org.signserver.server.archive.base64dbarchiver.Base64DatabaseArchiver.java Source code

Java tutorial

  1. HOME
  2. Java
  3. org.signserver.server.archive.base64dbarchiver.Base64DatabaseArchiver.java

Introduction

Here is the source code for org.signserver.server.archive.base64dbarchiver.Base64DatabaseArchiver.java

Source

/*************************************************************************
 *                                                                       *
 *  SignServer: The OpenSource Automated Signing Server                  *
 *                                                                       *
 *  This software is free software; you can redistribute it and/or       *
 *  modify it under the terms of the GNU Lesser General Public           *
 *  License as published by the Free Software Foundation; either         *
 *  version 2.1 of the License, or any later version.                    *
 *                                                                       *
 *  See terms of license at gnu.org.                                     *
 *                                                                       *
 *************************************************************************/
package org.signserver.server.archive.base64dbarchiver;

import java.security.cert.X509Certificate;
import java.util.Arrays;
import java.util.Collections;
import java.util.LinkedList;
import java.util.List;
import javax.persistence.EntityManager;
import org.apache.commons.lang.StringUtils;
import org.apache.log4j.Logger;
import org.bouncycastle.util.encoders.Base64;
import org.signserver.common.ArchiveDataVO;
import org.signserver.common.RequestContext;
import org.signserver.common.WorkerConfig;
import org.signserver.common.util.XForwardedForUtils;
import org.signserver.server.SignServerContext;
import org.signserver.server.archive.Archivable;
import org.signserver.server.archive.ArchiveException;
import org.signserver.server.archive.Archiver;
import org.signserver.server.archive.ArchiverInitException;
import org.signserver.server.archive.olddbarchiver.ArchiveOfTypes;
import org.signserver.server.archive.olddbarchiver.entities.ArchiveDataService;
import org.signserver.server.log.IWorkerLogger;
import org.signserver.server.log.LogMap;

/**
 * Archiver archiving to the database table ArchiveData with the archived bytes
 * in base64 encoding.
 * 
 * Currently only Archivable.TYPE_RESPONSE are supported.
 *
 * @author Markus Kils
 * @version $Id: Base64DatabaseArchiver.java 4602 2014-04-16 12:43:52Z netmackan $
 */
public class Base64DatabaseArchiver implements Archiver {

    /** Logger for this class. */
    private static final Logger LOG = Logger.getLogger(Base64DatabaseArchiver.class);

    private static final String PROPERTY_ARCHIVE_OF_TYPE = "ARCHIVE_OF_TYPE";
    private static final String PROPERTY_USE_FORWARDED_ADDRESS = "USE_FORWARDED_ADDRESS";
    private static final String PROPERTY_MAX_FORWARDED_ADDRESSES = "MAX_FORWARDED_ADDRESSES";
    private static final String PROPERTY_INCLUDE_DIRECT_ADDRESS = "INCLUDE_DIRECT_ADDRESS";
    private static final int DEFAULT_MAX_FORWARDED_ADDRESSES = 1;

    private ArchiveOfTypes archiveOfTypes;

    private boolean useXForwardedFor = false;
    private int maxForwardedAddresses;
    private boolean includeDirectAddress;

    @Override
    public void init(int listIndex, WorkerConfig config, SignServerContext context) throws ArchiverInitException {
        if (!context.isDatabaseConfigured()) {
            throw new ArchiverInitException("Base64DatabaseArchiver requires a database connection");
        }

        // Configuration of what to archive
        final String propertyArchiveOfType = "ARCHIVER" + listIndex + "." + PROPERTY_ARCHIVE_OF_TYPE;
        try {
            archiveOfTypes = ArchiveOfTypes
                    .valueOf(config.getProperty(propertyArchiveOfType, ArchiveOfTypes.RESPONSE.name()));
        } catch (IllegalArgumentException ex) {
            if (LOG.isDebugEnabled()) {
                LOG.debug("Illegal value for worker property " + propertyArchiveOfType + ": " + ex.getMessage());
            }
            throw new ArchiverInitException("Illegal value for worker property " + propertyArchiveOfType);
        }

        // configuration for using the X-FORWARDED-FOR header to determine source IP
        final String propertyXForwardedFor = "ARCHIVER" + listIndex + "." + PROPERTY_USE_FORWARDED_ADDRESS;
        final String propertyMaxForwardedAddresses = "ARCHIVER" + listIndex + "."
                + PROPERTY_MAX_FORWARDED_ADDRESSES;
        final String propertyIncludeDirect = "ARCHIVER" + listIndex + "." + PROPERTY_INCLUDE_DIRECT_ADDRESS;
        useXForwardedFor = Boolean.valueOf(config.getProperty(propertyXForwardedFor));
        maxForwardedAddresses = Integer.valueOf(
                config.getProperty(propertyMaxForwardedAddresses, String.valueOf(DEFAULT_MAX_FORWARDED_ADDRESSES)));
        includeDirectAddress = Boolean.valueOf(config.getProperty(propertyIncludeDirect));
    }

    @Override
    public boolean archive(Archivable archivable, RequestContext requestContext) throws ArchiveException {
        final boolean archived;

        // Get the type of this request
        int archiveType = -1;
        if (Archivable.TYPE_RESPONSE.equals(archivable.getType())) {
            archiveType = ArchiveDataVO.TYPE_RESPONSE;
        } else if (Archivable.TYPE_REQUEST.equals(archivable.getType())) {
            archiveType = ArchiveDataVO.TYPE_REQUEST;
        }

        // Only archive if the type of this request is the type configured for this Archiver
        if ((archiveOfTypes == ArchiveOfTypes.REQUEST && archiveType == ArchiveDataVO.TYPE_REQUEST)
                || (archiveOfTypes == ArchiveOfTypes.RESPONSE && archiveType == ArchiveDataVO.TYPE_RESPONSE)
                || (archiveOfTypes == ArchiveOfTypes.REQUEST_AND_RESPONSE
                        && (archiveType == ArchiveDataVO.TYPE_RESPONSE
                                || archiveType == ArchiveDataVO.TYPE_REQUEST))) {
            final EntityManager em = requestContext.getEntityManager();
            if (em == null) {
                throw new ArchiveException("Could not archive as archiver was not successfully initialized");
            }
            final ArchiveDataService dataService = new ArchiveDataService(em);
            final Integer workerId = (Integer) requestContext.get(RequestContext.WORKER_ID);
            final X509Certificate certificate = (X509Certificate) requestContext
                    .get(RequestContext.CLIENT_CERTIFICATE);
            String remoteIp = (String) requestContext.get(RequestContext.REMOTE_IP);

            final String uniqueId;

            if (useXForwardedFor) {
                final List<String> ips = new LinkedList<String>();
                final String[] forwardedIps = XForwardedForUtils.getXForwardedForIPs(requestContext,
                        maxForwardedAddresses);

                if (includeDirectAddress) {
                    ips.add(remoteIp);
                }

                if (forwardedIps != null) {
                    ips.addAll(Arrays.asList(forwardedIps));
                }

                Collections.reverse(ips);

                if (!ips.isEmpty()) {
                    remoteIp = StringUtils.join(ips, ", ");
                }
            }

            uniqueId = dataService.create(archiveType, workerId, archivable.getArchiveId(), certificate, remoteIp,
                    new String(Base64.encode(archivable.getContentEncoded())));

            if (LOG.isDebugEnabled()) {
                LOG.debug("Archived with uniqueId: " + uniqueId);
            }
            LogMap logMap = LogMap.getInstance(requestContext);
            String ids = logMap.get(IWorkerLogger.LOG_ARCHIVE_IDS);
            if (ids == null) {
                ids = uniqueId;
            } else {
                ids = ids + ", " + uniqueId;
            }
            logMap.put(IWorkerLogger.LOG_ARCHIVE_IDS, ids);

            archived = true;
        } else {
            archived = false;
        }
        return archived;
    }
}