uniset2/_u_http_request_handler_8h_source.html

#ifndef DISABLE_REST_API

/*

 * Copyright (c) 2015 Pavel Vainerman.

 *

 * This program is free software: you can redistribute it and/or modify

 * it under the terms of the GNU Lesser General Public License as

 * published by the Free Software Foundation, version 2.1.

 *

 * This program is distributed in the hope that it will be useful, but

 * WITHOUT ANY WARRANTY; without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU

 * Lesser General Lesser Public License for more details.

 *

 * You should have received a copy of the GNU Lesser General Public License

 * along with this program. If not, see <http://www.gnu.org/licenses/>.

 */

// -------------------------------------------------------------------------

#ifndef UHttpRequesrHandler_H_

#define UHttpRequesrHandler_H_

// -------------------------------------------------------------------------

#include <memory>

#include <vector>

#include <string>

#include <unordered_set>

#include <Poco/Net/HTTPRequestHandler.h>

#include <Poco/Net/HTTPRequestHandlerFactory.h>

#include <Poco/Net/HTTPServerRequest.h>

#include <Poco/Net/HTTPServerResponse.h>

#include <Poco/Net/IPAddress.h>

#include <Poco/URI.h>

#include <Poco/JSON/Object.h>

#include "ujson.h"

#include "DebugStream.h"

// -------------------------------------------------------------------------

// -------------------------------------------------------------------------

namespace uniset

{

    namespace UHttp

    {

        // текущая версия API

        const std::string UHTTP_API_VERSION = "v2";


        // -------------------------------------------------------------------------


        struct HttpRequestContext

        {

            // Ссылки на Poco объекты (всегда существуют)

            Poco::Net::HTTPServerRequest& request;

            Poco::Net::HTTPServerResponse& response;


            // Распарсенные данные (заполняются в конструкторе один раз)

            std::vector<std::string> path;      // путь после ObjectName: ["sensors", "count"]

            Poco::URI::QueryParameters params;  // query string параметры

            std::string objectName;             // имя объекта из URL


            // Конструктор — парсит URI один раз

            HttpRequestContext(Poco::Net::HTTPServerRequest& req,

                               Poco::Net::HTTPServerResponse& resp);


            // Минимум хелперов

            size_t depth() const { return path.size(); }


            const std::string& operator[](size_t i) const

            {

                static const std::string empty;

                return (i < path.size()) ? path[i] : empty;

            }


            // Для логов и сообщений об ошибках

            std::string pathString() const;

        };


        // Простая структура для описания подсети (CIDR)


        struct NetworkRule

        {

            Poco::Net::IPAddress address;

            unsigned int prefixLength = { 0 };

            bool isRange = { false };

            Poco::Net::IPAddress rangeEnd;

        };


        using NetworkRules = std::vector<NetworkRule>;

        using BearerTokens = std::unordered_set<std::string>;


        // -------------------------------------------------------------------------


        class IHttpRequest

        {

            public:

                IHttpRequest() {}

                virtual ~IHttpRequest() {}


                // Основной метод обработки запросов

                // throw SystemError

                virtual Poco::JSON::Object::Ptr httpRequest(const HttpRequestContext& ctx) = 0;


                // Справка по командам объекта (отдельно, чтобы не забыть реализовать)

                // throw SystemError

                virtual Poco::JSON::Object::Ptr httpHelp(const Poco::URI::QueryParameters& p) = 0;

        };


        // -------------------------------------------------------------------------


        class IHttpRequestRegistry

        {

            public:

                IHttpRequestRegistry() {}

                virtual ~IHttpRequestRegistry() {}


                // Основной метод — берёт objectName из ctx

                // throw SystemError, NameNotFound

                virtual Poco::JSON::Object::Ptr httpRequest(const HttpRequestContext& ctx) = 0;


                // Список объектов

                // throw SystemError

                virtual Poco::JSON::Array::Ptr httpGetObjectsList(const HttpRequestContext& ctx) = 0;


                // Справка по объекту (диспетчеризация к конкретному объекту по ctx.objectName)

                // throw SystemError, NameNotFound

                virtual Poco::JSON::Object::Ptr httpHelpRequest(const HttpRequestContext& ctx) = 0;


                virtual bool httpStaticRequest(

                    const std::string& path,

                    Poco::Net::HTTPServerRequest& req,

                    Poco::Net::HTTPServerResponse& resp)

                {

                    return false;  // По умолчанию: не обрабатываем

                }


        };


        // -------------------------------------------------------------------------


        class UHttpRequestHandler:

            public Poco::Net::HTTPRequestHandler

        {

            public:

                UHttpRequestHandler( std::shared_ptr<IHttpRequestRegistry> _registry, const std::string& httpCORS_allow = "*",

                                    const std::string& contentType="text/json; charset=UTF-8",

                                    const NetworkRules& whitelist = NetworkRules(),

                                    const NetworkRules& blacklist = NetworkRules(),

                                    const NetworkRules& trustedProxies = NetworkRules(),

                                    bool bearerRequired = false,

                                    const BearerTokens& bearerTokens = BearerTokens());


                virtual void handleRequest( Poco::Net::HTTPServerRequest& req, Poco::Net::HTTPServerResponse& resp ) override;


                static bool match(const Poco::Net::IPAddress& ip, const NetworkRule& rule);

                static bool inRules(const Poco::Net::IPAddress& ip, const NetworkRules& rules);

                static bool isDenied(const Poco::Net::IPAddress& ip,

                                     const NetworkRules& whitelist,

                                     const NetworkRules& blacklist);

                static bool validateBearer(const std::string& header, const BearerTokens& tokens);


            private:


                std::shared_ptr<IHttpRequestRegistry> registry;

                std::shared_ptr<DebugStream> log;

                const std::string httpCORS_allow = { "*" };

                std::string httpDefaultContentType = {"text/json; charset=UTF-8" };

                NetworkRules whitelist;

                NetworkRules blacklist;

                NetworkRules trustedProxies;

                bool bearerRequired = { false };

                BearerTokens bearerTokens;

        };


        // -------------------------------------------------------------------------


        class UHttpRequestHandlerFactory:

            public Poco::Net::HTTPRequestHandlerFactory

        {

            public:


                UHttpRequestHandlerFactory( std::shared_ptr<IHttpRequestRegistry>& _registry );


                virtual Poco::Net::HTTPRequestHandler* createRequestHandler( const Poco::Net::HTTPServerRequest& ) override;


                // (CORS): Access-Control-Allow-Origin. Default: *

                void setCORS_allow( const std::string& allow );

                void setDefaultContentType( const std::string& ct );

                void setWhitelist( const NetworkRules& rules );

                void setBlacklist( const NetworkRules& rules );

                void setTrustedProxies( const NetworkRules& rules );

                void setBearerRequired( bool required );

                void setBearerTokens( const BearerTokens& tokens );

            private:

                std::shared_ptr<IHttpRequestRegistry> registry;

                std::string httpCORS_allow = { "*" };

                std::string httpDefaultContentType = {"text/json; charset=UTF-8" };

                NetworkRules whitelist;

                NetworkRules blacklist;

                NetworkRules trustedProxies;

                bool bearerRequired = { false };

                BearerTokens bearerTokens;

        };


    }

    // -------------------------------------------------------------------------

} // end of uniset namespace

// -------------------------------------------------------------------------

#endif // UHttpRequesrHandler_H_

// -------------------------------------------------------------------------

#endif

uniset::UHttp::IHttpRequest
Definition UHttpRequestHandler.h:129

uniset::UHttp::IHttpRequestRegistry
Definition UHttpRequestHandler.h:146

uniset::UHttp::IHttpRequestRegistry::httpStaticRequest
virtual bool httpStaticRequest(const std::string &path, Poco::Net::HTTPServerRequest &req, Poco::Net::HTTPServerResponse &resp)
Definition UHttpRequestHandler.h:170

uniset::UHttp::UHttpRequestHandlerFactory
Definition UHttpRequestHandler.h:216

uniset::UHttp::UHttpRequestHandler
Definition UHttpRequestHandler.h:182

uniset
Definition AccessConfig.h:30

uniset::UHttp::HttpRequestContext
Definition UHttpRequestHandler.h:87

uniset::UHttp::NetworkRule
Definition UHttpRequestHandler.h:116