X-Git-Url: https://git.argeo.org/?a=blobdiff_plain;f=org.argeo.cms%2Fsrc%2Forg%2Fargeo%2Fcms%2Finternal%2Fkernel%2FNodeHttp.java;h=28c569bfdf6ff4908f9a28e10eeb736fe0581a8b;hb=35904a4a72fe8a4908c345f73856711c7b4c472c;hp=cbad271540f4896e54325756a56d54c33571c170;hpb=9b498d3407a628c8815d13f462962e2dd6c27b46;p=lgpl%2Fargeo-commons.git

diff --git a/org.argeo.cms/src/org/argeo/cms/internal/kernel/NodeHttp.java b/org.argeo.cms/src/org/argeo/cms/internal/kernel/NodeHttp.java
index cbad27154..28c569bfd 100644
--- a/org.argeo.cms/src/org/argeo/cms/internal/kernel/NodeHttp.java
+++ b/org.argeo.cms/src/org/argeo/cms/internal/kernel/NodeHttp.java
@@ -3,6 +3,7 @@ package org.argeo.cms.internal.kernel;
 import static org.argeo.jackrabbit.servlet.WebdavServlet.INIT_PARAM_RESOURCE_CONFIG;
 
 import java.io.IOException;
+import java.security.cert.X509Certificate;
 import java.util.Enumeration;
 import java.util.Properties;
 import java.util.StringTokenizer;
@@ -72,20 +73,34 @@ class NodeHttp implements KernelConstants, ArgeoJcrConstants {
 		// DAV
 		sessionProvider = new OpenInViewSessionProvider();
 
+		registerRepositoryServlets(ALIAS_NODE, node);
 		try {
-			registerWebdavServlet(ALIAS_NODE, node, true);
-			registerWebdavServlet(ALIAS_NODE, node, false);
-			registerRemotingServlet(ALIAS_NODE, node, true);
-			registerRemotingServlet(ALIAS_NODE, node, false);
-
 			httpService.registerFilter("/", rootFilter, null, null);
 		} catch (Exception e) {
-			throw new CmsException("Could not initialise http", e);
+			throw new CmsException(
+					"Could not register root filter", e);
 		}
 	}
 
 	public void destroy() {
 		sessionProvider.destroy();
+		unregisterRepositoryServlets(ALIAS_NODE);
+	}
+
+	void registerRepositoryServlets(String alias, Repository repository) {
+		try {
+			registerWebdavServlet(alias, repository, true);
+			registerWebdavServlet(alias, repository, false);
+			registerRemotingServlet(alias, repository, true);
+			registerRemotingServlet(alias, repository, false);
+		} catch (Exception e) {
+			throw new CmsException(
+					"Could not register servlets for repository " + alias, e);
+		}
+	}
+
+	void unregisterRepositoryServlets(String alias) {
+		// FIXME unregister servlets
 	}
 
 	void registerWebdavServlet(String alias, Repository repository,
@@ -175,25 +190,19 @@ class NodeHttp implements KernelConstants, ArgeoJcrConstants {
 		public void doFilter(HttpSession httpSession,
 				HttpServletRequest request, HttpServletResponse response,
 				FilterChain filterChain) throws IOException, ServletException {
-			if (log.isTraceEnabled()) {
-				log.debug(request.getContextPath());
-				log.debug(request.getServletPath());
-				log.debug(request.getRequestURI());
-				log.debug(request.getQueryString());
-				StringBuilder buf = new StringBuilder();
-				Enumeration<String> en = request.getHeaderNames();
-				while (en.hasMoreElements()) {
-					String header = en.nextElement();
-					Enumeration<String> values = request.getHeaders(header);
-					while (values.hasMoreElements())
-						buf.append("  " + header + ": " + values.nextElement());
-					buf.append('\n');
-				}
-				log.debug("\n" + buf);
-			}
+			if (log.isTraceEnabled())
+				logRequest(request);
 
 			String servletPath = request.getServletPath();
 
+			// client certificate
+			X509Certificate clientCert = extractCertificate(request);
+			if (clientCert != null) {
+				// TODO authenticate
+				// if (log.isDebugEnabled())
+				// log.debug(clientCert.getSubjectX500Principal().getName());
+			}
+
 			// skip data
 			if (servletPath.startsWith(PATH_DATA)) {
 				filterChain.doFilter(request, response);
@@ -224,6 +233,42 @@ class NodeHttp implements KernelConstants, ArgeoJcrConstants {
 		}
 	}
 
+	private void logRequest(HttpServletRequest request) {
+		log.debug(request.getContextPath());
+		log.debug(request.getServletPath());
+		log.debug(request.getRequestURI());
+		log.debug(request.getQueryString());
+		StringBuilder buf = new StringBuilder();
+		// headers
+		Enumeration<String> en = request.getHeaderNames();
+		while (en.hasMoreElements()) {
+			String header = en.nextElement();
+			Enumeration<String> values = request.getHeaders(header);
+			while (values.hasMoreElements())
+				buf.append("  " + header + ": " + values.nextElement());
+			buf.append('\n');
+		}
+
+		// attributed
+		Enumeration<String> an = request.getAttributeNames();
+		while (an.hasMoreElements()) {
+			String attr = an.nextElement();
+			Object value = request.getAttribute(attr);
+			buf.append("  " + attr + ": " + value);
+			buf.append('\n');
+		}
+		log.debug("\n" + buf);
+	}
+
+	private X509Certificate extractCertificate(HttpServletRequest req) {
+		X509Certificate[] certs = (X509Certificate[]) req
+				.getAttribute("javax.servlet.request.X509Certificate");
+		if (null != certs && certs.length > 0) {
+			return certs[0];
+		}
+		return null;
+	}
+
 	/** Intercepts all requests. Authenticates. */
 	private class AnonymousFilter extends HttpFilter {
 		@Override