NettyServerHandler.kt

  1. package com.hexagonkt.http.server.netty

  3. import com.hexagonkt.handlers.Context
  4. import com.hexagonkt.http.handlers.bodyToBytes
  5. import com.hexagonkt.http.model.*
  6. import com.hexagonkt.http.model.Cookie
  7. import com.hexagonkt.http.handlers.HttpHandler
  8. import com.hexagonkt.http.handlers.HttpContext
  9. import com.hexagonkt.http.model.CookieSameSite.*
  10. import com.hexagonkt.http.model.HttpCall
  11. import com.hexagonkt.http.model.HttpResponse
  12. import io.netty.buffer.Unpooled
  13. import io.netty.channel.Channel
  14. import io.netty.channel.ChannelFutureListener.CLOSE
  15. import io.netty.channel.ChannelHandlerContext
  16. import io.netty.channel.ChannelInboundHandlerAdapter
  17. import io.netty.handler.codec.http.*
  18. import io.netty.handler.codec.http.HttpHeaderNames.*
  19. import io.netty.handler.codec.http.HttpHeaderValues.CHUNKED
  20. import io.netty.handler.codec.http.HttpHeaderValues.KEEP_ALIVE
  21. import io.netty.handler.codec.http.HttpMethod
  22. import io.netty.handler.codec.http.HttpMethod.GET
  23. import io.netty.handler.codec.http.HttpRequest
  24. import io.netty.handler.codec.http.HttpResponseStatus.*
  25. import io.netty.handler.codec.http.HttpVersion.HTTP_1_1
  26. import io.netty.handler.codec.http.cookie.CookieHeaderNames.SameSite.*
  27. import io.netty.handler.codec.http.cookie.DefaultCookie
  28. import io.netty.handler.codec.http.cookie.ServerCookieEncoder.STRICT as STRICT_ENCODER
  29. import io.netty.handler.codec.http.websocketx.WebSocketServerHandshakerFactory
  30. import io.netty.handler.ssl.SslHandler
  31. import io.netty.handler.ssl.SslHandshakeCompletionEvent
  32. import java.security.cert.X509Certificate
  33. import java.util.concurrent.Flow.*
  34. import com.hexagonkt.http.model.HttpRequest as HexagonHttpRequest

  36. internal class NettyServerHandler(
  37.     private val handlers: Map<HttpMethod, HttpHandler>,
  38.     private val sslHandler: SslHandler?,
  39.     private val enableWebsockets: Boolean = true,
  40. ) : ChannelInboundHandlerAdapter() {

  42.     private var certificates: List<X509Certificate> = emptyList()

  44.     override fun channelRead(context: ChannelHandlerContext, nettyRequest: Any) {
  45.         if (nettyRequest is HttpRequest)
  46.             readHttpRequest(context, nettyRequest)
  47.     }

  49.     private fun readHttpRequest(context: ChannelHandlerContext, nettyRequest: HttpRequest) {
  50.         val result = nettyRequest.decoderResult()

  52.         if (result.isFailure)
  53.             throw IllegalStateException(result.cause())

  55.         val channel = context.channel()
  56.         val method = nettyRequest.method()
  57.         val pathHandler = handlers[method]

  59.         val headers = nettyRequest.headers()
  60.         val request = NettyRequestAdapter(method, nettyRequest, certificates, channel, headers)

  62.         if (pathHandler == null) {
  63.             writeResponse(context, request, HttpResponse(), HttpUtil.isKeepAlive(nettyRequest))
  64.             return
  65.         }

  67.         val resultContext = pathHandler.process(request)
  68.         val response = resultContext.event.response

  70.         val isWebSocket =
  71.             if (enableWebsockets) isWebsocket(headers, method, response.status)
  72.             else false

  74.         val body = response.body
  75.         val isSse = body is Publisher<*>

  77.         when {
  78.             isSse -> handleSse(context, request, response, body)
  79.             isWebSocket -> handleWebSocket(context, resultContext, response, nettyRequest, channel)
  80.             else -> writeResponse(context, request, response, HttpUtil.isKeepAlive(nettyRequest))
  81.         }
  82.     }

  84.     private fun isWebsocket(headers: HttpHeaders, method: HttpMethod, status: HttpStatus): Boolean {
  85.         val connection = headers[CONNECTION]?.lowercase()
  86.         val upgrade = headers[UPGRADE]?.lowercase()
  87.         return connection == "upgrade"
  88.             && upgrade == "websocket"
  89.             && method == GET
  90.             && status == ACCEPTED_202
  91.     }

  93.     @Suppress("UNCHECKED_CAST") // Body not cast to Publisher<HttpServerEvent> due to type erasure
  94.     private fun handleSse(
  95.         context: ChannelHandlerContext,
  96.         hexagonRequest: HttpRequestPort,
  97.         response: HttpResponsePort, body: Any,
  98.     ) {
  99.         val status = nettyStatus(response.status)
  100.         val nettyResponse = DefaultHttpResponse(HTTP_1_1, status)
  101.         val headers = nettyResponse.headers()

  103.         val hexagonHeaders = response.headers
  104.         if (hexagonHeaders.httpFields.isNotEmpty())
  105.             hexagonHeaders.values.map { (k, v) -> headers.add(k, v) }

  107.         val hexagonCookies = response.cookies
  108.         if (hexagonCookies.isNotEmpty()) {
  109.             val cookies = nettyCookies(hexagonRequest.protocol.secure, hexagonCookies)
  110.             headers[SET_COOKIE] = STRICT_ENCODER.encode(cookies)
  111.         }

  113.         val contentType = response.contentType
  114.         if (contentType != null)
  115.             headers[CONTENT_TYPE] = contentType.text

  117.         headers[TRANSFER_ENCODING] = CHUNKED
  118.         headers[CONNECTION] = KEEP_ALIVE
  119.         context.writeAndFlush(nettyResponse)

  121.         // TODO Close when publisher is done
  122.         val publisher = body as Publisher<ServerEvent>
  123.         publisher.subscribe(object : Subscriber<ServerEvent> {
  124.             override fun onError(throwable: Throwable) {}

  126.             override fun onComplete() {
  127.                 context.close()
  128.             }

  130.             override fun onSubscribe(subscription: Subscription) {
  131.                 subscription.request(Long.MAX_VALUE)
  132.             }

  134.             override fun onNext(item: ServerEvent) {
  135.                 val eventData = Unpooled.copiedBuffer(item.eventData.toByteArray())
  136.                 context.writeAndFlush(DefaultHttpContent(eventData))
  137.             }
  138.         })
  139.     }

  141.     private fun handleWebSocket(
  142.         context: ChannelHandlerContext,
  143.         request: Context<HttpCall>,
  144.         response: HttpResponsePort,
  145.         nettyRequest: HttpRequest,
  146.         channel: Channel
  147.     ) {
  148.         val session = NettyWsSession(context, HttpContext(request))
  149.         val nettyWebSocketHandler = NettyWebSocketHandler(
  150.             session,
  151.             response.onBinary,
  152.             response.onText,
  153.             response.onPing,
  154.             response.onPong,
  155.             response.onClose,
  156.         )

  158.         context.pipeline().replace(this, "webSocketHandler", nettyWebSocketHandler)
  159.         wsHandshake(nettyRequest, channel)
  160.         session.(response.onConnect)()
  161.     }

  163.     private fun wsHandshake(nettyRequest: HttpRequest, channel: Channel) {
  164.         val host = nettyRequest.headers()["host"]
  165.         val uri = nettyRequest.uri()
  166.         val url = "ws://$host$uri"
  167.         val wsFactory = WebSocketServerHandshakerFactory(url, null, true)
  168.         val handShaker = wsFactory.newHandshaker(nettyRequest)

  170.         if (handShaker == null)
  171.             WebSocketServerHandshakerFactory.sendUnsupportedVersionResponse(channel)
  172.         else
  173.             handShaker.handshake(channel, nettyRequest)
  174.     }

  176.     override fun userEventTriggered(ctx: ChannelHandlerContext, evt: Any) {
  177.         if (evt is SslHandshakeCompletionEvent && sslHandler != null) {
  178.             val peerCertificates = sslHandler.engine().session.peerCertificates
  179.             certificates = peerCertificates.map { it as X509Certificate }
  180.         }
  181.     }

  183.     @Suppress("OVERRIDE_DEPRECATION") // Deprecated in base interface, but allowed in parent class
  184.     override fun exceptionCaught(context: ChannelHandlerContext, cause: Throwable) {
  185.         val body = "Failure: $cause\n"
  186.         val response = HttpResponse(body, status = INTERNAL_SERVER_ERROR_500)
  187.         writeResponse(context, HexagonHttpRequest(), response, false)
  188.     }

  190.     private fun writeResponse(
  191.         context: ChannelHandlerContext,
  192.         hexagonRequest: HttpRequestPort,
  193.         hexagonResponse: HttpResponsePort,
  194.         keepAlive: Boolean,
  195.     ) {
  196.         val buffer = Unpooled.copiedBuffer(bodyToBytes(hexagonResponse.body))
  197.         val status = nettyStatus(hexagonResponse.status)
  198.         val response = DefaultFullHttpResponse(HTTP_1_1, status, buffer)

  200.         val headers = response.headers()
  201.         val hexagonHeaders = hexagonResponse.headers
  202.         if (hexagonHeaders.httpFields.isNotEmpty())
  203.             hexagonHeaders.values.map { (k, v) -> headers.add(k, v) }

  205.         val hexagonCookies = hexagonResponse.cookies
  206.         if (hexagonCookies.isNotEmpty()) {
  207.             val cookies = nettyCookies(hexagonRequest.protocol.secure, hexagonCookies)
  208.             headers[SET_COOKIE] = STRICT_ENCODER.encode(cookies)
  209.         }

  211.         val contentType = hexagonResponse.contentType
  212.         if (contentType != null)
  213.             headers[CONTENT_TYPE] = contentType.text

  215.         if (keepAlive) {
  216.             headers.setInt(CONTENT_LENGTH, response.content().readableBytes())
  217.             headers[CONNECTION] = KEEP_ALIVE
  218.             context.writeAndFlush(response)
  219.         }
  220.         else {
  221.             context.writeAndFlush(response).addListener(CLOSE)
  222.         }
  223.     }

  225.     private fun nettyCookies(secureRequest: Boolean, hexagonCookies: List<Cookie>) =
  226.         hexagonCookies
  227.             .filter { if (secureRequest) true else !it.secure }
  228.             .map {
  229.                 DefaultCookie(it.name, it.value).apply {
  230.                     if (it.maxAge != -1L)
  231.                         setMaxAge(it.maxAge)
  232.                     isSecure = it.secure
  233.                     setPath(it.path)
  234.                     setDomain(it.domain)
  235.                     isHttpOnly = it.httpOnly
  236.                     it.domain?.let(::setDomain)
  237.                     it.sameSite
  238.                         ?.let { ss ->
  239.                             when (ss) {
  240.                                 STRICT -> Strict
  241.                                 LAX -> Lax
  242.                                 NONE -> None
  243.                             }
  244.                         }
  245.                         ?.let(::setSameSite)
  246.                 }
  247.             }

  249.     internal fun nettyStatus(status: HttpStatus): HttpResponseStatus =
  250.         when (status) {
  251.             CONTINUE_100 -> CONTINUE
  252.             SWITCHING_PROTOCOLS_101 -> SWITCHING_PROTOCOLS
  253.             PROCESSING_102 -> PROCESSING

  255.             OK_200 -> OK
  256.             CREATED_201 -> CREATED
  257.             ACCEPTED_202 -> ACCEPTED
  258.             NON_AUTHORITATIVE_INFORMATION_203 -> NON_AUTHORITATIVE_INFORMATION
  259.             NO_CONTENT_204 -> NO_CONTENT
  260.             RESET_CONTENT_205 -> RESET_CONTENT
  261.             PARTIAL_CONTENT_206 -> PARTIAL_CONTENT
  262.             MULTI_STATUS_207 -> MULTI_STATUS

  264.             MULTIPLE_CHOICES_300 -> MULTIPLE_CHOICES
  265.             MOVED_PERMANENTLY_301 -> MOVED_PERMANENTLY
  266.             FOUND_302 -> FOUND
  267.             SEE_OTHER_303 -> SEE_OTHER
  268.             NOT_MODIFIED_304 -> NOT_MODIFIED
  269.             USE_PROXY_305 -> USE_PROXY
  270.             TEMPORARY_REDIRECT_307 -> TEMPORARY_REDIRECT
  271.             PERMANENT_REDIRECT_308 -> PERMANENT_REDIRECT

  273.             BAD_REQUEST_400 -> BAD_REQUEST
  274.             NOT_FOUND_404 -> NOT_FOUND
  275.             UNAUTHORIZED_401 -> UNAUTHORIZED
  276.             PAYMENT_REQUIRED_402 -> PAYMENT_REQUIRED
  277.             FORBIDDEN_403 -> FORBIDDEN
  278.             METHOD_NOT_ALLOWED_405 -> METHOD_NOT_ALLOWED
  279.             NOT_ACCEPTABLE_406 -> NOT_ACCEPTABLE
  280.             PROXY_AUTHENTICATION_REQUIRED_407 -> PROXY_AUTHENTICATION_REQUIRED
  281.             REQUEST_TIMEOUT_408 -> REQUEST_TIMEOUT
  282.             CONFLICT_409 -> CONFLICT
  283.             GONE_410 -> GONE
  284.             LENGTH_REQUIRED_411 -> LENGTH_REQUIRED
  285.             PRECONDITION_FAILED_412 -> PRECONDITION_FAILED
  286.             URI_TOO_LONG_414 -> REQUEST_URI_TOO_LONG
  287.             UNSUPPORTED_MEDIA_TYPE_415 -> UNSUPPORTED_MEDIA_TYPE
  288.             RANGE_NOT_SATISFIABLE_416 -> REQUESTED_RANGE_NOT_SATISFIABLE
  289.             EXPECTATION_FAILED_417 -> EXPECTATION_FAILED
  290.             MISDIRECTED_REQUEST_421 -> MISDIRECTED_REQUEST
  291.             UNPROCESSABLE_CONTENT_422 -> UNPROCESSABLE_ENTITY
  292.             LOCKED_423 -> LOCKED
  293.             FAILED_DEPENDENCY_424 -> FAILED_DEPENDENCY
  294.             UPGRADE_REQUIRED_426 -> UPGRADE_REQUIRED
  295.             PRECONDITION_REQUIRED_428 -> PRECONDITION_REQUIRED
  296.             TOO_MANY_REQUESTS_429 -> TOO_MANY_REQUESTS
  297.             REQUEST_HEADER_FIELDS_TOO_LARGE_431 -> REQUEST_HEADER_FIELDS_TOO_LARGE

  299.             INTERNAL_SERVER_ERROR_500 -> INTERNAL_SERVER_ERROR
  300.             NOT_IMPLEMENTED_501 -> NOT_IMPLEMENTED
  301.             BAD_GATEWAY_502 -> BAD_GATEWAY
  302.             SERVICE_UNAVAILABLE_503 -> SERVICE_UNAVAILABLE
  303.             GATEWAY_TIMEOUT_504 -> GATEWAY_TIMEOUT
  304.             HTTP_VERSION_NOT_SUPPORTED_505 -> HTTP_VERSION_NOT_SUPPORTED
  305.             VARIANT_ALSO_NEGOTIATES_506 -> VARIANT_ALSO_NEGOTIATES
  306.             INSUFFICIENT_STORAGE_507 -> INSUFFICIENT_STORAGE
  307.             NOT_EXTENDED_510 -> NOT_EXTENDED
  308.             NETWORK_AUTHENTICATION_REQUIRED_511 -> NETWORK_AUTHENTICATION_REQUIRED

  310.             else -> HttpResponseStatus(status.code, status.toString())
  311.         }
  312. }
Created with JaCoCo 0.8.12.202403310830