From 29ad090c29567ff1a4d3a2ec9b8ad0b5d80ee24d Mon Sep 17 00:00:00 2001
From: pdanner <pdanner@7b5415b0-85f9-ee4d-85bd-d5d0c3b42d1c>
Date: Mon, 6 Dec 2010 16:34:52 +0000
Subject: git-svn-id: https://joinup.ec.europa.eu/svn/pdf-as/trunk@671
 7b5415b0-85f9-ee4d-85bd-d5d0c3b42d1c

---
 .../gv/egiz/pdfas/web/servlets/DataURLServlet.java | 390 +++++++++++++++++++++
 1 file changed, 390 insertions(+)
 create mode 100644 pdf-as-web/src/main/java/at/gv/egiz/pdfas/web/servlets/DataURLServlet.java

(limited to 'pdf-as-web/src/main/java/at/gv/egiz/pdfas/web/servlets/DataURLServlet.java')

diff --git a/pdf-as-web/src/main/java/at/gv/egiz/pdfas/web/servlets/DataURLServlet.java b/pdf-as-web/src/main/java/at/gv/egiz/pdfas/web/servlets/DataURLServlet.java
new file mode 100644
index 0000000..2f6a76c
--- /dev/null
+++ b/pdf-as-web/src/main/java/at/gv/egiz/pdfas/web/servlets/DataURLServlet.java
@@ -0,0 +1,390 @@
+/**
+ * 
+ */
+package at.gv.egiz.pdfas.web.servlets;
+
+import java.io.IOException;
+import java.io.PrintWriter;
+import java.io.UnsupportedEncodingException;
+import java.net.URL;
+import java.util.ArrayList;
+import java.util.Iterator;
+import java.util.List;
+
+import javax.servlet.RequestDispatcher;
+import javax.servlet.ServletContext;
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServlet;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.servlet.http.HttpSession;
+
+import org.apache.commons.fileupload.FileItem;
+import org.apache.commons.fileupload.FileItemFactory;
+import org.apache.commons.fileupload.FileUploadException;
+import org.apache.commons.fileupload.disk.DiskFileItemFactory;
+import org.apache.commons.fileupload.servlet.ServletFileUpload;
+import org.apache.commons.logging.Log;
+import org.apache.commons.logging.LogFactory;
+
+import at.gv.egiz.pdfas.api.PdfAs;
+import at.gv.egiz.pdfas.api.commons.Constants;
+import at.gv.egiz.pdfas.api.commons.SignatureInformation;
+import at.gv.egiz.pdfas.api.exceptions.PdfAsException;
+import at.gv.egiz.pdfas.api.internal.LocalBKUParams;
+import at.gv.egiz.pdfas.api.internal.PdfAsInternal;
+import at.gv.egiz.pdfas.api.verify.VerifyResult;
+import at.gv.egiz.pdfas.api.verify.VerifyResults;
+import at.gv.egiz.pdfas.web.LocalRequest;
+import at.gv.egiz.pdfas.web.helper.ApiHelper;
+import at.gv.egiz.pdfas.web.helper.LocalRequestHelper;
+import at.gv.egiz.pdfas.web.helper.SessionHelper;
+import at.gv.egiz.pdfas.web.helper.SignServletHelper;
+import at.gv.egiz.pdfas.web.helper.SigningTimeHelper;
+import at.gv.egiz.pdfas.web.session.SessionAttributes;
+import at.gv.egiz.pdfas.web.session.SignSessionInformation;
+import at.gv.egiz.pdfas.web.session.VerifySessionInformation;
+import at.knowcenter.wag.egov.egiz.exceptions.ConnectorException;
+import at.knowcenter.wag.egov.egiz.exceptions.SignatureException;
+
+/**
+ * @author wprinz
+ * 
+ */
+public class DataURLServlet extends HttpServlet
+{
+
+  /**
+   * SVUID.
+   */
+  private static final long serialVersionUID = -5846618335843762752L;
+
+  /**
+   * The log.
+   */
+  private static Log log = LogFactory.getLog(DataURLServlet.class);
+
+  protected void dispatch(HttpServletRequest request,
+      HttpServletResponse response, String resource) throws ServletException, IOException
+  {
+    dispatch(request, response, resource, getServletContext());
+  }
+
+  protected static void dispatch(HttpServletRequest request,
+      HttpServletResponse response, String resource, ServletContext context) throws ServletException, IOException
+  {
+    response.setContentType("text/html");
+    response.setCharacterEncoding("UTF-8");
+
+    RequestDispatcher disp = context.getRequestDispatcher(resource);
+    disp.forward(request, response);
+  }
+
+  protected void dispatchToResults(VerifyResults results, HttpServletRequest request,
+      HttpServletResponse response, String backToListURL) throws ServletException, IOException
+  {
+    request.setAttribute("results", results);
+    request.setAttribute("btlurl", backToListURL);
+    dispatch(request, response, "/jsp/results.jsp");
+  }
+
+  protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
+     this.doPost(req, resp);
+  }
+  
+  private static void temporaryRedirect(String redirectURL, HttpServletResponse response) throws IOException {
+     String encodedRedirect = response.encodeRedirectURL(redirectURL);
+     response.addHeader("Location", encodedRedirect);
+     response.setContentType("text/xml");
+     response.setStatus(HttpServletResponse.SC_TEMPORARY_REDIRECT);
+     String nop = "<?xml version='1.0' encoding='UTF-8'?><NullOperationRequest xmlns='http://www.buergerkarte.at/namespaces/securitylayer/1.2#'/>";
+     PrintWriter pw = response.getWriter();
+     response.setCharacterEncoding("UTF-8");
+     response.setContentLength(nop.getBytes("UTF-8").length);
+     log.debug("Redirecting via NullOperationRequest to " + encodedRedirect + ".");
+     pw.println(nop);
+     pw.flush();
+     pw.close();
+  }
+
+/**
+   * @see javax.servlet.http.HttpServlet#doPost(javax.servlet.http.HttpServletRequest,
+   *      javax.servlet.http.HttpServletResponse)
+   */
+  protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException
+  {
+    log.debug("Data URL is accessed."); //$NON-NLS-1$
+
+    try
+    {
+      Object sessionObject = SessionHelper.getSession(request);
+
+      // obsolete since EncodingFilter is set in web.xml
+      checkRequestCharacterEncoding(request);
+      
+      if (sessionObject instanceof SignSessionInformation)
+      {
+        SignSessionInformation si = (SignSessionInformation)sessionObject;
+        processSign(request, response, si);
+      }
+      else
+      {
+        VerifySessionInformation si = (VerifySessionInformation) sessionObject;
+        processVerify(request, response, si);
+      }
+
+    }
+    catch (PdfAsException e)
+    {
+      log.error(e.getMessage(), e);
+      SignServlet.prepareDispatchToErrorPage(e, request);
+      dispatch(request, response, "/jsp/error.jsp");
+    }
+
+    log.debug("DataURL access finished."); //$NON-NLS-1$
+  }
+  
+  protected void checkRequestCharacterEncoding(HttpServletRequest request) throws UnsupportedEncodingException
+  {
+  if (request.getCharacterEncoding() == null || request.getCharacterEncoding().length() <= 0) //$NON-NLS-1$
+  {
+    log.info("The BKU didn't set a character encoding for the request."); //$NON-NLS-1$
+
+    log.info("Manually setting character encoding to UTF-8"); //$NON-NLS-1$
+    request.setCharacterEncoding("UTF-8"); //$NON-NLS-1$
+  }
+  }
+
+  protected boolean isNullResponse(String xml_response)
+  {
+    return xml_response != null && xml_response.indexOf("NullOperationResponse") != -1;
+  }
+  
+  private static String retrieveXMLResponse(HttpServletRequest request) throws ServletException {
+     log.debug("Trying to fetch XMLResponse...");
+     String xml_response = null;
+     if (ServletFileUpload.isMultipartContent(request)) {
+        log.debug("Response is multipart.");
+        FileItemFactory factory = new DiskFileItemFactory();
+        ServletFileUpload upload = new ServletFileUpload(factory);
+        try {
+          List items = upload.parseRequest(request);
+          Iterator iter = items.iterator();
+          while (iter.hasNext()) {
+              FileItem item = (FileItem) iter.next();
+               if (item.isFormField() && "XMLResponse".equals(item.getFieldName())) {
+                  log.debug("XMLResponse part found.");
+                  xml_response = item.getString();
+                  break;
+               }
+          }
+        } catch (FileUploadException e) {
+           throw new ServletException(e);
+        }
+     } else {
+        xml_response = request.getParameter("XMLResponse");
+     }
+     log.debug("XMLResponse = " + xml_response);
+     return xml_response;
+  }
+  
+  protected void processSign(HttpServletRequest request, HttpServletResponse response, SignSessionInformation si) throws ServletException, IOException, PdfAsException
+  {
+    log.trace("processSign");
+    
+    String xml_response = retrieveXMLResponse(request);
+    
+    PdfAsInternal pdfAsInternal = ApiHelper.getPdfAsInternalFromContext(getServletContext());
+
+    String server = request.getHeader("server");
+    String userAgent = request.getHeader("user-agent");
+    String signatureLayout = request.getHeader(Constants.BKU_HEADER_SIGNATURE_LAYOUT);
+    LocalBKUParams bkuParams = new LocalBKUParams(server, userAgent, signatureLayout);
+    si.localBKUParams = bkuParams;
+    
+    pdfAsInternal.verifyBKUSupport(bkuParams);
+
+//    Properties response_properties = BKUHelper.getBKUProperties(request);
+//
+//    String bkuIdentifier = BKUHelper.getBKUIdentifier(response_properties);
+//    log.debug("BKU identifier: \"" + bkuIdentifier + "\"");
+//    
+//    try {
+//       SignatureLayoutHandlerFactory.verifyBKUSupport(bkuIdentifier);
+//    } catch (SettingsException e) {
+//       throw new ConnectorException(e.getErrorCode(), e.getMessage());
+//    }
+    
+    if (isNullResponse(xml_response))
+    {
+      log.debug("Received a NullOperationResponse -> answering with the first request."); //$NON-NLS-1$
+      
+      assert si.outputAvailable == false;
+      assert si.xmlResponse == null;
+      
+      log.debug("There are still requests to be performed -> answering with request."); //$NON-NLS-1$
+
+      LocalRequest local_request = si.localRequest;
+
+      String request_string = local_request.getRequestString();
+
+      log.debug("request = " + request_string);
+      response.setContentType("text/xml");
+      response.setCharacterEncoding("UTF-8");
+      response.getWriter().println(request_string);
+    }
+    else if (xml_response != null)
+    {
+      log.debug("Received a normal response -> storing the response."); //$NON-NLS-1$
+
+//      response_properties.setProperty(BKUPostConnection.RESPONSE_STRING_KEY, xml_response);
+//      
+//      si.response_properties = response_properties;
+      si.xmlResponse = xml_response;
+      
+      log.debug("All requests have been processed -> processing the responses."); //$NON-NLS-1$
+
+      // Sign
+      
+      if (!si.outputAvailable)
+      {
+         PdfAs pdfAs = ApiHelper.getPdfAsFromContext(getServletContext());
+         SignServletHelper.finishLocalSign(pdfAs, pdfAsInternal, si);
+         SigningTimeHelper.checkSigningTimeAgainstHostTime(si.sdi.getSignDate());
+//        LocalConnector c = ConnectorChooser.chooseLocalConnectorForSign(si.connector, si.type, "loc ref content not needed here"); //$NON-NLS-1$
+//
+//        si.si.setSignSignatureObject(c.analyzeSignResponse(si.response_properties));
+//
+//        // workaround for invalid signing time
+//        SigningTimeHelper.checkSigningTimeAgainstHostTime(si.sdi.getSignDate());
+//
+//        PdfASID algorithm = FormFields.translateSignatureModeToPdfASID(si.mode);
+//        Signator signator = SignatorFactory.createSignator(algorithm);
+//
+//        si.output = TempDirHelper.createTempDataSink(si.filename + "_signed.pdf"); 
+//
+//        signator.finishSign(si.si, si.output);
+
+        si.outputAvailable = true;
+      }
+
+      if (si.output.getMimeType().equals("text/xml") && si.outputAvailable)
+      {
+        // For "detached" signatures, the return value (data sink) is the response xml,
+        // but when passed through the BKU it is interpreted as another request
+        // which will generate a return code 1501
+        // Then PDF-AS would answer with the response as well generating
+        // another 1501 and so forth.
+        // Therefor return it as TXT.
+        response.setContentType("text/plain");
+        response.setCharacterEncoding("UTF-8");
+        response.getWriter().println("Das detached XML kann nicht direkt durch die BKU geschliffen werden, weil diese es als Request interpretieren würde. Daher das XML als Text:");
+        //response.getWriter().println(si.sdi.getSignSignatureObject().response_properties.getProperty(BKUPostConnection.RESPONSE_STRING_KEY));
+        response.getWriter().println(new String(si.signedPdf, "UTF-8"));
+      }
+      else
+      {
+         // tzefferer: If PDF-AS has been called by an external web-application, we do not 
+         //            redirect to download.jsp but return the sign-response immediately
+         if (si.exappinf != null) {
+            log.debug("Entering external application interface mode. Skipping redirection to download page.");
+            SignServletHelper.returnSignResponse(si, request, response);
+            
+            // Not needed due to redirection of returnSignResponse.
+            // Just to clarify that there must not be any code after returnSignResponse.
+            return;
+         } else {
+            log.debug("Preparing download page.");
+            HttpSession session = request.getSession(true);
+            log.debug("Putting signed document into session (" + session.getId() + ").");
+            session.setAttribute(SessionAttributes.SIGNED_PDF_DOCUMENT, si);
+            String downloadURL = response.encodeRedirectURL(LocalRequestHelper.getLocalContextAddress(request, response) + "/ProvidePDF");
+            log.debug("Creating download URL \"" + downloadURL + "\".");
+            session.setAttribute(SessionAttributes.DOWNLOAD_URL_FOR_SIGNED_PDF_DOCUMENT, downloadURL);
+            temporaryRedirect(response.encodeRedirectURL(LocalRequestHelper.getLocalContextAddress(request, response) + "/jsp/download.jsp") , response);
+
+            // Not needed due to temporaryRedirect.
+            // Just to clarify that there must not be any code after temporaryRedirect.
+            return;
+         }
+         
+         // do not insert any code within this else block !
+      }
+    } else {
+        log.debug("No XMLResponse found. Do nothing.");
+     }
+  }
+  
+  protected void processVerify(HttpServletRequest request, HttpServletResponse response, VerifySessionInformation si) throws ServletException, IOException, ConnectorException, SignatureException
+  {
+    log.trace("processVerify");
+    
+    String xml_response = request.getParameter("XMLResponse"); //$NON-NLS-1$
+    log.debug("xml_response = " + xml_response); //$NON-NLS-1$
+
+    if (isNullResponse(xml_response))
+    {
+      log.debug("Received a NullOperationResponse -> answering with the first request."); //$NON-NLS-1$
+
+      assert si.currentLocalOperation.current_operation == 0;
+    }
+    else
+    {
+      log.debug("Recieved a normal response -> storing the response."); //$NON-NLS-1$
+
+//      Properties response_properties = new Properties();
+//      response_properties.setProperty(BKUPostConnection.RESPONSE_STRING_KEY, xml_response);
+
+      si.currentLocalOperation.finishCurrentOperation(xml_response);
+    }
+
+    if (!si.currentLocalOperation.isFinished())
+    {
+      log.debug("There are still requests to be performed -> answering with request #" + si.currentLocalOperation.current_operation); //$NON-NLS-1$
+
+      LocalRequest local_request = si.currentLocalOperation.getCurrentLocalRequest();
+
+      String request_string = local_request.getRequestString();
+
+      response.setContentType("text/xml");
+      response.setCharacterEncoding("UTF-8");
+      response.getWriter().println(request_string);
+    }
+    else
+    {
+      log.debug("All requests have been processed -> processing the responses."); //$NON-NLS-1$
+
+        
+      PdfAsInternal pdfAsInternal = ApiHelper.getPdfAsInternalFromContext(getServletContext());
+      final ArrayList resList = new ArrayList();
+      for (int i = 0; i < si.currentLocalOperation.response_xmls.length; i++)
+      {
+        SignatureInformation sigInfo = (SignatureInformation) si.currentLocalOperation.signaturesToBeverified.get(i);
+          
+//          PdfASID sig_kz = sh.getSignatureObject().getKZ();
+//          String sig_id = sh.getSignatureObject().getSignationIds();
+//          
+//          LocalConnector c = ConnectorChooser.chooseLocalConnectorForVerify(si.connector, sig_kz, sig_id, si.type, "loc ref content not needed here"); //$NON-NLS-1$
+
+        VerifyResult result = pdfAsInternal.finishLocalVerify(sigInfo, si.connector, si.type, "loc ref content not needed here", si.currentLocalOperation.response_xmls[i]);
+        resList.add(result);
+//          SignatureResponse sig_resp = c.analyzeVerifyResponse(si.currentLocalOperation.response_xmls[i]);
+//          results.add(sig_resp);
+        }
+        
+        si.currentLocalOperation = null;
+
+        URL btlURL = new URL(LocalRequestHelper.getLocalContextAddress(request, response) + "/jsp/verifylist.jsp");
+        String backToListURL = response.encodeURL(btlURL.toString());
+
+        VerifyResults results = new VerifyResults() {
+           
+           public List getResults() {
+              return resList;
+           }
+        };
+        dispatchToResults(results, request, response, backToListURL);
+    }
+
+  }
+}
-- 
cgit v1.2.3