io.undertow.server.handlers.DisallowedMethodsHandler Maven / Gradle / Ivy
/*
* JBoss, Home of Professional Open Source.
* Copyright 2014 Red Hat, Inc., and individual contributors
* as indicated by the @author tags.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package io.undertow.server.handlers;
import java.util.Arrays;
import java.util.Collections;
import java.util.HashSet;
import java.util.Map;
import java.util.Set;
import io.undertow.server.HandlerWrapper;
import io.undertow.server.HttpHandler;
import io.undertow.server.HttpServerExchange;
import io.undertow.server.handlers.builder.HandlerBuilder;
import io.undertow.util.HttpString;
import io.undertow.util.StatusCodes;
import java.util.stream.Collectors;
/**
* Handler that blacklists certain HTTP methods.
*
* @author Stuart Douglas
*/
public class DisallowedMethodsHandler implements HttpHandler {
private final Set disallowedMethods;
private final HttpHandler next;
public DisallowedMethodsHandler(final HttpHandler next, final Set disallowedMethods) {
this.disallowedMethods = new HashSet<>(disallowedMethods);
this.next = next;
}
public DisallowedMethodsHandler(final HttpHandler next, final HttpString... disallowedMethods) {
this.disallowedMethods = new HashSet<>(Arrays.asList(disallowedMethods));
this.next = next;
}
@Override
public void handleRequest(final HttpServerExchange exchange) throws Exception {
if (disallowedMethods.contains(exchange.getRequestMethod())) {
exchange.setStatusCode(StatusCodes.METHOD_NOT_ALLOWED);
exchange.endExchange();
} else {
next.handleRequest(exchange);
}
}
@Override
public String toString() {
if (disallowedMethods.size() == 1) {
return "disallowed-methods( " + disallowedMethods.toArray()[0] + " )";
} else {
return "disallowed-methods( {" + disallowedMethods.stream().map(s -> s.toString()).collect(Collectors.joining(", ")) + "} )";
}
}
public static class Builder implements HandlerBuilder {
@Override
public String name() {
return "disallowed-methods";
}
@Override
public Map> parameters() {
return Collections.>singletonMap("methods", String[].class);
}
@Override
public Set requiredParameters() {
return Collections.singleton("methods");
}
@Override
public String defaultParameter() {
return "methods";
}
@Override
public HandlerWrapper build(Map config) {
return new Wrapper((String[]) config.get("methods"));
}
}
private static class Wrapper implements HandlerWrapper {
private final String[] methods;
private Wrapper(String[] methods) {
this.methods = methods;
}
@Override
public HttpHandler wrap(HttpHandler handler) {
HttpString[] strings = new HttpString[methods.length];
for(int i = 0; i < methods.length; ++i) {
strings[i] = new HttpString(methods[i]);
}
return new DisallowedMethodsHandler(handler, strings);
}
}
}
© 2015 - 2024 Weber Informatics LLC | Privacy Policy