libraries/http/src/main/java/org/apache/zest/library/http/SecureJettyMixin.java - polygene-java - Git at Google

 /*
  * Copyright (c) 2011, Paul Merlin. All Rights Reserved.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  *
  */
 package org.apache.zest.library.http;

 import javax.management.MBeanServer;
 import javax.servlet.Filter;
 import javax.servlet.Servlet;
 import javax.servlet.ServletContextListener;
 import org.eclipse.jetty.security.ConstraintMapping;
 import org.eclipse.jetty.security.ConstraintSecurityHandler;
 import org.eclipse.jetty.security.SecurityHandler;
 import org.eclipse.jetty.server.HttpConfiguration;
 import org.eclipse.jetty.server.HttpConnectionFactory;
 import org.eclipse.jetty.server.SecureRequestCustomizer;
 import org.eclipse.jetty.server.Server;
 import org.eclipse.jetty.server.ServerConnector;
 import org.eclipse.jetty.server.SslConnectionFactory;
 import org.apache.zest.api.common.Optional;
 import org.apache.zest.api.configuration.Configuration;
 import org.apache.zest.api.entity.Identity;
 import org.apache.zest.api.injection.scope.Service;
 import org.apache.zest.api.injection.scope.This;
 import org.apache.zest.api.service.ServiceReference;
 import org.apache.zest.library.http.Interface.Protocol;

 import static org.apache.zest.library.http.JettyConfigurationHelper.configureSsl;

 public class SecureJettyMixin
     extends AbstractJettyMixin
 {

     @This
     private Configuration<SecureJettyConfiguration> configuration;

     @Optional
     @Service
     private Iterable<ConstraintService> constraintServices;

     public SecureJettyMixin( @This Identity meAsIdentity,
                              @Service Server jettyServer,
                              @Service Iterable<ServiceReference<ServletContextListener>> contextListeners,
                              @Service Iterable<ServiceReference<Servlet>> servlets,
                              @Service Iterable<ServiceReference<Filter>> filters,
                              @Optional @Service MBeanServer mBeanServer )
     {
         super( meAsIdentity.identity().get(), jettyServer, contextListeners, servlets, filters, mBeanServer );
     }

     @Override
     protected JettyConfiguration configuration()
     {
         return configuration.get();
     }

     @Override
     protected HttpConfiguration specializeHttp( HttpConfiguration httpConfig )
     {
         HttpConfiguration httpsConfig = new HttpConfiguration( httpConfig );
         httpsConfig.addCustomizer( new SecureRequestCustomizer() );
         return httpsConfig;
     }

     @Override
     protected SecurityHandler buildSecurityHandler()
     {
         if( constraintServices != null )
         {
             ConstraintSecurityHandler securityHandler = new ConstraintSecurityHandler();
             for( ConstraintService eachConstraintService : constraintServices )
             {
                 ConstraintMapping csMapping = eachConstraintService.buildConstraintMapping();
                 if( csMapping != null )
                 {
                     securityHandler.addConstraintMapping( csMapping );
                 }
             }
             if( !securityHandler.getConstraintMappings().isEmpty() )
             {
                 return securityHandler;
             }
         }
         return super.buildSecurityHandler();
     }

     @Override
     protected ServerConnector buildConnector( Server server, HttpConfiguration httpConfig )
     {
         SslConnectionFactory sslConnFactory = new SslConnectionFactory();
         configureSsl( sslConnFactory, configuration.get() );
         return new ServerConnector( server, sslConnFactory, new HttpConnectionFactory( httpConfig ) );
     }

     @Override
     protected Protocol servedProtocol()
     {
         return Protocol.https;
     }

 }
	/*
	* Copyright (c) 2011, Paul Merlin. All Rights Reserved.
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*
	*/
	package org.apache.zest.library.http;

	import javax.management.MBeanServer;
	import javax.servlet.Filter;
	import javax.servlet.Servlet;
	import javax.servlet.ServletContextListener;
	import org.eclipse.jetty.security.ConstraintMapping;
	import org.eclipse.jetty.security.ConstraintSecurityHandler;
	import org.eclipse.jetty.security.SecurityHandler;
	import org.eclipse.jetty.server.HttpConfiguration;
	import org.eclipse.jetty.server.HttpConnectionFactory;
	import org.eclipse.jetty.server.SecureRequestCustomizer;
	import org.eclipse.jetty.server.Server;
	import org.eclipse.jetty.server.ServerConnector;
	import org.eclipse.jetty.server.SslConnectionFactory;
	import org.apache.zest.api.common.Optional;
	import org.apache.zest.api.configuration.Configuration;
	import org.apache.zest.api.entity.Identity;
	import org.apache.zest.api.injection.scope.Service;
	import org.apache.zest.api.injection.scope.This;
	import org.apache.zest.api.service.ServiceReference;
	import org.apache.zest.library.http.Interface.Protocol;

	import static org.apache.zest.library.http.JettyConfigurationHelper.configureSsl;

	public class SecureJettyMixin
	extends AbstractJettyMixin
	{

	@This
	private Configuration<SecureJettyConfiguration> configuration;

	@Optional
	@Service
	private Iterable<ConstraintService> constraintServices;

	public SecureJettyMixin( @This Identity meAsIdentity,
	@Service Server jettyServer,
	@Service Iterable<ServiceReference<ServletContextListener>> contextListeners,
	@Service Iterable<ServiceReference<Servlet>> servlets,
	@Service Iterable<ServiceReference<Filter>> filters,
	@Optional @Service MBeanServer mBeanServer )
	{
	super( meAsIdentity.identity().get(), jettyServer, contextListeners, servlets, filters, mBeanServer );
	}

	@Override
	protected JettyConfiguration configuration()
	{
	return configuration.get();
	}

	@Override
	protected HttpConfiguration specializeHttp( HttpConfiguration httpConfig )
	{
	HttpConfiguration httpsConfig = new HttpConfiguration( httpConfig );
	httpsConfig.addCustomizer( new SecureRequestCustomizer() );
	return httpsConfig;
	}

	@Override
	protected SecurityHandler buildSecurityHandler()
	{
	if( constraintServices != null )
	{
	ConstraintSecurityHandler securityHandler = new ConstraintSecurityHandler();
	for( ConstraintService eachConstraintService : constraintServices )
	{
	ConstraintMapping csMapping = eachConstraintService.buildConstraintMapping();
	if( csMapping != null )
	{
	securityHandler.addConstraintMapping( csMapping );
	}
	}
	if( !securityHandler.getConstraintMappings().isEmpty() )
	{
	return securityHandler;
	}
	}
	return super.buildSecurityHandler();
	}

	@Override
	protected ServerConnector buildConnector( Server server, HttpConfiguration httpConfig )
	{
	SslConnectionFactory sslConnFactory = new SslConnectionFactory();
	configureSsl( sslConnFactory, configuration.get() );
	return new ServerConnector( server, sslConnFactory, new HttpConnectionFactory( httpConfig ) );
	}

	@Override
	protected Protocol servedProtocol()
	{
	return Protocol.https;
	}

	}