SmartRedirectStrategy.java

  1. package cn.home1.oss.lib.security.internal.template;

  3. import static java.lang.Boolean.FALSE;
  4. import static java.lang.Boolean.TRUE;
  5. import static org.apache.commons.lang3.StringUtils.isNotBlank;

  7. import cn.home1.oss.lib.common.CodecUtils;

  9. import lombok.SneakyThrows;
  10. import lombok.extern.slf4j.Slf4j;

  12. import org.springframework.security.web.RedirectStrategy;
  13. import org.springframework.security.web.util.UrlUtils;

  15. import java.io.IOException;

  17. import javax.servlet.http.HttpServletRequest;
  18. import javax.servlet.http.HttpServletResponse;

  20. /**
  21.  * Created by zhanghaolun on 16/11/11.
  22.  */
  23. @Slf4j
  24. public class SmartRedirectStrategy implements RedirectStrategy {

  26.   public static final String PARAM_REDIRECT = "redirect";

  28.   private boolean contextRelative;

  30.   /**
  31.    * Redirects the response to the supplied URL.
  32.    * <p>
  33.    * If <tt>contextRelative</tt> is set, the redirect value will be the value after the
  34.    * request context path. Note that this will result in the loss of protocol
  35.    * information (HTTP or HTTPS), so will cause problems if a redirect is being
  36.    * performed to change to HTTPS, for example.
  37.    * </p>
  38.    */
  39.   @Override
  40.   public void sendRedirect( //
  41.     final HttpServletRequest request,
  42.     final HttpServletResponse response,
  43.     final String url //
  44.   ) throws IOException {
  45.     String redirectUrl = buildRedirectUrl(request, url);
  46.     redirectUrl = response.encodeRedirectURL(redirectUrl);

  48.     if (log.isDebugEnabled()) {
  49.       log.debug("Redirecting to '" + redirectUrl + "'");
  50.     }

  52.     response.sendRedirect(redirectUrl);
  53.   }

  55.   private String buildRedirectUrl( //
  56.     final HttpServletRequest request, //
  57.     final String url //
  58.   ) {
  59.     final String redirectUrl = calculateRedirectUrl(request, url);

  61.     final String requestUrl = request.getRequestURL().toString();
  62.     final String paramValue = request.getParameter(PARAM_REDIRECT);
  63.     final Boolean containsRedirectParam = containsParam(requestUrl, PARAM_REDIRECT) || isNotBlank(paramValue);
  64.     final String result;
  65.     if (containsRedirectParam) {
  66.       result = appendParam(redirectUrl, PARAM_REDIRECT, paramValue);
  67.     } else {
  68.       result = redirectUrl;
  69.     }
  70.     return result;
  71.   }

  73.   private String calculateRedirectUrl(final HttpServletRequest request, final String url) {
  74.     final String contextPath = request.getContextPath();
  75.     final String redirectUrl;
  76.     if (!UrlUtils.isAbsoluteUrl(url)) {
  77.       if (this.contextRelative) {
  78.         redirectUrl = url;
  79.       } else {
  80.         redirectUrl = contextPath + url;
  81.       }
  82.     } else {
  83.       // Full URL, including http(s)://
  84.       if (!this.contextRelative) {
  85.         redirectUrl = url;
  86.       } else {
  87.         // Calculate the relative URL from the fully qualified URL, minus the last
  88.         // occurrence of the scheme and base context.
  89.         final String withoutScheme = url.substring(url.lastIndexOf("://") + 3); // strip off scheme
  90.         final String withoutContextPath = withoutScheme.substring( //
  91.           withoutScheme.indexOf(contextPath) + contextPath.length());

  93.         if (withoutContextPath.length() > 1 && withoutContextPath.charAt(0) == '/') {
  94.           redirectUrl = url.substring(1);
  95.         } else {
  96.           redirectUrl = withoutContextPath;
  97.         }
  98.       }
  99.     }
  100.     return redirectUrl;
  101.   }

  103.   /**
  104.    * If <tt>true</tt>, causes any redirection URLs to be calculated minus the protocol
  105.    * and context path (defaults to <tt>false</tt>).
  106.    *
  107.    * @param useRelativeContext useRelativeContext
  108.    */
  109.   public void setContextRelative(final boolean useRelativeContext) {
  110.     this.contextRelative = useRelativeContext;
  111.   }

  113.   public static Boolean containsParam(final String url, final String paramName) {
  114.     Boolean containsParam = FALSE;
  115.     if (isNotBlank(url) && url.contains("?")) { // find redirect param
  116.       final String queryString = url.substring(url.indexOf('?') + 1);
  117.       final String[] params = queryString.split("&");
  118.       for (final String param : params) {
  119.         final String name = param.split("=")[0];
  120.         if (paramName.equals(name)) {
  121.           containsParam = TRUE;
  122.           break;
  123.         }
  124.       }
  125.     }
  126.     return containsParam;
  127.   }

  129.   @SneakyThrows
  130.   public static String appendParam(final String url, final String paramName, final String paramValue) {
  131.     final String param = paramName + "=" + CodecUtils.urlEncode(paramValue);
  132.     final String result;
  133.     if (url != null) {
  134.       if (url.contains("?")) {
  135.         result = url + "&" + param;
  136.       } else {
  137.         result = url + "?" + param;
  138.       }
  139.     } else {
  140.       result = null;
  141.     }
  142.     return result;
  143.   }
  144. }
Created with JaCoCo 0.7.7.201606060606