Google Git
Sign in
apache / tomcat55 / a11a405a670dbf5b13fa033c833f719fbb676826 / . / container / webapps / admin / WEB-INF / classes / org / apache / webapp / admin / valve / RemoteHostValveForm.java
blob: 8c214a7cd8f9a1c6c82403393165812c54cd7ad3 [file] [log] [blame]
/*
* Copyright 2001,2004 The Apache Software Foundation.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.webapp.admin.valve;
import java.lang.IllegalArgumentException;
import java.net.InetAddress;
import java.util.List;
import javax.servlet.http.HttpServletRequest;
import org.apache.regexp.RE;
import org.apache.struts.action.ActionError;
import org.apache.struts.action.ActionErrors;
import org.apache.struts.action.ActionForm;
import org.apache.struts.action.ActionMapping;
import org.apache.webapp.admin.ApplicationServlet;
import org.apache.webapp.admin.LabelValueBean;
/**
* Form bean for the remote host valve page.
*
* @author Manveen Kaur
* @version $Revision$ $Date$
*/
public final class RemoteHostValveForm extends ValveForm {
// ----------------------------------------------------- Instance Variables
/**
* The text for the allow hosts IP addresses.
* A comma-separated list of regular expression patterns
* that the remote client's IP address is compared to.
*/
private String allow = "";
/**
* The text for the deny hosts IP addresses.
*/
private String deny = "";
/**
* The set of <code>allow</code> regular expressions we will evaluate.
*/
private RE allows[] = new RE[0];
/**
* The set of <code>deny</code> regular expressions we will evaluate.
*/
private RE denies[] = new RE[0];
// ------------------------------------------------------------- Properties
/**
* Return the allow hosts IP adddresses.
*/
public String getAllow() {
return this.allow;
}
/**
* Set the allow hosts.
*/
public void setAllow(String allow) {
this.allow = allow;
}
/**
* Return the deny hosts IP adddresses.
*/
public String getDeny() {
return this.deny;
}
/**
* Set the deny hosts IP addresses.
*/
public void setDeny(String deny) {
this.deny = deny;
}
// --------------------------------------------------------- Public Methods
/**
* Reset all properties to their default values.
*
* @param mapping The mapping used to select this instance
* @param request The servlet request we are processing
*/
public void reset(ActionMapping mapping, HttpServletRequest request) {
super.reset(mapping, request);
this.allow = null;
this.deny = null;
this.allows = null;
this.denies = null;
}
/**
* Render this object as a String.
*/
public String toString() {
StringBuffer sb = new StringBuffer("RemoteHostValveForm[adminAction=");
sb.append(getAdminAction());
sb.append("',valveType=");
sb.append(getValveType());
sb.append(",allow=");
sb.append(allow);
sb.append(",deny=");
sb.append(deny);
sb.append("',objectName='");
sb.append(getObjectName());
sb.append("]");
return (sb.toString());
}
/**
* Validate the properties that have been set from this HTTP request,
* and return an <code>ActionErrors</code> object that encapsulates any
* validation errors that have been found. If no errors are found, return
* <code>null</code> or an <code>ActionErrors</code> object with no
* recorded error messages.
*
* @param mapping The mapping used to select this instance
* @param request The servlet request we are processing
*/
public ActionErrors validate(ActionMapping mapping,
HttpServletRequest request) {
ActionErrors errors = new ActionErrors();
String submit = request.getParameter("submit");
// front end validation when save is clicked.
//if (submit != null) {
// TBD
// validate allow/deny IPs
if ((allow == null) || (allow.length() < 1)) {
if ((deny == null) || (deny.length() < 1)) {
errors.add("allow",
new ActionError("error.allow.deny.required"));
}
}
//}
try {
allows = ValveUtil.precalculate(allow);
} catch (IllegalArgumentException e) {
errors.add("allow", new ActionError("error.syntax"));
return errors;
}
try {
denies = ValveUtil.precalculate(deny);
} catch (IllegalArgumentException e) {
errors.add("allow", new ActionError("error.syntax"));
return errors;
}
String host = request.getRemoteHost();
// check for IP address also in case DNS is not configured
// to give a host name for the client machine
String ip = request.getRemoteAddr();
if (host == null) {
return errors;
}
for (int i = 0; i < denies.length; i++) {
if (denies[i].match(host)) {
if (allows.length < 1) {
errors.add("deny",
new ActionError("error.denyHost"));
}
for (int j = 0; j < allows.length; j++) {
if (!allows[j].match(host)) {
errors.add("deny",
new ActionError("error.denyHost"));
}
}
} else if (denies[i].match(ip)) {
if (allows.length < 1) {
errors.add("deny",
new ActionError("error.denyHost"));
}
for (int j = 0; j < allows.length; j++) {
if (!allows[j].match(ip)) {
errors.add("deny",
new ActionError("error.denyHost"));
}
}
}
}
boolean allowMatch = true;
if ((allows != null) && (allows.length > 0)) {
allowMatch = false;
}
for (int i = 0; i < allows.length; i++) {
if (allows[i].match(host)) {
allowMatch = true;
}
}
if (!allowMatch) {
errors.add("allow", new ActionError("error.allowHost"));
}
return errors;
}
}