org.basket3.web.S3ObjectRequest.java Source code

Java tutorial

Introduction

Here is the source code for org.basket3.web.S3ObjectRequest.java

Source

/*
 * Copyright 2007 Jesse Peterson
 * 
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 * 
 *     http://www.apache.org/licenses/LICENSE-2.0
 * 
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package org.basket3.web;

import java.io.UnsupportedEncodingException;
import java.net.URLDecoder;
import java.util.Date;
import java.util.Enumeration;
import java.util.Iterator;
import java.util.Map;
import java.util.TreeMap;

import javax.servlet.http.HttpServletRequest;

import org.apache.commons.httpclient.util.DateParseException;
import org.apache.commons.httpclient.util.DateUtil;

import org.basket3.bo.Authenticator;
import org.basket3.bo.AuthenticatorException;
import org.basket3.bo.CanonicalUser;
import org.basket3.bo.HackAuthenticator;
import org.basket3.bo.S3Authenticator;

import com.google.common.base.Preconditions;

/**
 * Data structure for parsing an S3 object request.
 * 
 * @author Jesse Peterson
 */
public class S3ObjectRequest {
    private String serviceEndpoint;

    private String bucket;

    private String key;

    private CanonicalUser requestor;

    private String stringToSign;

    private Date timestamp;

    private static final String PARAMETER_ACL = "acl";

    private static boolean debug = false;

    /**
     * Empty constructor.
     */
    protected S3ObjectRequest() {
    }

    /**
     * Create an <code>S3Object</code> based on the request supporting virtual
     * hosting of buckets.
     * 
     * @param req
     *            The original request.
     * @param baseHost
     *            The <code>baseHost</code> is the HTTP Host header that is
     *            "expected". This is used to help determine how the bucket name
     *            will be interpreted. This is used to implement the "Virtual
     *            Hosting of Buckets".
     * @param authenticator
     *            The authenticator to use to authenticate this request.
     * @return An object initialized from the request.
     * @throws IllegalArgumentException
     *             Invalid request.
     */
    @SuppressWarnings("unchecked")
    public static S3ObjectRequest create(HttpServletRequest req, String baseHost, Authenticator authenticator)
            throws IllegalArgumentException, AuthenticatorException {
        S3ObjectRequest o = new S3ObjectRequest();
        String pathInfo = req.getPathInfo();
        String contextPath = req.getContextPath();
        String requestURI = req.getRequestURI();
        String undecodedPathPart = null;
        int pathInfoLength;
        String requestURL;
        String serviceEndpoint;
        String bucket = null;
        String key = null;
        String host;
        String value;
        String timestamp;

        baseHost = baseHost.toLowerCase();

        host = req.getHeader("Host");
        if (host != null) {
            host = host.toLowerCase();
        }

        try {
            requestURL = URLDecoder.decode(req.getRequestURL().toString(), "UTF-8");
        } catch (UnsupportedEncodingException e) {
            // should never happen
            e.printStackTrace();
            IllegalArgumentException t = new IllegalArgumentException("Unsupport encoding: UTF-8");
            t.initCause(e);
            throw t;
        }

        if (!requestURL.endsWith(pathInfo)) {
            String m = "requestURL [" + requestURL + "] does not end with pathInfo [" + pathInfo + "]";
            throw new IllegalArgumentException(m);
        }

        pathInfoLength = pathInfo.length();

        serviceEndpoint = requestURL.substring(0, requestURL.length() - pathInfoLength);

        if (debug) {
            System.out.println("---------------");
            System.out.println("requestURI: " + requestURI);
            System.out.println("serviceEndpoint: " + serviceEndpoint);
            System.out.println("---------------");
        }
        Preconditions.checkNotNull(contextPath, "Context path cannot be null");

        if ((host == null) || // http 1.0 form
                (host.equals(baseHost))) { // ordinary method
            // http 1.0 form
            // bucket first part of path info
            // key second part of path info
            if (pathInfoLength > 1) {
                int index = pathInfo.indexOf('/', 1);
                if (index > -1) {
                    bucket = pathInfo.substring(1, index);

                    if (pathInfoLength > (index + 1)) {
                        key = pathInfo.substring(index + 1);
                        undecodedPathPart = requestURI.substring(contextPath.length() + 1 + bucket.length(),
                                requestURI.length());
                    }
                } else {
                    bucket = pathInfo.substring(1);
                }
            }
        } else if (host.endsWith("." + baseHost)) {
            // bucket prefix of host
            // key is path info
            bucket = host.substring(0, host.length() - 1 - baseHost.length());
            if (pathInfoLength > 1) {
                key = pathInfo.substring(1);
                undecodedPathPart = requestURI.substring(contextPath.length(), requestURI.length());
            }
        } else {
            // bucket is host
            // key is path info
            bucket = host;
            if (pathInfoLength > 1) {
                key = pathInfo.substring(1);
                undecodedPathPart = requestURI.substring(contextPath.length(), requestURI.length());
            }
        }

        // timestamp
        timestamp = req.getHeader("Date");

        // CanonicalizedResource
        StringBuffer canonicalizedResource = new StringBuffer();

        canonicalizedResource.append('/');
        if (bucket != null) {
            canonicalizedResource.append(bucket);
        }
        if (undecodedPathPart != null) {
            canonicalizedResource.append(undecodedPathPart);
        }
        if (req.getParameter(PARAMETER_ACL) != null) {
            canonicalizedResource.append("?").append(PARAMETER_ACL);
        }

        // CanonicalizedAmzHeaders
        StringBuffer canonicalizedAmzHeaders = new StringBuffer();
        Map<String, String> headers = new TreeMap<String, String>();
        String headerName;
        String headerValue;

        Preconditions.checkNotNull(req.getHeaderNames(), "Http Request Header names cannot be null");

        for (Enumeration headerNames = req.getHeaderNames(); headerNames.hasMoreElements();) {
            headerName = ((String) headerNames.nextElement()).toLowerCase();

            if (headerName.startsWith("x-amz-")) {
                for (Enumeration headerValues = req.getHeaders(headerName); headerValues.hasMoreElements();) {
                    headerValue = (String) headerValues.nextElement();
                    String currentValue = headers.get(headerValue);

                    if (currentValue != null) {
                        // combine header fields with the same name
                        headers.put(headerName, currentValue + "," + headerValue);
                    } else {
                        headers.put(headerName, headerValue);
                    }

                    if (headerName.equals("x-amz-date")) {
                        timestamp = headerValue;
                    }
                }
            }
        }

        for (Iterator<String> iter = headers.keySet().iterator(); iter.hasNext();) {
            headerName = iter.next();
            headerValue = headers.get(headerName);
            canonicalizedAmzHeaders.append(headerName).append(":").append(headerValue).append("\n");
        }

        StringBuffer stringToSign = new StringBuffer();

        stringToSign.append(req.getMethod()).append("\n");
        value = req.getHeader("Content-MD5");
        if (value != null) {
            stringToSign.append(value);
        }
        stringToSign.append("\n");
        value = req.getHeader("Content-Type");
        if (value != null) {
            stringToSign.append(value);
        }
        stringToSign.append("\n");
        value = req.getHeader("Date");
        if (value != null) {
            stringToSign.append(value);
        }
        stringToSign.append("\n");
        stringToSign.append(canonicalizedAmzHeaders);
        stringToSign.append(canonicalizedResource);

        if (debug) {
            System.out.println(":v:v:v:v:");
            System.out.println("undecodedPathPart: " + undecodedPathPart);
            System.out.println("canonicalizedAmzHeaders: " + canonicalizedAmzHeaders);
            System.out.println("canonicalizedResource: " + canonicalizedResource);
            System.out.println("stringToSign: " + stringToSign);
            System.out.println(":^:^:^:^:");
        }

        o.setServiceEndpoint(serviceEndpoint);
        o.setBucket(bucket);
        o.setKey(key);
        try {
            if (timestamp == null) {
                o.setTimestamp(null);
            } else {
                o.setTimestamp(DateUtil.parseDate(timestamp));
            }
        } catch (DateParseException e) {
            o.setTimestamp(null);
        }
        o.setStringToSign(stringToSign.toString());
        o.setRequestor(authenticate(req, o));

        return o;
    }

    /**
     * The service endpoint. In a URL of "http://localhost/bucket/key", would
     * return "http://localhost".
     * 
     * @return The service endpoint.
     */
    public String getServiceEndpoint() {
        return serviceEndpoint;
    }

    /**
     * Set the service endpoint.
     * 
     * @param serviceEndpoint
     *            The service endpoint.
     */
    public void setServiceEndpoint(String serviceEndpoint) {
        this.serviceEndpoint = serviceEndpoint;
    }

    /**
     * The bucket. In a URL of "http://localhost/bucket/key", would return
     * "bucket".
     * 
     * @return The bucket. May be <code>null</code> if no bucket specified.
     */
    public String getBucket() {
        return bucket;
    }

    /**
     * Set the bucket.
     * 
     * @param bucket
     *            The bucket.
     */
    public void setBucket(String bucket) {
        this.bucket = bucket;
    }

    /**
     * The key. In a URL of "http://localhost/bucket/key", would return "key".
     * 
     * @return The key. May be <code>null</code> if no key specified.
     */
    public String getKey() {
        return key;
    }

    /**
     * Set the key.
     * 
     * @param key
     *            The key.
     */
    public void setKey(String key) {
        this.key = key;
    }

    /**
     * Get the principal who made the request.
     * 
     * @return The principal who made the request.
     */
    public CanonicalUser getRequestor() {
        return requestor;
    }

    /**
     * Set the principal who made the request.
     * 
     * @param requestor
     *            The principal who made the request.
     */
    public void setRequestor(CanonicalUser requestor) {
        this.requestor = requestor;
    }

    /**
     * The "String to Sign". Used in authentication.
     * 
     * @return The "String to Sign".
     */
    public String getStringToSign() {
        return stringToSign;
    }

    /**
     * Set the "String to Sign". Used in authentication.
     * 
     * @param stringToSign
     *            The "String to Sign".
     */
    public void setStringToSign(String stringToSign) {
        this.stringToSign = stringToSign;
    }

    /**
     * The request timestamp.
     * 
     * @return The request timestamp.
     */
    public Date getTimestamp() {
        return timestamp;
    }

    /**
     * Set the request timestamp.
     * 
     * @param timestamp
     *            The request timestamp
     */
    public void setTimestamp(Date timestamp) {
        this.timestamp = timestamp;
    }

    public String toString() {
        StringBuffer buffer = new StringBuffer();

        buffer.append("serviceEndpoint:[").append(serviceEndpoint);
        buffer.append("], bucket:[").append(bucket);
        buffer.append("], key:[").append(key);
        buffer.append("], requestor:[").append(requestor).append("]");

        return buffer.toString();
    }

    /**
     * Determine the principal making the request.
     * 
     * @param req
     *            an HttpServletRequest object that contains the request the
     *            client has made of the servlet
     * @return The principal making the request. Will be a
     *         <code>CanonicalUser</code> with an id of the user principal name
     *         if the request is authenticated or an "anonymous"
     *         <code>Canonicaluser</code> is the request is non authenticated.
     * @throws AuthenticatorException
     *             Unable to authenticate the request.
     */
    public static CanonicalUser authenticate(HttpServletRequest req, S3ObjectRequest o)
            throws AuthenticatorException {
        // TODO: remove hack
        try {
            Authenticator hackAuthenticator = new HackAuthenticator();
            return hackAuthenticator.authenticate(req, o);
        } catch (AuthenticatorException e) {
            // ignore
        }

        return new S3Authenticator().authenticate(req, o);
    }
}