merging fixes for weekly gc.2011-04-04

fiber · fiber · commit b2888a358a01 · 2011-04-05T22:35:11.000+02:00
diff --git a/Makefile b/Makefile
@@ -4,6 +4,7 @@ TARG=web
 GOFMT=gofmt -s -spaces=true -tabindent=false -tabwidth=4
 
 GOFILES=\
+  cookie.go\
 	fcgi.go\
 	request.go\
 	scgi.go\
@@ -14,13 +15,7 @@ GOFILES=\
 include $(GOROOT)/src/Make.pkg
 
 format:
-	${GOFMT} -w fcgi.go
-	${GOFMT} -w request.go
-	${GOFMT} -w scgi.go
-	${GOFMT} -w servefile.go
-	${GOFMT} -w status.go
-	${GOFMT} -w web.go
-	${GOFMT} -w web_test.go
+	${GOFMT} -w ${GOFILES}
 	${GOFMT} -w examples/arcchallenge.go
 	${GOFMT} -w examples/hello.go
 	${GOFMT} -w examples/methodhandler.go
diff --git a/cookie.go b/cookie.go
@@ -0,0 +1,157 @@
+// Copyright 2009 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package web
+
+import (
+	"bytes"
+	"fmt"
+	"http"
+	"io"
+	"os"
+	"sort"
+	"strings"
+	"time"
+)
+
+// writeSetCookies writes the wire representation of the set-cookies
+// to w. Each cookie is written on a separate "Set-Cookie: " line.
+// This choice is made because HTTP parsers tend to have a limit on
+// line-length, so it seems safer to place cookies on separate lines.
+func writeSetCookies(w io.Writer, kk []*http.Cookie) os.Error {
+	if kk == nil {
+		return nil
+	}
+	lines := make([]string, 0, len(kk))
+	var b bytes.Buffer
+	for _, c := range kk {
+		b.Reset()
+		// TODO(petar): c.Value (below) should be unquoted if it is recognized as quoted
+		fmt.Fprintf(&b, "%s=%s", http.CanonicalHeaderKey(c.Name), c.Value)
+		if len(c.Path) > 0 {
+			fmt.Fprintf(&b, "; Path=%s", http.URLEscape(c.Path))
+		}
+		if len(c.Domain) > 0 {
+			fmt.Fprintf(&b, "; Domain=%s", http.URLEscape(c.Domain))
+		}
+		if len(c.Expires.Zone) > 0 {
+			fmt.Fprintf(&b, "; Expires=%s", c.Expires.Format(time.RFC1123))
+		}
+		if c.MaxAge >= 0 {
+			fmt.Fprintf(&b, "; Max-Age=%d", c.MaxAge)
+		}
+		if c.HttpOnly {
+			fmt.Fprintf(&b, "; HttpOnly")
+		}
+		if c.Secure {
+			fmt.Fprintf(&b, "; Secure")
+		}
+		lines = append(lines, "Set-Cookie: "+b.String()+"\r\n")
+	}
+	sort.SortStrings(lines)
+	for _, l := range lines {
+		if _, err := io.WriteString(w, l); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// writeCookies writes the wire representation of the cookies
+// to w. Each cookie is written on a separate "Cookie: " line.
+// This choice is made because HTTP parsers tend to have a limit on
+// line-length, so it seems safer to place cookies on separate lines.
+func writeCookies(w io.Writer, kk []*http.Cookie) os.Error {
+	lines := make([]string, 0, len(kk))
+	var b bytes.Buffer
+	for _, c := range kk {
+		b.Reset()
+		n := c.Name
+		// TODO(petar): c.Value (below) should be unquoted if it is recognized as quoted
+		fmt.Fprintf(&b, "%s=%s", http.CanonicalHeaderKey(n), c.Value)
+		if len(c.Path) > 0 {
+			fmt.Fprintf(&b, "; $Path=%s", http.URLEscape(c.Path))
+		}
+		if len(c.Domain) > 0 {
+			fmt.Fprintf(&b, "; $Domain=%s", http.URLEscape(c.Domain))
+		}
+		if c.HttpOnly {
+			fmt.Fprintf(&b, "; $HttpOnly")
+		}
+		lines = append(lines, "Cookie: "+b.String()+"\r\n")
+	}
+	sort.SortStrings(lines)
+	for _, l := range lines {
+		if _, err := io.WriteString(w, l); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// readCookies parses all "Cookie" values from
+// the header h, removes the successfully parsed values from the 
+// "Cookie" key in h and returns the parsed Cookies.
+func readCookies(h http.Header) []*http.Cookie {
+	cookies := []*http.Cookie{}
+	lines, ok := h["Cookie"]
+	if !ok {
+		return cookies
+	}
+	unparsedLines := []string{}
+	for _, line := range lines {
+		parts := strings.Split(strings.TrimSpace(line), ";", -1)
+		if len(parts) == 1 && parts[0] == "" {
+			continue
+		}
+		// Per-line attributes
+		var lineCookies = make(map[string]string)
+		var path string
+		var domain string
+		var httponly bool
+		for i := 0; i < len(parts); i++ {
+			parts[i] = strings.TrimSpace(parts[i])
+			if len(parts[i]) == 0 {
+				continue
+			}
+			attr, val := parts[i], ""
+			var err os.Error
+			if j := strings.Index(attr, "="); j >= 0 {
+				attr, val = attr[:j], attr[j+1:]
+				val, err = http.URLUnescape(val)
+				if err != nil {
+					continue
+				}
+			}
+			switch strings.ToLower(attr) {
+			case "$httponly":
+				httponly = true
+			case "$domain":
+				domain = val
+				// TODO: Add domain parsing
+			case "$path":
+				path = val
+				// TODO: Add path parsing
+			default:
+				lineCookies[attr] = val
+			}
+		}
+		if len(lineCookies) == 0 {
+			unparsedLines = append(unparsedLines, line)
+		}
+		for n, v := range lineCookies {
+			cookies = append(cookies, &http.Cookie{
+				Name:     n,
+				Value:    v,
+				Path:     path,
+				Domain:   domain,
+				HttpOnly: httponly,
+				MaxAge:   -1,
+				Raw:      line,
+			})
+		}
+	}
+	h["Cookie"] = unparsedLines, len(unparsedLines) > 0
+	return cookies
+}
diff --git a/request.go b/request.go
@@ -38,6 +38,7 @@ type Request struct {
     Params     map[string]string
     ParamData  []byte
     Cookies    map[string]string
+    Cookie     []*http.Cookie
     Files      map[string]filedata
     RemoteAddr string
     RemotePort int
@@ -79,6 +80,7 @@ func newRequest(hr *http.Request, hc http.ResponseWriter) *Request {
         Referer:    hr.Referer,
         UserAgent:  hr.UserAgent,
         FullParams: hr.Form,
+        Cookie:     hr.Cookie,
         RemoteAddr: remoteAddr.IP.String(),
         RemotePort: remoteAddr.Port,
     }
@@ -116,6 +118,9 @@ func newRequestCgi(headers http.Header, body io.Reader) *Request {
             httpheader["Content-Length"] = clength
         }
     }
+    
+    //read the cookies
+    cookies := readCookies(httpheader)    
 
     req := Request{
         Method:     method,
@@ -128,6 +133,7 @@ func newRequestCgi(headers http.Header, body io.Reader) *Request {
         Headers:    httpheader,
         RemoteAddr: remoteAddr,
         RemotePort: remotePort,
+        Cookie: cookies,
     }
 
     return &req
@@ -217,16 +223,16 @@ func (r *Request) parseParams() (err os.Error) {
                 data, _ := ioutil.ReadAll(part)
                 //check for the 'filename' param
                 v := part.Header.Get("Content-Disposition")
-                if len(v)==0 {
-                   continue
+                if v == "" {
+                    continue
                 }
                 name := part.FormName()
                 d, params := mime.ParseMediaType(v)
                 if d != "form-data" {
                     continue
                 }
                 if params["filename"] != "" {
-                    r.Files[name] = filedata{name, data}
+                    r.Files[name] = filedata{params["filename"], data}
                 } else {
                     var params vector.StringVector = r.FullParams[name]
                     params.Push(string(data))
@@ -256,30 +262,6 @@ func (r *Request) parseParams() (err os.Error) {
     return nil
 }
 
-func (r *Request) parseCookies() (err os.Error) {
-    if r.Cookies != nil {
-        return
-    }
-
-    r.Cookies = make(map[string]string)
-
-    if va, ok := r.Headers["Cookie"]; ok {
-        for _, v := range va {
-            cookies := strings.Split(v, ";", -1)
-            for _, cookie := range cookies {
-                cookie = strings.TrimSpace(cookie)
-                parts := strings.Split(cookie, "=", 2)
-                if len(parts) != 2 {
-                    continue
-                }
-                r.Cookies[parts[0]] = parts[1]
-            }
-        }
-    }
-
-    return nil
-}
-
 func (r *Request) HasFile(name string) bool {
     if r.Files == nil || len(r.Files) == 0 {
         return false
diff --git a/web.go b/web.go
@@ -130,32 +130,34 @@ func (ctx *Context) SetSecureCookie(name string, val string, age int64) {
 }
 
 func (ctx *Context) GetSecureCookie(name string) (string, bool) {
-    cookie, ok := ctx.Request.Cookies[name]
-    if !ok {
-        return "", false
-    }
+    for _, cookie := range ctx.Request.Cookie {
+        if cookie.Name != name {
+            continue
+        }
 
-    parts := strings.Split(cookie, "|", 3)
+        parts := strings.Split(cookie.Value, "|", 3)
 
-    val := parts[0]
-    timestamp := parts[1]
-    sig := parts[2]
+        val := parts[0]
+        timestamp := parts[1]
+        sig := parts[2]
 
-    if getCookieSig(ctx.Server.Config.CookieSecret, []byte(val), timestamp) != sig {
-        return "", false
-    }
+        if getCookieSig(ctx.Server.Config.CookieSecret, []byte(val), timestamp) != sig {
+            return "", false
+        }
 
-    ts, _ := strconv.Atoi64(timestamp)
+        ts, _ := strconv.Atoi64(timestamp)
 
-    if time.Seconds()-31*86400 > ts {
-        return "", false
-    }
+        if time.Seconds()-31*86400 > ts {
+            return "", false
+        }
 
-    buf := bytes.NewBufferString(val)
-    encoder := base64.NewDecoder(base64.StdEncoding, buf)
+        buf := bytes.NewBufferString(val)
+        encoder := base64.NewDecoder(base64.StdEncoding, buf)
 
-    res, _ := ioutil.ReadAll(encoder)
-    return string(res), true
+        res, _ := ioutil.ReadAll(encoder)
+        return string(res), true
+    }
+    return "", false
 }
 
 // small optimization: cache the context type instead of repeteadly calling reflect.Typeof
@@ -316,12 +318,6 @@ func (s *Server) routeHandler(req *Request, c conn) {
         s.Logger.Printf("Failed to parse form data %q\n", perr.String())
     }
 
-    //parse the cookies
-    perr = req.parseCookies()
-    if perr != nil {
-        s.Logger.Printf("Failed to parse cookies %q", perr.String())
-    }
-
     ctx := Context{req, s, c, false}
 
     //set some default headers
diff --git a/web_test.go b/web_test.go
