Java tutorial
/************************************************************************* * * * SignServer: The OpenSource Automated Signing Server * * * * This software is free software; you can redistribute it and/or * * modify it under the terms of the GNU Lesser General Public * * License as published by the Free Software Foundation; either * * version 2.1 of the License, or any later version. * * * * See terms of license at gnu.org. * * * *************************************************************************/ package org.signserver.client.cli.defaultimpl; import java.io.ByteArrayOutputStream; import java.io.IOException; import java.io.InputStream; import java.io.OutputStream; import java.net.HttpURLConnection; import java.net.URL; import java.util.Map; import org.apache.log4j.Logger; import org.bouncycastle.util.encoders.Base64; import org.signserver.common.CryptoTokenOfflineException; import org.signserver.common.IllegalRequestException; import org.signserver.common.SignServerException; /** * DocumentSigner using the HTTP protocol. * * @author Markus Kils * @version $Id: HTTPDocumentSigner.java 6019 2015-05-11 08:31:54Z netmackan $ */ public class HTTPDocumentSigner extends AbstractDocumentSigner { public static final String CRLF = "\r\n"; private static final String BASICAUTH_AUTHORIZATION = "Authorization"; private static final String BASICAUTH_BASIC = "Basic"; /** Logger for this class. */ private static final Logger LOG = Logger.getLogger(HTTPDocumentSigner.class); private static final String BOUNDARY = "------------------signserver"; private final String workerName; private final int workerId; private URL processServlet; private String username; private String password; /** Password used for changing the PDF if required (user or owner password). */ private String pdfPassword; private Map<String, String> metadata; public HTTPDocumentSigner(final URL processServlet, final String workerName, final String username, final String password, final String pdfPassword, final Map<String, String> metadata) { this.processServlet = processServlet; this.workerName = workerName; this.workerId = 0; this.username = username; this.password = password; this.pdfPassword = pdfPassword; this.metadata = metadata; } public HTTPDocumentSigner(final URL processServlet, final int workerId, final String username, final String password, final String pdfPassword, final Map<String, String> metadata) { this.processServlet = processServlet; this.workerName = null; this.workerId = workerId; this.username = username; this.password = password; this.pdfPassword = pdfPassword; this.metadata = metadata; } protected void doSign(final byte[] data, final String encoding, final OutputStream out, final Map<String, Object> requestContext) throws IllegalRequestException, CryptoTokenOfflineException, SignServerException, IOException { // final int requestId = random.nextInt(); if (LOG.isDebugEnabled()) { LOG.debug("Sending sign request " + " containing data of length " + data.length + " bytes" + " to worker " + workerName); } final Response response = sendRequest(processServlet, data, requestContext); if (LOG.isDebugEnabled()) { LOG.debug(String.format("Got sign response " + "with signed data of length %d bytes.", response.getData().length)); } // Write the signed data out.write(response.getData()); } private Response sendRequest(final URL processServlet, final byte[] data, final Map<String, Object> requestContext) throws IOException { OutputStream out = null; InputStream in = null; try { final HttpURLConnection conn = (HttpURLConnection) processServlet.openConnection(); conn.setDoOutput(true); conn.setAllowUserInteraction(false); if (username != null && password != null) { conn.setRequestProperty(BASICAUTH_AUTHORIZATION, BASICAUTH_BASIC + " " + new String(Base64.encode((username + ":" + password).getBytes()))); } final StringBuilder sb = new StringBuilder(); sb.append("--" + BOUNDARY); sb.append(CRLF); if (workerName == null) { sb.append("Content-Disposition: form-data; name=\"workerId\""); sb.append(CRLF); sb.append(CRLF); sb.append(workerId); } else { sb.append("Content-Disposition: form-data; name=\"workerName\""); sb.append(CRLF); sb.append(CRLF); sb.append(workerName); } sb.append(CRLF); if (pdfPassword != null) { sb.append("--" + BOUNDARY).append(CRLF) .append("Content-Disposition: form-data; name=\"pdfPassword\"").append(CRLF).append(CRLF) .append(pdfPassword).append(CRLF); } if (metadata != null) { for (final String key : metadata.keySet()) { final String value = metadata.get(key); sb.append("--" + BOUNDARY).append(CRLF) .append("Content-Disposition: form-data; name=\"REQUEST_METADATA." + key + "\"") .append(CRLF).append(CRLF).append(value).append(CRLF); } } sb.append("--" + BOUNDARY); sb.append(CRLF); sb.append("Content-Disposition: form-data; name=\"datafile\""); sb.append("; filename=\""); if (requestContext.get("FILENAME") == null) { sb.append("noname.dat"); } else { sb.append(requestContext.get("FILENAME")); } sb.append("\""); sb.append(CRLF); sb.append("Content-Type: application/octet-stream"); sb.append(CRLF); sb.append("Content-Transfer-Encoding: binary"); sb.append(CRLF); sb.append(CRLF); conn.addRequestProperty("Content-Type", "multipart/form-data; boundary=" + BOUNDARY); out = conn.getOutputStream(); out.write(sb.toString().getBytes()); out.write(data); out.write(("\r\n--" + BOUNDARY + "--\r\n").getBytes()); out.flush(); // Get the response final int responseCode = conn.getResponseCode(); if (responseCode >= 400) { in = conn.getErrorStream(); } else { in = conn.getInputStream(); } final ByteArrayOutputStream os = new ByteArrayOutputStream(); int len; final byte[] buf = new byte[1024]; while ((len = in.read(buf)) > 0) { os.write(buf, 0, len); } os.close(); if (responseCode >= 400) { throw new HTTPException(processServlet, responseCode, conn.getResponseMessage(), os.toByteArray()); } return new Response(os.toByteArray()); } finally { if (out != null) { try { out.close(); } catch (IOException ex) { throw new RuntimeException(ex); } } if (in != null) { try { in.close(); } catch (IOException ex) { throw new RuntimeException(ex); } } } } private static class Response { private byte[] data; public Response(byte[] data) { this.data = data; } public byte[] getData() { return data; } } }