Google Git
Sign in
apache / openmeetings / refs/heads/2.0 / . / src / org / openmeetings / servlet / outputhandler / DownloadHandler.java
blob: 7c547f1e0c89174603cf796ab0f5f69db1af3e97 [file] [log] [blame]
/*
* Licensed to the Apache Software Foundation (ASF) under one
* or more contributor license agreements. See the NOTICE file
* distributed with this work for additional information
* regarding copyright ownership. The ASF licenses this file
* to you under the Apache License, Version 2.0 (the
* "License") + you may not use this file except in compliance
* with the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
* KIND, either express or implied. See the License for the
* specific language governing permissions and limitations
* under the License.
*/
package org.openmeetings.servlet.outputhandler;
import java.io.File;
import java.io.IOException;
import java.io.OutputStream;
import java.io.RandomAccessFile;
import java.util.Date;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import org.apache.commons.lang.StringUtils;
import org.openmeetings.app.OpenmeetingsVariables;
import org.openmeetings.app.data.basic.Sessionmanagement;
import org.openmeetings.app.data.file.dao.FileExplorerItemDaoImpl;
import org.openmeetings.app.data.user.Usermanagement;
import org.openmeetings.app.persistence.beans.files.FileExplorerItem;
import org.openmeetings.app.remote.red5.ScopeApplicationAdapter;
import org.red5.logging.Red5LoggerFactory;
import org.slf4j.Logger;
import org.springframework.context.ApplicationContext;
import org.springframework.web.context.support.WebApplicationContextUtils;
public class DownloadHandler extends HttpServlet {
private static final long serialVersionUID = 7243653203578587544L;
private static final Logger log = Red5LoggerFactory.getLogger(
DownloadHandler.class, OpenmeetingsVariables.webAppRootKey);
private static final String defaultImageName = "deleted.jpg";
private static final String defaultProfileImageName = "profile_pic.jpg";
private static final String defaultProfileImageNameBig = "_big_profile_pic.jpg";
private static final String defaultChatImageName = "_chat_profile_pic.jpg";
private static final String defaultSWFName = "deleted.swf";
public Sessionmanagement getSessionManagement() {
try {
if (ScopeApplicationAdapter.initComplete) {
ApplicationContext context = WebApplicationContextUtils
.getWebApplicationContext(getServletContext());
return (Sessionmanagement) context.getBean("sessionManagement");
}
} catch (Exception err) {
log.error("[getSessionManagement]", err);
}
return null;
}
public Usermanagement getUserManagement() {
try {
if (ScopeApplicationAdapter.initComplete) {
ApplicationContext context = WebApplicationContextUtils
.getWebApplicationContext(getServletContext());
return (Usermanagement) context.getBean("userManagement");
}
} catch (Exception err) {
log.error("[getUserManagement]", err);
}
return null;
}
public FileExplorerItemDaoImpl getFileExplorerItemDaoImpl() {
try {
if (ScopeApplicationAdapter.initComplete) {
ApplicationContext context = WebApplicationContextUtils
.getWebApplicationContext(getServletContext());
return (FileExplorerItemDaoImpl) context.getBean("fileExplorerItemDao");
}
} catch (Exception err) {
log.error("[getUserManagement]", err);
}
return null;
}
private void logNonExistentFolder(String dir) {
File f = new File(dir);
if (!f.exists()) {
boolean c = f.mkdir();
if (!c) {
log.error("cannot write to directory");
}
}
}
/*
* (non-Javadoc)
*
* @see
* javax.servlet.http.HttpServlet#doPost(javax.servlet.http.HttpServletRequest
* , javax.servlet.http.HttpServletResponse)
*/
@Override
protected void service(HttpServletRequest httpServletRequest,
HttpServletResponse httpServletResponse) throws ServletException,
IOException {
try {
if (getUserManagement() == null || getSessionManagement() == null) {
return;
}
httpServletRequest.setCharacterEncoding("UTF-8");
log.debug("\nquery = " + httpServletRequest.getQueryString());
log.debug("\n\nfileName = "
+ httpServletRequest.getParameter("fileName"));
log.debug("\n\nparentPath = "
+ httpServletRequest.getParameter("parentPath"));
String queryString = httpServletRequest.getQueryString();
if (queryString == null) {
queryString = "";
}
String sid = httpServletRequest.getParameter("sid");
if (sid == null) {
sid = "default";
}
log.debug("sid: " + sid);
Long users_id = getSessionManagement().checkSession(sid);
Long user_level = getUserManagement().getUserLevelByID(users_id);
if (user_level != null && user_level > 0) {
String room_id = httpServletRequest.getParameter("room_id");
if (room_id == null) {
room_id = "default";
}
String moduleName = httpServletRequest
.getParameter("moduleName");
if (moduleName == null) {
moduleName = "nomodule";
}
String parentPath = httpServletRequest
.getParameter("parentPath");
if (parentPath == null) {
parentPath = "nomodule";
}
String requestedFile = httpServletRequest
.getParameter("fileName");
if (requestedFile == null) {
requestedFile = "";
}
String fileExplorerItemIdParam = httpServletRequest
.getParameter("fileExplorerItemId");
Long fileExplorerItemId = null;
if (fileExplorerItemIdParam != null) {
fileExplorerItemId = Long.parseLong(fileExplorerItemIdParam);
}
// make a complete name out of domain(organisation) + roomname
String roomName = room_id;
// trim whitespaces cause it is a directory name
roomName = StringUtils.deleteWhitespace(roomName);
// Get the current User-Directory
String current_dir = getServletContext().getRealPath("/");
String working_dir = "";
working_dir = current_dir + OpenmeetingsVariables.UPLOAD_DIR + File.separatorChar;
// Add the Folder for the Room
if (moduleName.equals("lzRecorderApp")) {
working_dir = current_dir + OpenmeetingsVariables.STREAMS_DIR + File.separatorChar
+ "hibernate" + File.separatorChar;
} else if (moduleName.equals("videoconf1")) {
if (parentPath.length() != 0) {
if (parentPath.equals("/")) {
working_dir = working_dir + roomName
+ File.separatorChar;
} else {
working_dir = working_dir + roomName
+ File.separatorChar + parentPath
+ File.separatorChar;
}
} else {
working_dir = current_dir + roomName
+ File.separatorChar;
}
} else if (moduleName.equals("userprofile")) {
working_dir += "profiles" + File.separatorChar;
logNonExistentFolder(working_dir);
working_dir += ScopeApplicationAdapter.profilesPrefix
+ users_id + File.separatorChar;
logNonExistentFolder(working_dir);
} else if (moduleName.equals("remoteuserprofile")) {
working_dir += "profiles" + File.separatorChar;
logNonExistentFolder(working_dir);
String remoteUser_id = httpServletRequest
.getParameter("remoteUserid");
if (remoteUser_id == null) {
remoteUser_id = "0";
}
working_dir += ScopeApplicationAdapter.profilesPrefix
+ remoteUser_id + File.separatorChar;
logNonExistentFolder(working_dir);
} else if (moduleName.equals("remoteuserprofilebig")) {
working_dir += "profiles" + File.separatorChar;
logNonExistentFolder(working_dir);
String remoteUser_id = httpServletRequest
.getParameter("remoteUserid");
if (remoteUser_id == null) {
remoteUser_id = "0";
}
working_dir += ScopeApplicationAdapter.profilesPrefix
+ remoteUser_id + File.separatorChar;
logNonExistentFolder(working_dir);
requestedFile = this.getBigProfileUserName(working_dir);
} else if (moduleName.equals("chat")) {
working_dir += "profiles" + File.separatorChar;
logNonExistentFolder(working_dir);
String remoteUser_id = httpServletRequest
.getParameter("remoteUserid");
if (remoteUser_id == null) {
remoteUser_id = "0";
}
working_dir += ScopeApplicationAdapter.profilesPrefix
+ remoteUser_id + File.separatorChar;
logNonExistentFolder(working_dir);
requestedFile = this.getChatUserName(working_dir);
} else {
working_dir = working_dir + roomName + File.separatorChar;
}
if (!moduleName.equals("nomodule")) {
log.debug("requestedFile: " + requestedFile
+ " current_dir: " + working_dir);
String full_path = working_dir + requestedFile;
File f = new File(full_path);
// If the File does not exist or is not readable show/load a
// place-holder picture
if (!f.exists() || !f.canRead()) {
if (!f.canRead()) {
log.debug("LOG DownloadHandler: The request file is not readable");
} else {
log.debug("LOG DownloadHandler: The request file does not exist / has already been deleted");
}
log.debug("LOG ERROR requestedFile: " + requestedFile);
// replace the path with the default picture/document
if (requestedFile.endsWith(".jpg")) {
log.debug("LOG endsWith d.jpg");
log.debug("LOG moduleName: " + moduleName);
requestedFile = DownloadHandler.defaultImageName;
if (moduleName.equals("remoteuserprofile")) {
requestedFile = DownloadHandler.defaultProfileImageName;
} else if (moduleName
.equals("remoteuserprofilebig")) {
requestedFile = DownloadHandler.defaultProfileImageNameBig;
} else if (moduleName.equals("userprofile")) {
requestedFile = DownloadHandler.defaultProfileImageName;
} else if (moduleName.equals("chat")) {
requestedFile = DownloadHandler.defaultChatImageName;
}
// request for an image
full_path = current_dir + "default"
+ File.separatorChar + requestedFile;
} else if (requestedFile.endsWith(".swf")) {
requestedFile = DownloadHandler.defaultSWFName;
// request for a SWFPresentation
full_path = current_dir + "default"
+ File.separatorChar
+ DownloadHandler.defaultSWFName;
} else {
// Any document, must be a download request
// OR a Moodle Loggedin User
requestedFile = DownloadHandler.defaultImageName;
full_path = current_dir + "default"
+ File.separatorChar
+ DownloadHandler.defaultImageName;
}
}
log.debug("full_path: " + full_path);
File f2 = new File(full_path);
if (!f2.exists() || !f2.canRead()) {
if (!f2.canRead()) {
log.debug("DownloadHandler: The request DEFAULT-file does not exist / has already been deleted");
} else {
log.debug("DownloadHandler: The request DEFAULT-file does not exist / has already been deleted");
}
// no file to handle abort processing
return;
}
// Requested file is outside OM webapp folder
File curDirFile = new File(current_dir);
if (!f2.getCanonicalPath()
.startsWith(curDirFile.getCanonicalPath())) {
throw new Exception("Invalid file requested: f2.cp == "
+ f2.getCanonicalPath() + "; curDir.cp == "
+ curDirFile.getCanonicalPath());
}
// Get file and handle download
RandomAccessFile rf = new RandomAccessFile(full_path, "r");
// Default type - Explorer, Chrome and others
int browserType = 0;
// Firefox and Opera browsers
if (httpServletRequest.getHeader("User-Agent") != null) {
if ((httpServletRequest.getHeader("User-Agent")
.contains("Firefox"))
|| (httpServletRequest.getHeader("User-Agent")
.contains("Opera"))) {
browserType = 1;
}
}
log.debug("Detected browser type:" + browserType);
httpServletResponse.reset();
httpServletResponse.resetBuffer();
OutputStream out = httpServletResponse.getOutputStream();
if (requestedFile.endsWith(".swf")) {
// trigger download to SWF => THIS is a workaround for
// Flash Player 10, FP 10 does not seem
// to accept SWF-Downloads with the Content-Disposition
// in the Header
httpServletResponse
.setContentType("application/x-shockwave-flash");
httpServletResponse.setHeader("Content-Length",
"" + rf.length());
} else {
httpServletResponse
.setContentType("APPLICATION/OCTET-STREAM");
String fileNameResult = requestedFile;
if (fileExplorerItemId != null && fileExplorerItemId > 0) {
FileExplorerItem fileExplorerItem = getFileExplorerItemDaoImpl().getFileExplorerItemsById(fileExplorerItemId);
if (fileExplorerItem != null) {
fileNameResult = fileExplorerItem.getFileName().substring(0, fileExplorerItem.getFileName().length()-4)
+ fileNameResult.substring(fileNameResult.length()-4, fileNameResult.length());
}
}
if (browserType == 0) {
httpServletResponse.setHeader(
"Content-Disposition",
"attachment; filename="
+ java.net.URLEncoder.encode(
fileNameResult, "UTF-8"));
} else {
httpServletResponse.setHeader(
"Content-Disposition",
"attachment; filename*=UTF-8'en'"
+ java.net.URLEncoder.encode(
fileNameResult, "UTF-8"));
}
httpServletResponse.setHeader("Content-Length",
"" + rf.length());
}
byte[] buffer = new byte[1024];
int readed = -1;
while ((readed = rf.read(buffer, 0, buffer.length)) > -1) {
out.write(buffer, 0, readed);
}
rf.close();
out.flush();
out.close();
}
} else {
System.out
.println("ERROR DownloadHandler: not authorized FileDownload "
+ (new Date()));
}
} catch (Exception er) {
log.error("Error downloading: ", er);
// er.printStackTrace();
}
}
private String getChatUserName(String userprofile_folder) throws Exception {
File f = new File(userprofile_folder);
if (f.exists() && f.isDirectory()) {
String filesString[] = f.list();
for (int i = 0; i < filesString.length; i++) {
String fileName = filesString[i];
if (fileName.startsWith("_chat_"))
return fileName;
}
}
return "_no.jpg";
}
private String getBigProfileUserName(String userprofile_folder)
throws Exception {
File f = new File(userprofile_folder);
if (f.exists() && f.isDirectory()) {
String filesString[] = f.list();
for (int i = 0; i < filesString.length; i++) {
String fileName = filesString[i];
if (fileName.startsWith("_big_"))
return fileName;
}
}
return "_no.jpg";
}
}