Mercurial Hosting > luan

annotate src/luan/host/WebHandler.java @ 1187:83c8a5a47f70

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
fixes for luanhost
author Franklin Schmidt <fschmidt@gmail.com>
date Thu, 22 Feb 2018 18:38:45 -0700
parents 94cf2576a922
children d3a3ca116e42
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
1185
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
1 package luan.host;
1135
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
2
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
3 import java.io.File;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
4 import java.io.IOException;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
5 import java.util.Map;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
6 import java.util.HashMap;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
7 import org.slf4j.Logger;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
8 import org.slf4j.LoggerFactory;
1185
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
9 import luan.webserver.Handler;
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
10 import luan.webserver.Server;
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
11 import luan.webserver.Request;
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
12 import luan.webserver.Response;
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
13 import luan.webserver.handlers.IndexHandler;
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
14 import luan.webserver.handlers.ListHandler;
1135
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
15 import luan.Luan;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
16 import luan.LuanState;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
17 import luan.LuanException;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
18 import luan.LuanTable;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
19 import luan.LuanFunction;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
20 import luan.modules.IoLuan;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
21 import luan.modules.JavaLuan;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
22 import luan.modules.PackageLuan;
1185
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
23 import luan.modules.http.LuanHandler;
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
24 import luan.modules.http.NotFound;
1135
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
25
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
26
1185
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
27 public class WebHandler implements Handler {
1135
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
28 private static final Logger logger = LoggerFactory.getLogger(WebHandler.class);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
29
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
30 private static class Site {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
31 final Handler handler;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
32 final LuanHandler luanHandler;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
33
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
34 Site(Handler handler,LuanHandler luanHandler) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
35 this.handler = handler;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
36 this.luanHandler = luanHandler;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
37 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
38 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
39
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
40 public static String allowJavaFileName = "allow_java"; // change for security
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
41 private static final Map<String,Site> siteMap = new HashMap<String,Site>();
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
42 private static String sitesDir = null;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
43
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
44 public static boolean isServing() {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
45 return sitesDir != null;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
46 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
47
1185
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
48 public WebHandler(String dir) {
1135
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
49 if( sitesDir != null )
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
50 throw new RuntimeException("already set");
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
51 if( !new File(dir).exists() )
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
52 throw new RuntimeException();
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
53 this.sitesDir = dir;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
54 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
55
1185
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
56 public Response handle(Request request) {
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
57 String host = (String)request.headers.get("host");
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
58 int i = host.indexOf(':');
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
59 String domain = i == -1 ? host : host.substring(0,i);
1135
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
60 // System.out.println("handle "+domain);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
61 Site site = getSite(domain);
1185
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
62 return site==null ? null : site.handler.handle(request);
1135
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
63 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
64
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
65 public static Object runLuan(String domain,String sourceText,String sourceName) throws LuanException {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
66 return getSite(domain).luanHandler.runLuan(sourceText,sourceName);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
67 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
68
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
69 public static Object callSite(String domain,String fnName,Object... args) throws LuanException {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
70 return getSite(domain).luanHandler.call_rpc(fnName,args);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
71 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
72
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
73 private static Site getSite(String domain) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
74 synchronized(siteMap) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
75 Site site = siteMap.get(domain);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
76 if( site == null ) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
77 if( sitesDir==null )
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
78 throw new NullPointerException("sitesDir");
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
79 File dir = new File(sitesDir,domain);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
80 if( !dir.exists() /* && !recover(dir) */ )
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
81 return null;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
82 site = newSite(dir.toString(),domain);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
83 siteMap.put(domain,site);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
84 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
85 return site;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
86 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
87 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
88 /*
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
89 private static boolean recover(File dir) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
90 File backups = new File(dir.getParentFile().getParentFile(),"backups");
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
91 if( !backups.exists() )
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
92 return false;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
93 String name = dir.getName();
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
94 File from = null;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
95 for( File backup : backups.listFiles() ) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
96 File d = new File(backup,"current/"+name);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
97 if( d.exists() && (from==null || from.lastModified() < d.lastModified()) )
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
98 from = d;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
99 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
100 if( from == null )
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
101 return false;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
102 if( !from.renameTo(dir) )
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
103 throw new RuntimeException("couldn't rename "+from+" to "+dir);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
104 logger.info("recovered "+name+" from "+from);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
105 return true;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
106 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
107 */
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
108 static LuanTable initLuan(LuanState luan,String dir,String domain) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
109 LuanTable init;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
110 try {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
111 init = (LuanTable)luan.eval(
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
112 "local Luan = require 'luan:Luan.luan'\n"
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
113 +"local f = Luan.load_file 'classpath:luan/host/Init.luan'\n"
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
114 +"return f('"+dir+"','"+domain+"')\n"
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
115 );
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
116 } catch(LuanException e) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
117 throw new RuntimeException(e);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
118 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
119 File allowJavaFile = new File(dir,"site/private/"+allowJavaFileName);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
120 if( !allowJavaFile.exists() ) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
121 JavaLuan.setSecurity( luan, javaSecurity );
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
122 IoLuan.setSecurity( luan, ioSecurity(dir) );
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
123 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
124 return init;
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
125 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
126
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
127 private static Site newSite(String dir,String domain) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
128 LuanState luan = new LuanState();
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
129 LuanTable init = initLuan(luan,dir,domain);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
130
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
131 String loggerRoot = (String)init.rawGet("logger_root");
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
132 LuanHandler luanHandler = new LuanHandler(luan,loggerRoot);
1185
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
133 NotFound notFoundHandler = new NotFound(luanHandler);
1135
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
134
1185
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
135 Handler handler = luanHandler;
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
136 handler = new IndexHandler(handler);
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
137 handler = new ListHandler( handler, notFoundHandler );
1135
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
138
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
139 String logDir = dir+"/site/private/local/logs/web";
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
140 new File(logDir).mkdirs();
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
141
1185
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
142 return new Site(handler,luanHandler);
1135
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
143 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
144
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
145 public static void removeHandler(String domain) throws Exception {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
146 synchronized(siteMap) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
147 Site site = siteMap.remove(domain);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
148 if( site != null ) {
1185
94cf2576a922 implement WebHandler for nginx
Franklin Schmidt <fschmidt@gmail.com>
parents: 1182
diff changeset
149 site.luanHandler.close();
1135
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
150 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
151 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
152 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
153
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
154 public static void loadHandler(String domain) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
155 getSite(domain);
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
156 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
157
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
158 private static final IoLuan.Security ioSecurity(String dir) {
1174
bdf27aa2a65c fix luanhost security bug
Franklin Schmidt <fschmidt@gmail.com>
parents: 1136
diff changeset
159 final String siteUri = "file:" + dir + "/site";
1135
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
160 return new IoLuan.Security() {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
161 public void check(LuanState luan,String name) throws LuanException {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
162 if( name.startsWith("file:") ) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
163 if( name.contains("..") )
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
164 throw new LuanException("Security violation - '"+name+"' contains '..'");
1174
bdf27aa2a65c fix luanhost security bug
Franklin Schmidt <fschmidt@gmail.com>
parents: 1136
diff changeset
165 if( !(name.equals(siteUri) || name.startsWith(siteUri+"/")) )
1135
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
166 throw new LuanException("Security violation - '"+name+"' outside of site dir");
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
167 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
168 else if( name.startsWith("classpath:luan/host/") ) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
169 throw new LuanException("Security violation");
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
170 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
171 else if( name.startsWith("os:") || name.startsWith("bash:") ) {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
172 throw new LuanException("Security violation");
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
173 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
174 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
175 };
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
176 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
177
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
178 private static final JavaLuan.Security javaSecurity = new JavaLuan.Security() {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
179 public void check(LuanState luan,String name) throws LuanException {
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
180 if( !name.startsWith("luan:") )
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
181 throw new LuanException("Security violation - only luan:* modules can load Java");
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
182 if( name.equals("luan:logging/Logging") )
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
183 throw new LuanException("Security violation - cannot reload Logging");
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
184 }
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
185 };
707a5d874f3e add luan.host
Franklin Schmidt <fschmidt@gmail.com>
parents:
diff changeset
186 }