1 /*******************************************************************************
\r
2 * ============LICENSE_START==================================================
\r
4 * * ===========================================================================
\r
5 * * Copyright © 2017 AT&T Intellectual Property. All rights reserved.
\r
6 * * ===========================================================================
\r
7 * * Licensed under the Apache License, Version 2.0 (the "License");
\r
8 * * you may not use this file except in compliance with the License.
\r
9 * * You may obtain a copy of the License at
\r
11 * * http://www.apache.org/licenses/LICENSE-2.0
\r
13 * * Unless required by applicable law or agreed to in writing, software
\r
14 * * distributed under the License is distributed on an "AS IS" BASIS,
\r
15 * * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
\r
16 * * See the License for the specific language governing permissions and
\r
17 * * limitations under the License.
\r
18 * * ============LICENSE_END====================================================
\r
20 * * ECOMP is a trademark and service mark of AT&T Intellectual Property.
\r
22 ******************************************************************************/
\r
25 package org.onap.dmaap.datarouter.node;
\r
27 import javax.servlet.*;
\r
28 import javax.servlet.http.*;
\r
30 import java.util.regex.*;
\r
32 import java.nio.file.*;
\r
33 import org.apache.log4j.Logger;
\r
34 import org.onap.dmaap.datarouter.node.eelf.EelfMsgs;
\r
36 import com.att.eelf.configuration.EELFLogger;
\r
37 import com.att.eelf.configuration.EELFManager;
\r
42 * Servlet for handling all http and https requests to the data router node
\r
44 * Handled requests are:
\r
46 * GET http://<i>node</i>/internal/fetchProv - fetch the provisioning data
\r
48 * PUT/DELETE https://<i>node</i>/internal/publish/<i>fileid</i> - n2n transfer
\r
50 * PUT/DELETE https://<i>node</i>/publish/<i>feedid</i>/<i>fileid</i> - publsh request
\r
52 public class NodeServlet extends HttpServlet {
\r
53 private static Logger logger = Logger.getLogger("org.onap.dmaap.datarouter.node.NodeServlet");
\r
54 private static NodeConfigManager config;
\r
55 private static Pattern MetaDataPattern;
\r
56 private static SubnetMatcher internalsubnet = new SubnetMatcher("135.207.136.128/25");
\r
57 //Adding EELF Logger Rally:US664892
\r
58 private static EELFLogger eelflogger = EELFManager.getInstance().getLogger("org.onap.dmaap.datarouter.node.NodeServlet");
\r
63 // assume that \\ and \" have been replaced by X
\r
64 String string = "\"[^\"]*\"";
\r
65 //String string = "\"(?:[^\"\\\\]|\\\\.)*\"";
\r
66 String number = "[+-]?(?:\\.\\d+|(?:0|[1-9]\\d*)(?:\\.\\d*)?)(?:[eE][+-]?\\d+)?";
\r
67 String value = "(?:" + string + "|" + number + "|null|true|false)";
\r
68 String item = string + ws + ":" + ws + value + ws;
\r
69 String object = ws + "\\{" + ws + "(?:" + item + "(?:" + "," + ws + item + ")*)?\\}" + ws;
\r
70 MetaDataPattern = Pattern.compile(object, Pattern.DOTALL);
\r
71 } catch (Exception e) {
\r
75 * Get the NodeConfigurationManager
\r
77 public void init() {
\r
78 config = NodeConfigManager.getInstance();
\r
79 logger.info("NODE0101 Node Servlet Configured");
\r
81 private boolean down(HttpServletResponse resp) throws IOException {
\r
82 if (config.isShutdown() || !config.isConfigured()) {
\r
83 resp.sendError(HttpServletResponse.SC_SERVICE_UNAVAILABLE);
\r
84 logger.info("NODE0102 Rejecting request: Service is being quiesced");
\r
90 * Handle a GET for /internal/fetchProv
\r
92 protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
\r
93 NodeUtils.setIpAndFqdnForEelf("doGet");
\r
94 eelflogger.info(EelfMsgs.MESSAGE_WITH_BEHALF_AND_FEEDID, req.getHeader("X-ATT-DR-ON-BEHALF-OF"),getIdFromPath(req)+"");
\r
98 String path = req.getPathInfo();
\r
99 String qs = req.getQueryString();
\r
100 String ip = req.getRemoteAddr();
\r
102 path = path + "?" + qs;
\r
104 if ("/internal/fetchProv".equals(path)) {
\r
105 config.gofetch(ip);
\r
106 resp.setStatus(HttpServletResponse.SC_NO_CONTENT);
\r
108 } else if (path.startsWith("/internal/resetSubscription/")) {
\r
109 String subid = path.substring(28);
\r
110 if (subid.length() != 0 && subid.indexOf('/') == -1) {
\r
111 NodeMain.resetQueue(subid, ip);
\r
112 resp.setStatus(HttpServletResponse.SC_NO_CONTENT);
\r
116 if (internalsubnet.matches(NodeUtils.getInetAddress(ip))) {
\r
117 if (path.startsWith("/internal/logs/")) {
\r
118 String f = path.substring(15);
\r
119 File fn = new File(config.getLogDir() + "/" + f);
\r
120 if (f.indexOf('/') != -1 || !fn.isFile()) {
\r
121 logger.info("NODE0103 Rejecting invalid GET of " + path + " from " + ip);
\r
122 resp.sendError(HttpServletResponse.SC_NOT_FOUND);
\r
125 byte[] buf = new byte[65536];
\r
126 resp.setContentType("text/plain");
\r
127 resp.setContentLength((int)fn.length());
\r
128 resp.setStatus(200);
\r
129 InputStream is = new FileInputStream(fn);
\r
130 OutputStream os = resp.getOutputStream();
\r
132 while ((i = is.read(buf)) > 0) {
\r
133 os.write(buf, 0, i);
\r
138 if (path.startsWith("/internal/rtt/")) {
\r
139 String xip = path.substring(14);
\r
140 long st = System.currentTimeMillis();
\r
141 String status = " unknown";
\r
143 Socket s = new Socket(xip, 443);
\r
145 status = " connected";
\r
146 } catch (Exception e) {
\r
147 status = " error " + e.toString();
\r
149 long dur = System.currentTimeMillis() - st;
\r
150 resp.setContentType("text/plain");
\r
151 resp.setStatus(200);
\r
152 byte[] buf = (dur + status + "\n").getBytes();
\r
153 resp.setContentLength(buf.length);
\r
154 resp.getOutputStream().write(buf);
\r
158 logger.info("NODE0103 Rejecting invalid GET of " + path + " from " + ip);
\r
159 resp.sendError(HttpServletResponse.SC_NOT_FOUND);
\r
163 * Handle all PUT requests
\r
165 protected void doPut(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
\r
166 NodeUtils.setIpAndFqdnForEelf("doPut");
\r
167 eelflogger.info(EelfMsgs.MESSAGE_WITH_BEHALF_AND_FEEDID, req.getHeader("X-ATT-DR-ON-BEHALF-OF"),getIdFromPath(req)+"");
\r
168 common(req, resp, true);
\r
171 * Handle all DELETE requests
\r
173 protected void doDelete(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
\r
174 NodeUtils.setIpAndFqdnForEelf("doDelete");
\r
175 eelflogger.info(EelfMsgs.MESSAGE_WITH_BEHALF_AND_FEEDID, req.getHeader("X-ATT-DR-ON-BEHALF-OF"),getIdFromPath(req)+"");
\r
176 common(req, resp, false);
\r
178 private void common(HttpServletRequest req, HttpServletResponse resp, boolean isput) throws ServletException, IOException {
\r
182 if (!req.isSecure()) {
\r
183 logger.info("NODE0104 Rejecting insecure PUT or DELETE of " + req.getPathInfo() + " from " + req.getRemoteAddr());
\r
184 resp.sendError(HttpServletResponse.SC_FORBIDDEN, "https required on publish requests");
\r
187 String fileid = req.getPathInfo();
\r
188 if (fileid == null) {
\r
189 logger.info("NODE0105 Rejecting bad URI for PUT or DELETE of " + req.getPathInfo() + " from " + req.getRemoteAddr());
\r
190 resp.sendError(HttpServletResponse.SC_NOT_FOUND, "Invalid request URI. Expecting <feed-publishing-url>/<fileid>.");
\r
193 String feedid = null;
\r
194 String user = null;
\r
195 String credentials = req.getHeader("Authorization");
\r
196 if (credentials == null) {
\r
197 logger.info("NODE0106 Rejecting unauthenticated PUT or DELETE of " + req.getPathInfo() + " from " + req.getRemoteAddr());
\r
198 resp.sendError(HttpServletResponse.SC_FORBIDDEN, "Authorization header required");
\r
201 String ip = req.getRemoteAddr();
\r
202 String lip = req.getLocalAddr();
\r
203 String pubid = null;
\r
204 String xpubid = null;
\r
205 String rcvd = NodeUtils.logts(System.currentTimeMillis()) + ";from=" + ip + ";by=" + lip;
\r
206 Target[] targets = null;
\r
207 if (fileid.startsWith("/publish/")) {
\r
208 fileid = fileid.substring(9);
\r
209 int i = fileid.indexOf('/');
\r
210 if (i == -1 || i == fileid.length() - 1) {
\r
211 logger.info("NODE0105 Rejecting bad URI for PUT or DELETE of " + req.getPathInfo() + " from " + req.getRemoteAddr());
\r
212 resp.sendError(HttpServletResponse.SC_NOT_FOUND, "Invalid request URI. Expecting <feed-publishing-url>/<fileid>. Possible missing fileid.");
\r
215 feedid = fileid.substring(0, i);
\r
216 fileid = fileid.substring(i + 1);
\r
217 pubid = config.getPublishId();
\r
218 xpubid = req.getHeader("X-ATT-DR-PUBLISH-ID");
\r
219 targets = config.getTargets(feedid);
\r
220 } else if (fileid.startsWith("/internal/publish/")) {
\r
221 if (!config.isAnotherNode(credentials, ip)) {
\r
222 logger.info("NODE0107 Rejecting unauthorized node-to-node transfer attempt from " + ip);
\r
223 resp.sendError(HttpServletResponse.SC_FORBIDDEN);
\r
226 fileid = fileid.substring(18);
\r
227 pubid = req.getHeader("X-ATT-DR-PUBLISH-ID");
\r
228 targets = config.parseRouting(req.getHeader("X-ATT-DR-ROUTING"));
\r
230 logger.info("NODE0105 Rejecting bad URI for PUT or DELETE of " + req.getPathInfo() + " from " + req.getRemoteAddr());
\r
231 resp.sendError(HttpServletResponse.SC_NOT_FOUND, "Invalid request URI. Expecting <feed-publishing-url>/<fileid>.");
\r
234 if (fileid.indexOf('/') != -1) {
\r
235 logger.info("NODE0105 Rejecting bad URI for PUT or DELETE of " + req.getPathInfo() + " from " + req.getRemoteAddr());
\r
236 resp.sendError(HttpServletResponse.SC_NOT_FOUND, "Invalid request URI. Expecting <feed-publishing-url>/<fileid>.");
\r
239 String qs = req.getQueryString();
\r
241 fileid = fileid + "?" + qs;
\r
243 String hp = config.getMyName();
\r
244 int xp = config.getExtHttpsPort();
\r
246 hp = hp + ":" + xp;
\r
248 String logurl = "https://" + hp + "/internal/publish/" + fileid;
\r
249 if (feedid != null) {
\r
250 logurl = "https://" + hp + "/publish/" + feedid + "/" + fileid;
\r
251 String reason = config.isPublishPermitted(feedid, credentials, ip);
\r
252 if (reason != null) {
\r
253 logger.info("NODE0111 Rejecting unauthorized publish attempt to feed " + feedid + " fileid " + fileid + " from " + ip + " reason " + reason);
\r
254 resp.sendError(HttpServletResponse.SC_FORBIDDEN,reason);
\r
257 user = config.getAuthUser(feedid, credentials);
\r
258 String newnode = config.getIngressNode(feedid, user, ip);
\r
259 if (newnode != null) {
\r
261 int iport = config.getExtHttpsPort();
\r
262 if (iport != 443) {
\r
263 port = ":" + iport;
\r
265 String redirto = "https://" + newnode + port + "/publish/" + feedid + "/" + fileid;
\r
266 logger.info("NODE0108 Redirecting publish attempt for feed " + feedid + " user " + user + " ip " + ip + " to " + redirto);
\r
267 resp.sendRedirect(redirto);
\r
270 resp.setHeader("X-ATT-DR-PUBLISH-ID", pubid);
\r
272 String fbase = config.getSpoolDir() + "/" + pubid;
\r
273 File data = new File(fbase);
\r
274 File meta = new File(fbase + ".M");
\r
275 OutputStream dos = null;
\r
277 InputStream is = null;
\r
279 StringBuffer mx = new StringBuffer();
\r
280 mx.append(req.getMethod()).append('\t').append(fileid).append('\n');
\r
281 Enumeration hnames = req.getHeaderNames();
\r
282 String ctype = null;
\r
283 while (hnames.hasMoreElements()) {
\r
284 String hn = (String)hnames.nextElement();
\r
285 String hnlc = hn.toLowerCase();
\r
286 if ((isput && ("content-type".equals(hnlc) ||
\r
287 "content-language".equals(hnlc) ||
\r
288 "content-md5".equals(hnlc) ||
\r
289 "content-range".equals(hnlc))) ||
\r
290 "x-att-dr-meta".equals(hnlc) ||
\r
291 (feedid == null && "x-att-dr-received".equals(hnlc)) ||
\r
292 (hnlc.startsWith("x-") && !hnlc.startsWith("x-att-dr-"))) {
\r
293 Enumeration hvals = req.getHeaders(hn);
\r
294 while (hvals.hasMoreElements()) {
\r
295 String hv = (String)hvals.nextElement();
\r
296 if ("content-type".equals(hnlc)) {
\r
299 if ("x-att-dr-meta".equals(hnlc)) {
\r
300 if (hv.length() > 4096) {
\r
301 logger.info("NODE0109 Rejecting publish attempt with metadata too long for feed " + feedid + " user " + user + " ip " + ip);
\r
302 resp.sendError(HttpServletResponse.SC_BAD_REQUEST, "Metadata too long");
\r
305 if (!MetaDataPattern.matcher(hv.replaceAll("\\\\.", "X")).matches()) {
\r
306 logger.info("NODE0109 Rejecting publish attempt with malformed metadata for feed " + feedid + " user " + user + " ip " + ip);
\r
307 resp.sendError(HttpServletResponse.SC_BAD_REQUEST, "Malformed metadata");
\r
311 mx.append(hn).append('\t').append(hv).append('\n');
\r
315 mx.append("X-ATT-DR-RECEIVED\t").append(rcvd).append('\n');
\r
316 String metadata = mx.toString();
\r
317 byte[] buf = new byte[1024 * 1024];
\r
320 is = req.getInputStream();
\r
321 dos = new FileOutputStream(data);
\r
322 while ((i = is.read(buf)) > 0) {
\r
323 dos.write(buf, 0, i);
\r
329 } catch (IOException ioe) {
\r
332 exlen = Long.parseLong(req.getHeader("Content-Length"));
\r
333 } catch (Exception e) {
\r
335 StatusLog.logPubFail(pubid, feedid, logurl, req.getMethod(), ctype, exlen, data.length(), ip, user, ioe.getMessage());
\r
338 Path dpath = Paths.get(fbase);
\r
339 for (Target t: targets) {
\r
340 DestInfo di = t.getDestInfo();
\r
342 // TODO: unknown destination
\r
345 String dbase = di.getSpool() + "/" + pubid;
\r
346 Files.createLink(Paths.get(dbase), dpath);
\r
347 mw = new FileWriter(meta);
\r
348 mw.write(metadata);
\r
349 if (di.getSubId() == null) {
\r
350 mw.write("X-ATT-DR-ROUTING\t" + t.getRouting() + "\n");
\r
353 meta.renameTo(new File(dbase + ".M"));
\r
355 resp.setStatus(HttpServletResponse.SC_NO_CONTENT);
\r
356 resp.getOutputStream().close();
\r
357 StatusLog.logPub(pubid, feedid, logurl, req.getMethod(), ctype, data.length(), ip, user, HttpServletResponse.SC_NO_CONTENT);
\r
358 } catch (IOException ioe) {
\r
359 logger.info("NODE0110 IO Exception receiving publish attempt for feed " + feedid + " user " + user + " ip " + ip + " " + ioe.toString(), ioe);
\r
362 if (is != null) { try { is.close(); } catch (Exception e) {}}
\r
363 if (dos != null) { try { dos.close(); } catch (Exception e) {}}
\r
364 if (mw != null) { try { mw.close(); } catch (Exception e) {}}
\r
365 try { data.delete(); } catch (Exception e) {}
\r
366 try { meta.delete(); } catch (Exception e) {}
\r
370 private int getIdFromPath(HttpServletRequest req) {
\r
371 String path = req.getPathInfo();
\r
372 if (path == null || path.length() < 2)
\r
375 return Integer.parseInt(path.substring(1));
\r
376 } catch (NumberFormatException e) {
\r
Code Review / dmaap / datarouter.git / blob