Java tutorial
/* * Copyright (c) 2008-2016 Haulmont. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. * */ package com.haulmont.cuba.core.controllers; import com.haulmont.cuba.core.app.FileStorageAPI; import com.haulmont.cuba.core.entity.FileDescriptor; import com.haulmont.cuba.core.global.FileStorageException; import com.haulmont.cuba.core.sys.AppContext; import com.haulmont.cuba.core.sys.SecurityContext; import com.haulmont.cuba.security.app.UserSessionsAPI; import com.haulmont.cuba.security.global.UserSession; import org.apache.commons.io.IOUtils; import org.slf4j.Logger; import org.slf4j.LoggerFactory; import org.springframework.stereotype.Controller; import org.springframework.web.bind.annotation.RequestMapping; import org.springframework.web.bind.annotation.RequestMethod; import javax.inject.Inject; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import java.io.IOException; import java.io.InputStream; import java.util.UUID; @Controller public class FileUploadController { private static final Logger log = LoggerFactory.getLogger(FileUploadController.class); @Inject private UserSessionsAPI userSessions; @Inject private FileStorageAPI fileStorage; @RequestMapping(value = "/upload", method = RequestMethod.POST) public void upload(HttpServletRequest request, HttpServletResponse response) throws IOException { UserSession userSession = getSession(request, response); if (userSession == null) return; AppContext.setSecurityContext(new SecurityContext(userSession)); try { InputStream is = request.getInputStream(); if (is == null) { response.sendError(HttpServletResponse.SC_BAD_REQUEST); return; } FileDescriptor fd = getFileDescriptor(request, response); if (fd == null) return; try { fileStorage.saveStream(fd, is); } catch (FileStorageException e) { log.error("Unable to upload file", e); response.sendError(e.getType().getHttpStatus()); } finally { IOUtils.closeQuietly(is); } } finally { AppContext.setSecurityContext(null); } } private UserSession getSession(HttpServletRequest request, HttpServletResponse response) throws IOException { UUID sessionId; try { sessionId = UUID.fromString(request.getParameter("s")); } catch (Exception e) { log.error("Error parsing sessionId from URL param", e); response.sendError(HttpServletResponse.SC_BAD_REQUEST); return null; } UserSession session = userSessions.getAndRefresh(sessionId); if (session == null) response.sendError(HttpServletResponse.SC_FORBIDDEN); return session; } private FileDescriptor getFileDescriptor(HttpServletRequest request, HttpServletResponse response) throws IOException { FileDescriptor fd; try { fd = FileDescriptor.fromUrlParam(request.getParameter("f")); } catch (Exception e) { log.error("Error parsing FileDescriptor from URL param", e); response.sendError(HttpServletResponse.SC_BAD_REQUEST); return null; } return fd; } }