Context Navigation

source: main/trunk/greenstone3/src/java/org/greenstone/gsdl3/LibraryServlet.java@ 27073

Last change on this file since 27073 was 27073, checked in by sjm84, 11 years ago
Reformatting this file ahead of some changes
Property svn:keywords set to `Author Date Id Revision`
File size: 34.2 KB

Line
1	package org.greenstone.gsdl3;
2
3	import java.io.IOException;
4	import java.io.PrintWriter;
5	import java.io.Serializable;
6	import java.lang.reflect.Type;
7	import java.util.ArrayList;
8	import java.util.Enumeration;
9	import java.util.HashMap;
10	import java.util.Hashtable;
11	import java.util.Iterator;
12	import java.util.List;
13	import java.util.Map;
14
15	import javax.servlet.ServletConfig;
16	import javax.servlet.ServletException;
17	import javax.servlet.http.Cookie;
18	import javax.servlet.http.HttpServletRequest;
19	import javax.servlet.http.HttpServletResponse;
20	import javax.servlet.http.HttpSession;
21	import javax.servlet.http.HttpSessionBindingEvent;
22	import javax.servlet.http.HttpSessionBindingListener;
23
24	import org.apache.commons.lang3.StringUtils;
25	import org.apache.log4j.Logger;
26	import org.greenstone.gsdl3.action.PageAction;
27	import org.greenstone.gsdl3.comms.Communicator;
28	import org.greenstone.gsdl3.comms.SOAPCommunicator;
29	import org.greenstone.gsdl3.core.DefaultReceptionist;
30	import org.greenstone.gsdl3.core.MessageRouter;
31	import org.greenstone.gsdl3.core.Receptionist;
32	import org.greenstone.gsdl3.service.Authentication;
33	import org.greenstone.gsdl3.util.GSConstants;
34	import org.greenstone.gsdl3.util.GSParams;
35	import org.greenstone.gsdl3.util.GSXML;
36	import org.greenstone.gsdl3.util.UserContext;
37	import org.greenstone.gsdl3.util.XMLConverter;
38	import org.json.JSONObject;
39	import org.w3c.dom.Document;
40	import org.w3c.dom.Element;
41	import org.w3c.dom.Node;
42	import org.w3c.dom.NodeList;
43
44	import com.google.gson.Gson;
45	import com.google.gson.reflect.TypeToken;
46
47	/**
48	* a servlet to serve the greenstone library - we are using servlets instead of
49	* cgi the init method is called only once - the first time the servlet classes
50	* are loaded. Each time a request comes in to the servlet, the session() method
51	* is called in a new thread (calls doGet/doPut etc) takes the a=p&p=home type
52	* args and builds a simple request to send to its receptionist, which returns a
53	* result in html, cos output=html is set in the request
54	*
55	* 18/Jul/07 xiao modify to make the cached parameters collection-specific. Most
56	* of the work is done in doGet(), except adding an inner class
57	* UserSessionCache.
58	*
59	* @see Receptionist
60	*/
61	public class LibraryServlet extends BaseGreenstoneServlet
62	{
63	/** the receptionist to send messages to */
64	protected Receptionist recept = null;
65
66	/**
67	* the default language - is specified by setting a servlet param, otherwise
68	* DEFAULT_LANG is used
69	*/
70	protected String default_lang = null;
71
72	/** Whether or not client-side XSLT support should be exposed */
73	protected boolean supports_client_xslt = false;
74
75	/**
76	* The default default - used if a default lang is not specified in the
77	* servlet params
78	*/
79	protected final String DEFAULT_LANG = "en";
80
81	/** container Document to create XML Nodes */
82	protected Document doc = null;
83
84	/** a converter class to parse XML and create Docs */
85	protected XMLConverter converter = null;
86
87	/**
88	* the cgi stuff - the Receptionist can add new args to this
89	*
90	* its used by the servlet to determine what args to save
91	*/
92	protected GSParams params = null;
93
94	/**
95	* user id - new one per session. This doesn't work if session state is
96	* saved between restarts - this requires this value to be saved too.
97	*/
98	protected int next_user_id = 0;
99
100	/**
101	* a hash that contains all the active session IDs mapped to the cached
102	* items It is updated whenever the whole site or a particular collection is
103	* reconfigured using the command a=s&sa=c or a=s&sa=c&c=xxx It is in the
104	* form: sid -> (UserSessionCache object)
105	*/
106	protected Hashtable<String, UserSessionCache> session_ids_table = new Hashtable<String, UserSessionCache>();
107
108	/**
109	* the maximum interval that the cached info remains in session_ids_table
110	* (in seconds) This is set in web.xml
111	*/
112	protected int session_expiration = 1800;
113
114	static Logger logger = Logger.getLogger(org.greenstone.gsdl3.LibraryServlet.class.getName());
115
116	/** initialise the servlet */
117	public void init(ServletConfig config) throws ServletException
118	{
119	// always call super.init;
120	super.init(config);
121	// disable preferences - does this work anyway??
122	//System.setProperty("java.util.prefs.PreferencesFactory", "org.greenstone.gsdl3.util.DisabledPreferencesFactory");
123
124	String library_name = config.getInitParameter(GSConstants.LIBRARY_NAME);
125	String interface_name = config.getInitParameter(GSConstants.INTERFACE_NAME);
126
127	String allowXslt = (String) config.getInitParameter(GSConstants.ALLOW_CLIENT_SIDE_XSLT);
128	supports_client_xslt = allowXslt != null && allowXslt.equals("true");
129
130	this.default_lang = config.getInitParameter(GSConstants.DEFAULT_LANG);
131	String sess_expire = config.getInitParameter(GSXML.SESSION_EXPIRATION);
132
133	if (sess_expire != null && !sess_expire.equals(""))
134	{
135	this.session_expiration = Integer.parseInt(sess_expire);
136	}
137
138	if (library_name == null \|\| interface_name == null)
139	{
140	// must have this
141	System.err.println("initialisation parameters not all set!");
142	System.err.println(" you must have libraryname and interfacename");
143	System.exit(1);
144	}
145
146	String site_name = config.getInitParameter(GSConstants.SITE_NAME);
147	String remote_site_name = null;
148	String remote_site_type = null;
149	String remote_site_address = null;
150
151	if (site_name == null)
152	{
153	// no site, try for communicator
154	remote_site_name = config.getInitParameter("remote_site_name");
155	remote_site_type = config.getInitParameter("remote_site_type");
156	remote_site_address = config.getInitParameter("remote_site_address");
157	if (remote_site_name == null \|\| remote_site_type == null \|\| remote_site_address == null)
158	{
159	System.err.println("initialisation paramters not all set!");
160	System.err.println("if site_name is not set, then you must have remote_site_name, remote_site_type and remote_site_address set");
161	System.exit(1);
162	}
163	}
164
165	if (this.default_lang == null)
166	{
167	// choose english
168	this.default_lang = DEFAULT_LANG;
169	}
170
171	HashMap<String, Comparable> config_params = new HashMap<String, Comparable>();
172
173	config_params.put(GSConstants.LIBRARY_NAME, library_name);
174	config_params.put(GSConstants.INTERFACE_NAME, interface_name);
175	config_params.put(GSConstants.ALLOW_CLIENT_SIDE_XSLT, supports_client_xslt);
176
177	if (site_name != null)
178	{
179	config_params.put(GSConstants.SITE_NAME, site_name);
180	}
181	this.converter = new XMLConverter();
182	this.doc = this.converter.newDOM();
183
184	// the receptionist -the servlet will talk to this
185	String recept_name = (String) config.getInitParameter("receptionist_class");
186	if (recept_name == null)
187	{
188	this.recept = new DefaultReceptionist();
189	}
190	else
191	{
192	try
193	{
194	this.recept = (Receptionist) Class.forName("org.greenstone.gsdl3.core." + recept_name).newInstance();
195	}
196	catch (Exception e)
197	{ // cant use this new one, so use normal one
198	System.err.println("LibraryServlet configure exception when trying to use a new Receptionist " + recept_name + ": " + e.getMessage());
199	e.printStackTrace();
200	this.recept = new DefaultReceptionist();
201	}
202	}
203	this.recept.setConfigParams(config_params);
204
205	// the receptionist uses a MessageRouter or Communicator to send its requests to. We either create a MessageRouter here for the designated site (if site_name set), or we create a Communicator for a remote site. The is given to teh Receptionist, and the servlet never talks to it again.directly.
206	if (site_name != null)
207	{
208	String mr_name = (String) config.getInitParameter("messagerouter_class");
209	MessageRouter message_router = null;
210	if (mr_name == null)
211	{ // just use the normal MR
212	message_router = new MessageRouter();
213	}
214	else
215	{ // try the specified one
216	try
217	{
218	message_router = (MessageRouter) Class.forName("org.greenstone.gsdl3.core." + mr_name).newInstance();
219	}
220	catch (Exception e)
221	{ // cant use this new one, so use normal one
222	System.err.println("LibraryServlet configure exception when trying to use a new MessageRouter " + mr_name + ": " + e.getMessage());
223	e.printStackTrace();
224	message_router = new MessageRouter();
225	}
226	}
227
228	message_router.setSiteName(site_name);
229	message_router.setLibraryName(library_name);
230	message_router.configure();
231	this.recept.setMessageRouter(message_router);
232	}
233	else
234	{
235	// talking to a remote site, create a communicator
236	Communicator communicator = null;
237	// we need to create the XML to configure the communicator
238	Element site_elem = this.doc.createElement(GSXML.SITE_ELEM);
239	site_elem.setAttribute(GSXML.TYPE_ATT, remote_site_type);
240	site_elem.setAttribute(GSXML.NAME_ATT, remote_site_name);
241	site_elem.setAttribute(GSXML.ADDRESS_ATT, remote_site_address);
242
243	if (remote_site_type.equals(GSXML.COMM_TYPE_SOAP_JAVA))
244	{
245	communicator = new SOAPCommunicator();
246	}
247	else
248	{
249	System.err.println("LibraryServlet.init Error: invalid Communicator type: " + remote_site_type);
250	System.exit(1);
251	}
252
253	if (!communicator.configure(site_elem))
254	{
255	System.err.println("LibraryServlet.init Error: Couldn't configure communicator");
256	System.exit(1);
257	}
258	this.recept.setMessageRouter(communicator);
259	}
260
261	// the params arg thingy
262
263	String params_name = (String) config.getInitParameter("params_class");
264	if (params_name == null)
265	{
266	this.params = new GSParams();
267	}
268	else
269	{
270	try
271	{
272	this.params = (GSParams) Class.forName("org.greenstone.gsdl3.util." + params_name).newInstance();
273	}
274	catch (Exception e)
275	{
276	System.err.println("LibraryServlet configure exception when trying to use a new params thing " + params_name + ": " + e.getMessage());
277	e.printStackTrace();
278	this.params = new GSParams();
279	}
280	}
281	// pass it to the receptionist
282	this.recept.setParams(this.params);
283	this.recept.configure();
284
285	//Allow the message router and the document to be accessed from anywhere in this servlet context
286	this.getServletContext().setAttribute("GSRouter", this.recept.getMessageRouter());
287	this.getServletContext().setAttribute("GSDocument", this.doc);
288	}
289
290	private void logUsageInfo(HttpServletRequest request)
291	{
292	String usageInfo = "";
293
294	//session-info: get params stored in the session
295	HttpSession session = request.getSession(true);
296	Enumeration attributeNames = session.getAttributeNames();
297	while (attributeNames.hasMoreElements())
298	{
299	String name = (String) attributeNames.nextElement();
300	usageInfo += name + "=" + session.getAttribute(name) + " ";
301	}
302
303	//logged info = general-info + session-info
304	usageInfo = request.getServletPath() + " " + //serlvet
305	"[" + request.getQueryString() + "]" + " " + //the query string
306	"[" + usageInfo.trim() + "]" + " " + // params stored in a session
307	request.getRemoteAddr() + " " + //remote address
308	request.getRequestedSessionId() + " " + //session id
309	request.getHeader("user-agent") + " "; //the remote brower info
310
311	logger.info(usageInfo);
312
313	}
314
315	public class UserSessionCache implements HttpSessionBindingListener
316	{
317
318	String session_id = "";
319
320	/**
321	* a hash that maps the session ID to a hashtable that maps the
322	* coll_name to its parameters coll_name -> Hashtable (param_name ->
323	* param_value)
324	*/
325	protected Hashtable<String, Hashtable<String, String>> coll_name_params_table = null;
326
327	public UserSessionCache(String id, Hashtable<String, Hashtable<String, String>> table)
328	{
329	session_id = id;
330	coll_name_params_table = (table == null) ? new Hashtable() : table;
331	}
332
333	protected void cleanupCache(String coll_name)
334	{
335	if (coll_name_params_table.containsKey(coll_name))
336	{
337	coll_name_params_table.remove(coll_name);
338	}
339	}
340
341	protected Hashtable<String, Hashtable<String, String>> getParamsTable()
342	{
343	return coll_name_params_table;
344	}
345
346	public void valueBound(HttpSessionBindingEvent event)
347	{
348	// Do nothing
349	}
350
351	public void valueUnbound(HttpSessionBindingEvent event)
352	{
353	if (session_ids_table.containsKey(session_id))
354	{
355	session_ids_table.remove(session_id);
356	}
357	}
358
359	public int tableSize()
360	{
361	return (coll_name_params_table == null) ? 0 : coll_name_params_table.size();
362	}
363	}
364
365	public void destroy()
366	{
367	recept.cleanUp();
368	}
369
370	public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException
371	{
372	logUsageInfo(request);
373
374	Map<String, String[]> queryMap = request.getParameterMap();
375	if (queryMap != null)
376	{
377	Iterator<String> queryIter = queryMap.keySet().iterator();
378	boolean redirect = false;
379	String href = null;
380	String rl = null;
381	String el = null;
382	while (queryIter.hasNext())
383	{
384	String q = queryIter.next();
385	if (q.equals(GSParams.EXTERNAL_LINK_TYPE))
386	{
387	el = queryMap.get(q)[0];
388	}
389	else if (q.equals(GSParams.HREF))
390	{
391	href = queryMap.get(q)[0];
392	href = StringUtils.replace(href, "%2f", "/");
393	href = StringUtils.replace(href, "%7e", "~");
394	href = StringUtils.replace(href, "%3f", "?");
395	href = StringUtils.replace(href, "%3A", "\\:");
396	}
397	else if (q.equals(GSParams.RELATIVE_LINK))
398	{
399	rl = queryMap.get(q)[0];
400	}
401	}
402
403	//if query_string contains "el=direct", an href is specified, and its not a relative link, then the web page will be redirected to the external URl, otherwise a greenstone page with an external URL will be displayed
404	//"rl=0" this is an external link
405	//"rl=1" this is an internal link
406	if ((href != null) && (rl.equals("0")))
407	{// This is an external link,
408
409	if (el.equals("framed"))
410	{
411	//TODO **** how best to change to a=p&sa=html&c=collection&url=href
412	// response.setContentType("text/xml");
413	//response.sendRedirect("http://localhost:8383/greenstone3/gs3library?a=p&sa=html&c=external&url="+href);
414	}
415	else
416	{
417	// el = '' or direct
418	//the web page is re-directed to the external URL (&el=&rl=0&href="http://...")
419	response.setContentType("text/xml");
420	response.sendRedirect(href);
421	}
422	}
423	}
424
425	// Nested Diagnostic Configurator to identify the client for
426	HttpSession session = request.getSession(true);
427	session.setMaxInactiveInterval(session_expiration);
428	String uid = (String) session.getAttribute(GSXML.USER_ID_ATT);
429	if (uid == null)
430	{
431	uid = "" + getNextUserId();
432	session.setAttribute(GSXML.USER_ID_ATT, uid);
433	}
434
435	request.setCharacterEncoding("UTF-8");
436	response.setContentType("text/html;charset=UTF-8");
437	PrintWriter out = response.getWriter();
438
439	String lang = request.getParameter(GSParams.LANGUAGE);
440	if (lang == null \|\| lang.equals(""))
441	{
442	// try the session cached lang
443	lang = (String) session.getAttribute(GSParams.LANGUAGE);
444	if (lang == null \|\| lang.equals(""))
445	{
446	// still not set, use the default
447	lang = this.default_lang;
448	}
449	}
450	UserContext userContext = new UserContext();
451	userContext.setLanguage(lang);
452	userContext.setUserID(uid);
453
454	// set the lang in the session
455	session.setAttribute(GSParams.LANGUAGE, lang);
456
457	String output = request.getParameter(GSParams.OUTPUT);
458	if (output == null \|\| output.equals(""))
459	{
460	output = "html"; // uses html by default
461	}
462
463	// If server output, force a switch to traditional interface
464	//output = (output.equals("server")) ? "html" : output;
465
466	// Force change the output mode if client-side XSLT is supported - server vs. client
467	// BUT only if the library allows client-side transforms
468	if (supports_client_xslt)
469	{
470	// MUST be done before the xml_message is built
471	Cookie[] cookies = request.getCookies();
472	Cookie xsltCookie = null;
473
474	// The client has cookies enabled and a value set - use it!
475	if (cookies != null)
476	{
477	for (Cookie c : cookies)
478	{
479	if (c.getName().equals("supportsXSLT"))
480	{
481	xsltCookie = c;
482	break;
483	}
484	}
485	output = (xsltCookie != null && xsltCookie.getValue().equals("true") && output.equals("html")) ? "xsltclient" : output;
486	}
487	}
488
489	// the request to the receptionist
490	Element xml_message = this.doc.createElement(GSXML.MESSAGE_ELEM);
491	Element xml_request = GSXML.createBasicRequest(this.doc, GSXML.REQUEST_TYPE_PAGE, "", userContext);
492	xml_request.setAttribute(GSXML.OUTPUT_ATT, output);
493
494	xml_message.appendChild(xml_request);
495
496	String action = request.getParameter(GSParams.ACTION);
497	String subaction = request.getParameter(GSParams.SUBACTION);
498	String collection = request.getParameter(GSParams.COLLECTION);
499	String document = request.getParameter(GSParams.DOCUMENT);
500	String service = request.getParameter(GSParams.SERVICE);
501
502	// We clean up the cache session_ids_table if system
503	// commands are issued (and also don't need to do caching for this request)
504	boolean should_cache = true;
505	if (action != null && action.equals(GSParams.SYSTEM_ACTION))
506	{
507	should_cache = false;
508
509	// we may want to remove all collection cache info, or just a specific collection
510	boolean clean_all = true;
511	String clean_collection = null;
512	// system commands are to activate/deactivate stuff
513	// collection param is in the sc parameter.
514	// don't like the fact that it is hard coded here
515	String coll = request.getParameter(GSParams.SYSTEM_CLUSTER);
516	if (coll != null && !coll.equals(""))
517	{
518	clean_all = false;
519	clean_collection = coll;
520	}
521	else
522	{
523	// check other system types
524	if (subaction.equals("a") \|\| subaction.equals("d"))
525	{
526	String module_name = request.getParameter("sn");
527	if (module_name != null && !module_name.equals(""))
528	{
529	clean_all = false;
530	clean_collection = module_name;
531	}
532	}
533	}
534	if (clean_all)
535	{
536	session_ids_table = new Hashtable<String, UserSessionCache>();
537	session.removeAttribute(GSXML.USER_SESSION_CACHE_ATT);
538	}
539	else
540	{
541	// just clean up info for clean_collection
542	ArrayList<UserSessionCache> cache_list = new ArrayList<UserSessionCache>(session_ids_table.values());
543	for (int i = 0; i < cache_list.size(); i++)
544	{
545	UserSessionCache cache = cache_list.get(i);
546	cache.cleanupCache(clean_collection);
547	}
548
549	}
550	}
551
552	// cache_key is the collection name, or service name
553	String cache_key = collection;
554	if (cache_key == null \|\| cache_key.equals(""))
555	{
556	cache_key = service;
557	}
558
559	// logger.info("should_cache= " + should_cache);
560
561	//clear the collection-specific cache in the session, since we have no way to know whether this session is
562	//about the same collection as the last session or not.
563	Enumeration attributeNames = session.getAttributeNames();
564	while (attributeNames.hasMoreElements())
565	{
566	String name = (String) attributeNames.nextElement();
567	if (!name.equals(GSXML.USER_SESSION_CACHE_ATT) && !name.equals(GSParams.LANGUAGE) && !name.equals(GSXML.USER_ID_ATT))
568	{
569	session.removeAttribute(name);
570	}
571	}
572
573	UserSessionCache session_cache = null;
574	Hashtable<String, Hashtable<String, String>> param_table = null;
575	Hashtable<String, String> table = null;
576	String sid = session.getId();
577	if (should_cache == true && cache_key != null && !cache_key.equals(""))
578	{
579	if (session_ids_table.containsKey(sid))
580	{
581	session_cache = session_ids_table.get(sid);
582	param_table = session_cache.getParamsTable();
583	logger.info("collections in table: " + tableToString(param_table));
584	if (param_table.containsKey(cache_key))
585	{
586	//logger.info("existing table: " + collection);
587	table = param_table.get(cache_key);
588	}
589	else
590	{
591	table = new Hashtable<String, String>();
592	param_table.put(cache_key, table);
593	//logger.info("new table: " + collection);
594	}
595	}
596	else
597	{
598	param_table = new Hashtable<String, Hashtable<String, String>>();
599	table = new Hashtable<String, String>();
600	param_table.put(cache_key, table);
601	session_cache = new UserSessionCache(sid, param_table);
602	session_ids_table.put(sid, session_cache);
603	session.setAttribute(GSXML.USER_SESSION_CACHE_ATT, session_cache);
604	//logger.info("new session id");
605	}
606	}
607
608	if (action == null \|\| action.equals(""))
609	{
610	// should we do all the following stuff if using default page?
611	// display the home page - the default page
612	xml_request.setAttribute(GSXML.ACTION_ATT, "p");
613	xml_request.setAttribute(GSXML.SUBACTION_ATT, PageAction.HOME_PAGE);
614	}
615	else
616	{
617	xml_request.setAttribute(GSXML.ACTION_ATT, action);
618	if (subaction != null)
619	{
620	xml_request.setAttribute(GSXML.SUBACTION_ATT, subaction);
621	}
622
623	// create the param list for the greenstone request - includes
624	// the params from the current request and any others from the saved session
625	Element xml_param_list = this.doc.createElement(GSXML.PARAM_ELEM + GSXML.LIST_MODIFIER);
626	xml_request.appendChild(xml_param_list);
627
628	for (String name : queryMap.keySet())
629	{
630	if (!name.equals(GSParams.ACTION) && !name.equals(GSParams.SUBACTION) && !name.equals(GSParams.LANGUAGE) && !name.equals(GSParams.OUTPUT))
631	{// we have already dealt with these
632
633	String value = "";
634	String[] values = request.getParameterValues(name);
635	value = values[0];
636	if (values.length > 1)
637	{
638	for (int i = 1; i < values.length; i++)
639	{
640	value += "," + values[i];
641	}
642	}
643	// either add it to the param list straight away, or save it to the session and add it later
644	if (this.params.shouldSave(name) && table != null)
645	{
646	table.put(name, value);
647	}
648	else
649	{
650	Element param = this.doc.createElement(GSXML.PARAM_ELEM);
651	param.setAttribute(GSXML.NAME_ATT, name);
652	param.setAttribute(GSXML.VALUE_ATT, GSXML.xmlSafe(value));
653	xml_param_list.appendChild(param);
654	}
655	}
656	}
657	//put everything in the table into the session
658	// do we need to do this? why not just put from table into param list
659	if (table != null)
660	{
661	Enumeration<String> keys = table.keys();
662	while (keys.hasMoreElements())
663	{
664	String name = keys.nextElement();
665	session.setAttribute(name, table.get(name));
666	}
667	}
668
669	// put in all the params from the session cache
670	Enumeration params = session.getAttributeNames();
671	while (params.hasMoreElements())
672	{
673	String name = (String) params.nextElement();
674
675	if (!name.equals(GSXML.USER_SESSION_CACHE_ATT) && !name.equals(GSParams.LANGUAGE) && !name.equals(GSXML.USER_ID_ATT))
676	{
677
678	// lang and uid are stored but we dont want it in the param list cos its already in the request
679	Element param = this.doc.createElement(GSXML.PARAM_ELEM);
680	param.setAttribute(GSXML.NAME_ATT, name);
681	String value = GSXML.xmlSafe((String) session.getAttribute(name));
682
683	// ugly hack to undo : escaping
684	value = StringUtils.replace(value, "%3A", "\\:");
685	param.setAttribute(GSXML.VALUE_ATT, value);
686	xml_param_list.appendChild(param);
687	}
688	}
689	}
690
691	if (output.equals("json"))
692	{
693	response.setContentType("application/json");
694	}
695	else if (!output.equals("html") && !output.equals("server") && !output.equals("xsltclient"))
696	{
697	response.setContentType("text/xml"); // for now use text
698	}
699
700	//Add custom HTTP headers if requested
701	String httpHeadersParam = request.getParameter(GSParams.HTTP_HEADER_FIELDS);
702	if (httpHeadersParam != null && httpHeadersParam.length() > 0)
703	{
704	Gson gson = new Gson();
705	Type type = new TypeToken<List<Map<String, String>>>()
706	{
707	}.getType();
708	List<Map<String, String>> httpHeaders = gson.fromJson(httpHeadersParam, type);
709	if (httpHeaders != null && httpHeaders.size() > 0)
710	{
711
712	for (int j = 0; j < httpHeaders.size(); j++)
713	{
714	Map nameValueMap = httpHeaders.get(j);
715	String name = (String) nameValueMap.get("name");
716	String value = (String) nameValueMap.get("value");
717
718	if (name != null && value != null)
719	{
720	response.setHeader(name, value);
721	}
722	}
723	}
724	}
725
726	String requestedURL = request.getRequestURL().toString();
727	String baseURL = "";
728	if (requestedURL.indexOf(this.getServletName()) != -1)
729	{
730	baseURL = requestedURL.substring(0, requestedURL.indexOf(this.getServletName()));
731	xml_request.setAttribute("baseURL", baseURL);
732	}
733
734	String fullURL;
735	if (request.getQueryString() != null)
736	{
737	fullURL = requestedURL + "?" + request.getQueryString();
738	}
739	else
740	{
741	fullURL = requestedURL;
742	}
743
744	xml_request.setAttribute("remoteAddress", request.getRemoteAddr());
745	xml_request.setAttribute("fullURL", fullURL.replace("&", "&"));
746
747	if (!runSecurityChecks(request, xml_request, userContext, out, baseURL, collection, document))
748	{
749	return;
750	}
751
752	Node xml_result = this.recept.process(xml_message);
753	encodeURLs(xml_result, response);
754
755	String xml_string = this.converter.getPrettyString(xml_result);
756
757	if (output.equals("json"))
758	{
759	try
760	{
761	JSONObject json_obj = org.json.XML.toJSONObject(xml_string);
762
763	out.println(json_obj.toString());
764	}
765	catch (Exception e)
766	{
767	e.printStackTrace();
768	out.println("Error: failed to convert output XML to JSON format");
769	}
770	}
771	else
772	{
773	out.println(xml_string);
774	}
775
776	displaySize(session_ids_table);
777
778	} //end of doGet(HttpServletRequest, HttpServletResponse)
779
780	private boolean runSecurityChecks(HttpServletRequest request, Element xml_request, UserContext userContext, PrintWriter out, String baseURL, String collection, String document) throws ServletException
781	{
782	//Check if we need to login or logout
783	Map<String, String[]> params = request.getParameterMap();
784	String[] username = params.get("username");
785	String[] password = params.get("password");
786	String[] logout = params.get("logout");
787
788	if (logout != null)
789	{
790	request.logout();
791	}
792
793	if (username != null && password != null)
794	{
795	//We are changing to another user, so log out first
796	if (request.getAuthType() != null)
797	{
798	request.logout();
799	}
800
801	try
802	{
803	password[0] = Authentication.hashPassword(password[0]);
804	request.login(username[0], password[0]);
805	}
806	catch (Exception ex)
807	{
808	//The user entered in either the wrong username or the wrong password
809	Element loginPageMessage = this.doc.createElement(GSXML.MESSAGE_ELEM);
810	Element loginPageRequest = GSXML.createBasicRequest(this.doc, GSXML.REQUEST_TYPE_PAGE, "", userContext);
811	loginPageRequest.setAttribute(GSXML.ACTION_ATT, "p");
812	loginPageRequest.setAttribute(GSXML.SUBACTION_ATT, "login");
813	loginPageRequest.setAttribute(GSXML.OUTPUT_ATT, "html");
814	loginPageRequest.setAttribute(GSXML.BASE_URL, baseURL);
815	loginPageMessage.appendChild(loginPageRequest);
816
817	Element paramList = this.doc.createElement(GSXML.PARAM_ELEM + GSXML.LIST_MODIFIER);
818	loginPageRequest.appendChild(paramList);
819
820	Element messageParam = this.doc.createElement(GSXML.PARAM_ELEM);
821	messageParam.setAttribute(GSXML.NAME_ATT, "loginMessage");
822	messageParam.setAttribute(GSXML.VALUE_ATT, "Either your username or password was incorrect, please try again.");
823	paramList.appendChild(messageParam);
824
825	Element urlParam = this.doc.createElement(GSXML.PARAM_ELEM);
826	urlParam.setAttribute(GSXML.NAME_ATT, "redirectURL");
827	String queryString = "";
828	if (request.getQueryString() != null)
829	{
830	queryString = "?" + request.getQueryString().replace("&", "&");
831	}
832	urlParam.setAttribute(GSXML.VALUE_ATT, this.getServletName() + queryString);
833	paramList.appendChild(urlParam);
834
835	Node loginPageResponse = this.recept.process(loginPageMessage);
836	out.println(this.converter.getPrettyString(loginPageResponse));
837
838	return false;
839	}
840	}
841
842	//If a user is logged in
843	if (request.getAuthType() != null)
844	{
845	Element userInformation = this.doc.createElement(GSXML.USER_INFORMATION_ELEM);
846	userInformation.setAttribute("username", request.getUserPrincipal().getName());
847
848	Element userInfoMessage = this.doc.createElement(GSXML.MESSAGE_ELEM);
849	Element userInfoRequest = GSXML.createBasicRequest(this.doc, GSXML.REQUEST_TYPE_SECURITY, "GetUserInformation", userContext);
850	userInfoMessage.appendChild(userInfoRequest);
851
852	Element paramList = this.doc.createElement(GSXML.PARAM_ELEM + GSXML.LIST_MODIFIER);
853	userInfoRequest.appendChild(paramList);
854
855	Element param = this.doc.createElement(GSXML.PARAM_ELEM);
856	param.setAttribute(GSXML.NAME_ATT, GSXML.USERNAME_ATT);
857	param.setAttribute(GSXML.VALUE_ATT, request.getUserPrincipal().getName());
858	paramList.appendChild(param);
859
860	Element userInformationResponse = (Element) GSXML.getChildByTagName(this.recept.process(userInfoMessage), GSXML.RESPONSE_ELEM);
861	Element responseParamList = (Element) GSXML.getChildByTagName(userInformationResponse, GSXML.PARAM_ELEM + GSXML.LIST_MODIFIER);
862	if (responseParamList == null)
863	{
864	logger.error("Can't get the groups for user " + request.getUserPrincipal().getName());
865	}
866	else
867	{
868	HashMap<String, Serializable> responseParams = GSXML.extractParams(responseParamList, true);
869	String groups = (String) responseParams.get(GSXML.GROUPS_ATT);
870
871	userInformation.setAttribute(GSXML.GROUPS_ATT, groups);
872	xml_request.appendChild(userInformation);
873	}
874	}
875
876	//If we are in a collection-related page then make sure this user is allowed to access it
877	if (collection != null && !collection.equals(""))
878	{
879	//Get the security info for this collection
880	Element securityMessage = this.doc.createElement(GSXML.MESSAGE_ELEM);
881	Element securityRequest = GSXML.createBasicRequest(this.doc, GSXML.REQUEST_TYPE_SECURITY, collection, userContext);
882	securityMessage.appendChild(securityRequest);
883	if (document != null && !document.equals(""))
884	{
885	securityRequest.setAttribute(GSXML.NODE_OID, document);
886	}
887
888	Element securityResponse = (Element) GSXML.getChildByTagName(this.recept.process(securityMessage), GSXML.RESPONSE_ELEM);
889	if (securityResponse == null)
890	{
891	return false;
892	}
893
894	ArrayList<String> groups = GSXML.getGroupsFromSecurityResponse(securityResponse);
895
896	//If guests are not allowed to access this page then check to see if the user is in a group that is allowed to access the page
897	if (!groups.contains(""))
898	{
899	boolean found = false;
900	for (String group : groups)
901	{
902	if (request.isUserInRole(group))
903	{
904	found = true;
905	break;
906	}
907	}
908
909	//The current user is not allowed to access the page so produce a login page
910	if (!found)
911	{
912	Element loginPageMessage = this.doc.createElement(GSXML.MESSAGE_ELEM);
913	Element loginPageRequest = GSXML.createBasicRequest(this.doc, GSXML.REQUEST_TYPE_PAGE, "", userContext);
914	loginPageRequest.setAttribute(GSXML.ACTION_ATT, "p");
915	loginPageRequest.setAttribute(GSXML.SUBACTION_ATT, "login");
916	loginPageRequest.setAttribute(GSXML.OUTPUT_ATT, "html");
917	loginPageRequest.setAttribute(GSXML.BASE_URL, baseURL);
918	loginPageMessage.appendChild(loginPageRequest);
919
920	Element paramList = this.doc.createElement(GSXML.PARAM_ELEM + GSXML.LIST_MODIFIER);
921	loginPageRequest.appendChild(paramList);
922
923	Element messageParam = this.doc.createElement(GSXML.PARAM_ELEM);
924	messageParam.setAttribute(GSXML.NAME_ATT, "loginMessage");
925	if (request.getAuthType() == null)
926	{
927	messageParam.setAttribute(GSXML.VALUE_ATT, "Please log in to view this page");
928	}
929	else
930	{
931	messageParam.setAttribute(GSXML.VALUE_ATT, "You are not in the correct group to view this page, would you like to log in as a different user?");
932	}
933	paramList.appendChild(messageParam);
934
935	Element urlParam = this.doc.createElement(GSXML.PARAM_ELEM);
936	urlParam.setAttribute(GSXML.NAME_ATT, "redirectURL");
937	if (request.getQueryString() != null && request.getQueryString().length() > 0)
938	{
939	urlParam.setAttribute(GSXML.VALUE_ATT, request.getRequestURL() + "?" + request.getQueryString().replace("&", "&"));
940	}
941	else
942	{
943	urlParam.setAttribute(GSXML.VALUE_ATT, request.getRequestURL().toString());
944	}
945	paramList.appendChild(urlParam);
946
947	Node loginPageResponse = this.recept.process(loginPageMessage);
948	out.println(this.converter.getPrettyString(loginPageResponse));
949
950	return false;
951	}
952	}
953	}
954	return true;
955	}
956
957	//a debugging method
958	private void displaySize(Hashtable<String, UserSessionCache> table)
959	{
960	if (table == null)
961	{
962	logger.info("cached table is null");
963	return;
964	}
965	if (table.size() == 0)
966	{
967	logger.info("cached table size is zero");
968	return;
969	}
970	int num_cached_coll = 0;
971	ArrayList<UserSessionCache> cache_list = new ArrayList<UserSessionCache>(table.values());
972	for (int i = 0; i < cache_list.size(); i++)
973	{
974	num_cached_coll += cache_list.get(i).tableSize();
975	}
976	logger.info("Number of sessions : total number of cached collection info = " + table.size() + " : " + num_cached_coll);
977	}
978
979	/** merely a debugging method! */
980	private String tableToString(Hashtable<String, Hashtable<String, String>> table)
981	{
982	String str = "";
983	Enumeration<String> keys = table.keys();
984	while (keys.hasMoreElements())
985	{
986	String name = keys.nextElement();
987	str += name + ", ";
988	}
989	return str;
990	}
991
992	/**
993	* this goes through each URL and adds in a session id if needed-- its
994	* needed if the browser doesn't accept cookies also escapes things if
995	* needed
996	*/
997	protected void encodeURLs(Node dataNode, HttpServletResponse response)
998	{
999
1000	if (dataNode == null)
1001	{
1002	return;
1003	}
1004
1005	Element data = null;
1006
1007	short nodeType = dataNode.getNodeType();
1008	if (nodeType == Node.DOCUMENT_NODE)
1009	{
1010	Document docNode = (Document) dataNode;
1011	data = docNode.getDocumentElement();
1012	}
1013	else
1014	{
1015	data = (Element) dataNode;
1016	}
1017
1018	if (data != null)
1019	{
1020
1021	// get all the <a> elements
1022	NodeList hrefs = data.getElementsByTagName("a");
1023	// Instead of calculating each iteration...
1024	int hrefscount = hrefs.getLength();
1025
1026	for (int i = 0; hrefs != null && i < hrefscount; i++)
1027	{
1028	Element a = (Element) hrefs.item(i);
1029	// ugly hack to get rid of : in the args - interferes with session handling
1030	String href = a.getAttribute("href");
1031	if (!href.equals(""))
1032	{
1033	if (href.indexOf("?") != -1)
1034	{
1035	String[] parts = StringUtils.split(href, "\\?", -1);
1036	if (parts.length == 1)
1037	{
1038	parts[0] = StringUtils.replace(parts[0], ":", "%3A");
1039	href = "?" + parts[0];
1040	}
1041	else
1042	{
1043	parts[1] = StringUtils.replace(parts[1], ":", "%3A");
1044	href = parts[0] + "?" + parts[1];
1045	}
1046
1047	}
1048	a.setAttribute("href", response.encodeURL(href));
1049	}
1050	}
1051
1052	// now find any submit bits - get all the <form> elements
1053	NodeList forms = data.getElementsByTagName("form");
1054	int formscount = forms.getLength();
1055	for (int i = 0; forms != null && i < formscount; i++)
1056	{
1057	Element form = (Element) forms.item(i);
1058	form.setAttribute("action", response.encodeURL(form.getAttribute("action")));
1059	}
1060	// are these the only cases where URLs occur??
1061	// we should only do this for greenstone urls?
1062	}
1063
1064	}
1065
1066	synchronized protected int getNextUserId()
1067	{
1068	next_user_id++;
1069	return next_user_id;
1070	}
1071
1072	public void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException
1073	{
1074	doGet(request, response);
1075	}
1076	}

Note: See TracBrowser for help on using the repository browser.

Download in other formats: