpServletRequest;

  29. 

  30. import com.vaadin.server.communication.PushRequestHandler;

  31. import com.vaadin.server.communication.ServletBootstrapHandler;

  32. import com.vaadin.server.communication.ServletUIInitHandler;

  33. import com.vaadin.ui.UI;

  34. 

  35. public class VaadinServletService extends VaadinService {

  36. 

  37.     /**

  38.      * Should never be used directly, always use {@link #getServlet()}

  39.      */

  40.     private final VaadinServlet servlet;

  41. 

  42.     public VaadinServletService(VaadinServlet servlet,

  43.             DeploymentConfiguration deploymentConfiguration)

  44.             throws ServiceException {

  45.         super(deploymentConfiguration);

  46.         this.servlet = servlet;

  47.     }

  48. 

  49.     /**

  50.      * Creates a servlet service. This method is for use by dependency injection

  51.      * frameworks etc. {@link #getServlet()} should be overridden (or otherwise

  52.      * intercepted) so it does not return <code>null</code>.

  53.      *

  54.      * @since 8.2

  55.      */

  56.     protected VaadinServletService() {

  57.         servlet = null;

  58.     }

  59. 

  60.     @Override

  61.     protected List<RequestHandler> createRequestHandlers()

  62.             throws ServiceException {

  63.         List<RequestHandler> handlers = super.createRequestHandlers();

  64.         handlers.add(0, new ServletBootstrapHandler());

  65.         handlers.add(new ServletUIInitHandler());

  66.         if (isAtmosphereAvailable()) {

  67.             try {

  68.                 handlers.add(new PushRequestHandler(this));

  69.             } catch (ServiceException e) {

  70.                 // Atmosphere init failed. Push won't work but we don't throw a

  71.                 // service exception as we don't want to prevent non-push

  72.                 // applications from working

  73.                 getLogger().log(Level.WARNING,

  74.                         "Error initializing Atmosphere. Push will not work.",

  75.                         e);

  76.             }

  77.         }

  78.         return handlers;

  79.     }

  80. 

  81.     /**

  82.      * Retrieves a reference to the servlet associated with this service. Should

  83.      * be overridden (or otherwise intercepted) if the no-arg constructor is

  84.      * used to prevent NPEs.

  85.      *

  86.      * @return A reference to the VaadinServlet this service is using

  87.      */

  88.     public VaadinServlet getServlet() {

  89.         return servlet;

  90.     }

  91. 

  92.     @Override

  93.     public String getStaticFileLocation(VaadinRequest request) {

  94.         VaadinServletRequest servletRequest = (VaadinServletRequest) request;

  95.         String staticFileLocation;

  96.         // if property is defined in configurations, use that

  97.         staticFileLocation = getDeploymentConfiguration().getResourcesPath();

  98.         if (staticFileLocation != null) {

  99.             return staticFileLocation;

  100.         }

  101. 

  102.         // the last (but most common) option is to generate default location

  103.         // from request by finding how many "../" should be added to the

  104.         // requested path before we get to the context root

  105. 

  106.         String requestedPath = servletRequest.getServletPath();

  107.         String pathInfo = servletRequest.getPathInfo();

  108.         if (pathInfo != null) {

  109.             requestedPath += pathInfo;

  110.         }

  111. 

  112.         return getCancelingRelativePath(requestedPath);

  113.     }

  114. 

  115.     /**

  116.      * Gets a relative path that cancels the provided path. This essentially

  117.      * adds one .. for each part of the path to cancel.

  118.      *

  119.      * @param pathToCancel

  120.      *            the path that should be canceled

  121.      * @return a relative path that cancels out the provided path segment

  122.      */

  123.     public static String getCancelingRelativePath(String pathToCancel) {

  124.         StringBuilder sb = new StringBuilder(".");

  125.         // Start from i = 1 to ignore first slash

  126.         for (int i = 1; i < pathToCancel.length(); i++) {

  127.             if (pathToCancel.charAt(i) == '/') {

  128.                 sb.append("/..");

  129.             }

  130.         }

  131.         return sb.toString();

  132.     }

  133. 

  134.     /**

  135.      * Gets a relative path you can use to refer to the context root.

  136.      *

  137.      * @param request

  138.      *            the request for which the location should be determined

  139.      * @return A relative path to the context root. Never ends with a slash (/).

  140.      *

  141.      * @since 8.0.3

  142.      */

  143.     public static String getContextRootRelativePath(VaadinRequest request) {

  144.         VaadinServletRequest servletRequest = (VaadinServletRequest) request;

  145.         // Generate location from the request by finding how many "../" should

  146.         // be added to the servlet path before we get to the context root

  147. 

  148.         String servletPath = servletRequest.getServletPath();

  149.         if (servletPath == null) {

  150.             // Not allowed by the spec but servers are servers...

  151.             servletPath = "";

  152.         }

  153. 

  154.         String pathInfo = servletRequest.getPathInfo();

  155.         if (pathInfo != null && !pathInfo.isEmpty()) {

  156.             servletPath += pathInfo;

  157.         }

  158. 

  159.         return getCancelingRelativePath(servletPath);

  160.     }

  161. 

  162.     @Override

  163.     public String getConfiguredWidgetset(VaadinRequest request) {

  164.         return getDeploymentConfiguration()

  165.                 .getWidgetset(VaadinServlet.DEFAULT_WIDGETSET);

  166.     }

  167. 

  168.     @Override

  169.     public String getConfiguredTheme(VaadinRequest request) {

  170.         // Use the default

  171.         return VaadinServlet.getDefaultTheme();

  172.     }

  173. 

  174.     @Override

  175.     public boolean isStandalone(VaadinRequest request) {

  176.         return true;

  177.     }

  178. 

  179.     @Override

  180.     public String getMimeType(String resourceName) {

  181.         return getServlet().getServletContext().getMimeType(resourceName);

  182.     }

  183. 

  184.     @Override

  185.     public File getBaseDirectory() {

  186.         final String realPath = VaadinServlet

  187.                 .getResourcePath(getServlet().getServletContext(), "/");

  188.         if (realPath == null) {

  189.             return null;

  190.         }

  191.         return new File(realPath);

  192.     }

  193. 

  194.     @Override

  195.     protected boolean requestCanCreateSession(VaadinRequest request) {

  196.         if (ServletUIInitHandler.isUIInitRequest(request)) {

  197.             // This is the first request if you are embedding by writing the

  198.             // embedding code yourself

  199.             return true;

  200.         } else if (isOtherRequest(request)) {

  201.             /*

  202.              * I.e URIs that are not RPC calls or static (theme) files.

  203.              */

  204.             return true;

  205.         }

  206. 

  207.         return false;

  208.     }

  209. 

  210.     private boolean isOtherRequest(VaadinRequest request) {

  211.         // TODO This should be refactored in some way. It should not be

  212.         // necessary to check all these types.

  213.         return (!ServletPortletHelper.isAppRequest(request)

  214.                 && !ServletUIInitHandler.isUIInitRequest(request)

  215.                 && !ServletPortletHelper.isFileUploadRequest(request)

  216.                 && !ServletPortletHelper.isHeartbeatRequest(request)

  217.                 && !ServletPortletHelper.isPublishedFileRequest(request)

  218.                 && !ServletPortletHelper.isUIDLRequest(request)

  219.                 && !ServletPortletHelper.isPushRequest(request));

  220.     }

  221. 

  222.     @Override

  223.     protected URL getApplicationUrl(VaadinRequest request)

  224.             throws MalformedURLException {

  225.         return getServlet().getApplicationUrl((VaadinServletRequest) request);

  226.     }

  227. 

  228.     public static HttpServletRequest getCurrentServletRequest() {

  229.         return VaadinServletRequest.getCurrent();

  230.     }

  231. 

  232.     public static VaadinServletResponse getCurrentResponse() {

  233.         return VaadinServletResponse.getCurrent();

  234.     }

  235. 

  236.     @Override

  237.     public String getServiceName() {

  238.         return getServlet().getServletName();

  239.     }

  240. 

  241.     @Override

  242.     public InputStream getThemeResourceAsStream(UI uI, String themeName,

  243.             String resource) throws IOException {

  244.         String filename = "/" + VaadinServlet.THEME_DIR_PATH + '/' + themeName

  245.                 + "/" + resource;

  246.         URL resourceUrl = getServlet().findResourceURL(filename);

  247. 

  248.         if (resourceUrl != null) {

  249.             // security check: do not permit navigation out of the VAADIN

  250.             // directory

  251.             if (!getServlet().isAllowedVAADINResourceUrl(null, resourceUrl)) {

  252.                 throw new IOException(

  253.                         String.format(

  254.                                 "Requested resource [%s] is a directory, "

  255.                                         + "is not within the VAADIN directory, "

  256.                                         + "or access to it is forbidden.",

  257.                                 filename));

  258.             }

  259. 

  260.             return resourceUrl.openStream();

  261.         } else {

  262.             return null;

  263.         }

  264.     }

  265. 

  266.     @Override

  267.     public String getMainDivId(VaadinSession session, VaadinRequest request,

  268.             Class<? extends UI> uiClass) {

  269.         String appId = null;

  270.         try {

  271.             URL appUrl = getServlet()

  272.                     .getApplicationUrl((VaadinServletRequest) request);

  273.             appId = appUrl.getPath();

  274.         } catch (MalformedURLException e) {

  275.             // Just ignore problem here

  276.         }

  277. 

  278.         if (appId == null || appId.isEmpty() || "/".equals(appId)) {

  279.             appId = "ROOT";

  280.         }

  281.         appId = appId.replaceAll("[^a-zA-Z0-9]", "");

  282.         // Add hashCode to the end, so that it is still (sort of)

  283.         // predictable, but indicates that it should not be used in CSS

  284.         // and

  285.         // such:

  286.         int hashCode = appId.hashCode();

  287.         if (hashCode < 0) {

  288.             hashCode = -hashCode;

  289.         }

  290.         appId = appId + "-" + hashCode;

  291.         return appId;

  292.     }

  293. 

  294.     private static final Logger getLogger() {

  295.         return Logger.getLogger(VaadinServletService.class.getName());

  296.     }

  297. 

  298. }