Merge branch 'stable-2.9'
* stable-2.9: Link to solved issues from 2.9 release notes Reindex: Include exception cause when dying Fix the request wrapper for http requests served from plugins Fix a possibility to overcome BLOCK permission Add asciidoc build back in the Documentation folder Change CopyableLabel to hide onKeyUp Conflicts: gerrit-server/src/main/java/com/google/gerrit/server/project/PermissionCollection.java Change-Id: I1ebcc44873eb12acd80b4a0a98d22a73c69a886c
This commit is contained in:
David Pursehouse
@@ -0,0 +1,74 @@
|
||||
// Copyright (C) 2014 The Android Open Source Project
|
||||
//
|
||||
// Licensed under the Apache License, Version 2.0 (the "License");
|
||||
// you may not use this file except in compliance with the License.
|
||||
// You may obtain a copy of the License at
|
||||
//
|
||||
// http://www.apache.org/licenses/LICENSE-2.0
|
||||
//
|
||||
// Unless required by applicable law or agreed to in writing, software
|
||||
// distributed under the License is distributed on an "AS IS" BASIS,
|
||||
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||
// See the License for the specific language governing permissions and
|
||||
// limitations under the License.package com.google.gerrit.httpd.plugins;
|
||||
|
||||
package com.google.gerrit.httpd.plugins;
|
||||
|
||||
import com.google.common.base.Strings;
|
||||
|
||||
import javax.servlet.http.HttpServletRequest;
|
||||
import javax.servlet.http.HttpServletRequestWrapper;
|
||||
|
||||
class ContextMapper {
|
||||
private static final String PLUGINS_PREFIX = "/plugins/";
|
||||
private static final String AUTHORIZED_PREFIX = "/a" + PLUGINS_PREFIX;
|
||||
private final String base;
|
||||
private final String authorizedBase;
|
||||
|
||||
public ContextMapper(String contextPath) {
|
||||
base = Strings.nullToEmpty(contextPath) + PLUGINS_PREFIX;
|
||||
authorizedBase = Strings.nullToEmpty(contextPath) + AUTHORIZED_PREFIX;
|
||||
}
|
||||
|
||||
private static boolean isAuthorizedCall(HttpServletRequest req) {
|
||||
return !Strings.isNullOrEmpty(req.getServletPath())
|
||||
&& req.getServletPath().startsWith(AUTHORIZED_PREFIX);
|
||||
}
|
||||
|
||||
HttpServletRequest create(HttpServletRequest req, String name) {
|
||||
String contextPath = (isAuthorizedCall(req) ? authorizedBase : base) + name;
|
||||
|
||||
return new WrappedRequest(req, contextPath);
|
||||
}
|
||||
|
||||
public String getFullPath(String name) {
|
||||
return base + name;
|
||||
}
|
||||
|
||||
private class WrappedRequest extends HttpServletRequestWrapper {
|
||||
private final String contextPath;
|
||||
private final String pathInfo;
|
||||
|
||||
private WrappedRequest(HttpServletRequest req, String contextPath) {
|
||||
super(req);
|
||||
this.contextPath = contextPath;
|
||||
this.pathInfo = getRequestURI().substring(contextPath.length());
|
||||
}
|
||||
|
||||
@Override
|
||||
public String getServletPath() {
|
||||
return "";
|
||||
}
|
||||
|
||||
@Override
|
||||
public String getContextPath() {
|
||||
return contextPath;
|
||||
}
|
||||
|
||||
@Override
|
||||
public String getPathInfo() {
|
||||
return pathInfo;
|
||||
}
|
||||
}
|
||||
|
||||
}
|
||||
@@ -73,7 +73,6 @@ import javax.servlet.ServletRequest;
|
||||
import javax.servlet.ServletResponse;
|
||||
import javax.servlet.http.HttpServlet;
|
||||
import javax.servlet.http.HttpServletRequest;
|
||||
import javax.servlet.http.HttpServletRequestWrapper;
|
||||
import javax.servlet.http.HttpServletResponse;
|
||||
|
||||
@Singleton
|
||||
@@ -83,8 +82,6 @@ class HttpPluginServlet extends HttpServlet
|
||||
private static final long serialVersionUID = 1L;
|
||||
private static final Logger log
|
||||
= LoggerFactory.getLogger(HttpPluginServlet.class);
|
||||
private static final String PLUGINS_PREFIX = "/plugins/";
|
||||
private static final String AUTHORIZED_PREFIX = "/a" + PLUGINS_PREFIX;
|
||||
|
||||
private final MimeUtilFileTypeRegistry mimeUtil;
|
||||
private final Provider<String> webUrl;
|
||||
@@ -94,8 +91,7 @@ class HttpPluginServlet extends HttpServlet
|
||||
private final RestApiServlet managerApi;
|
||||
|
||||
private List<Plugin> pending = Lists.newArrayList();
|
||||
private String base;
|
||||
private String authorizedBase;
|
||||
private ContextMapper wrapper;
|
||||
private final ConcurrentMap<String, PluginHolder> plugins
|
||||
= Maps.newConcurrentMap();
|
||||
|
||||
@@ -134,9 +130,7 @@ class HttpPluginServlet extends HttpServlet
|
||||
public synchronized void init(ServletConfig config) throws ServletException {
|
||||
super.init(config);
|
||||
|
||||
String path = config.getServletContext().getContextPath();
|
||||
base = Strings.nullToEmpty(path) + PLUGINS_PREFIX;
|
||||
authorizedBase = Strings.nullToEmpty(path) + AUTHORIZED_PREFIX;
|
||||
wrapper = new ContextMapper(config.getServletContext().getContextPath());
|
||||
for (Plugin plugin : pending) {
|
||||
install(plugin);
|
||||
}
|
||||
@@ -182,7 +176,8 @@ class HttpPluginServlet extends HttpServlet
|
||||
}
|
||||
|
||||
try {
|
||||
ServletContext ctx = PluginServletContext.create(plugin, base + name);
|
||||
ServletContext ctx =
|
||||
PluginServletContext.create(plugin, wrapper.getFullPath(name));
|
||||
filter.init(new WrappedFilterConfig(ctx));
|
||||
} catch (ServletException e) {
|
||||
log.warn(String.format("Plugin %s failed to initialize HTTP", name), e);
|
||||
@@ -220,8 +215,7 @@ class HttpPluginServlet extends HttpServlet
|
||||
return;
|
||||
}
|
||||
|
||||
WrappedRequest wr = new WrappedRequest(req,
|
||||
(isAuthorizedCall(req) ? authorizedBase : base) + name);
|
||||
HttpServletRequest wr = wrapper.create(req, name);
|
||||
FilterChain chain = new FilterChain() {
|
||||
@Override
|
||||
public void doFilter(ServletRequest req, ServletResponse res)
|
||||
@@ -236,11 +230,6 @@ class HttpPluginServlet extends HttpServlet
|
||||
}
|
||||
}
|
||||
|
||||
private boolean isAuthorizedCall(HttpServletRequest req) {
|
||||
return !Strings.isNullOrEmpty(req.getServletPath())
|
||||
&& req.getServletPath().startsWith(AUTHORIZED_PREFIX);
|
||||
}
|
||||
|
||||
private static boolean isApiCall(HttpServletRequest req, List<String> parts) {
|
||||
String method = req.getMethod();
|
||||
int cnt = parts.size();
|
||||
@@ -258,14 +247,13 @@ class HttpPluginServlet extends HttpServlet
|
||||
return;
|
||||
}
|
||||
|
||||
String uri = req.getRequestURI();
|
||||
String ctx = req.getContextPath();
|
||||
if (uri.length() <= ctx.length()) {
|
||||
String pathInfo = req.getPathInfo();
|
||||
if (pathInfo.length() < 1) {
|
||||
Resource.NOT_FOUND.send(req, res);
|
||||
return;
|
||||
}
|
||||
|
||||
String file = uri.substring(ctx.length() + 1);
|
||||
String file = pathInfo.substring(1);
|
||||
ResourceKey key = new ResourceKey(holder.plugin, file);
|
||||
Resource rsc = resourceCache.getIfPresent(key);
|
||||
if (rsc != null) {
|
||||
@@ -273,6 +261,7 @@ class HttpPluginServlet extends HttpServlet
|
||||
return;
|
||||
}
|
||||
|
||||
String uri = req.getRequestURI();
|
||||
if ("".equals(file)) {
|
||||
res.sendRedirect(uri + holder.docPrefix + "index.html");
|
||||
return;
|
||||
@@ -675,32 +664,4 @@ class HttpPluginServlet extends HttpServlet
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
private static class WrappedRequest extends HttpServletRequestWrapper {
|
||||
private final String contextPath;
|
||||
|
||||
WrappedRequest(HttpServletRequest req, String contextPath) {
|
||||
super(req);
|
||||
this.contextPath = contextPath;
|
||||
}
|
||||
|
||||
@Override
|
||||
public String getContextPath() {
|
||||
return contextPath;
|
||||
}
|
||||
|
||||
@Override
|
||||
public String getServletPath() {
|
||||
return getRequestURI().substring(contextPath.length());
|
||||
}
|
||||
|
||||
@Override
|
||||
public String getRequestURI() {
|
||||
String uri = super.getRequestURI();
|
||||
if (uri.startsWith("/a/")) {
|
||||
uri = uri.substring(2);
|
||||
}
|
||||
return uri;
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user