Mercurial > hg > orthanc
view Core/HttpServer/HttpOutput.h @ 1202:476a17cfdf42
Fix crash when bad HTTP credentials are provided
author | Sebastien Jodogne <s.jodogne@gmail.com> |
---|---|
date | Mon, 27 Oct 2014 13:45:36 +0100 |
parents | d9c27f9f1a51 |
children | 6e7e5ed91c2d |
line wrap: on
line source
/** * Orthanc - A Lightweight, RESTful DICOM Store * Copyright (C) 2012-2014 Medical Physics Department, CHU of Liege, * Belgium * * This program is free software: you can redistribute it and/or * modify it under the terms of the GNU General Public License as * published by the Free Software Foundation, either version 3 of the * License, or (at your option) any later version. * * In addition, as a special exception, the copyright holders of this * program give permission to link the code of its release with the * OpenSSL project's "OpenSSL" library (or with modified versions of it * that use the same license as the "OpenSSL" library), and distribute * the linked executables. You must obey the GNU General Public License * in all respects for all of the code used other than "OpenSSL". If you * modify file(s) with this exception, you may extend this exception to * your version of the file(s), but you are not obligated to do so. If * you do not wish to do so, delete this exception statement from your * version. If you delete this exception statement from all source files * in the program, then also delete it here. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see <http://www.gnu.org/licenses/>. **/ #pragma once #include <list> #include <string> #include <stdint.h> #include "../Enumerations.h" #include "IHttpOutputStream.h" #include "HttpHandler.h" namespace Orthanc { class HttpOutput : public boost::noncopyable { private: typedef std::list< std::pair<std::string, std::string> > Header; class StateMachine : public boost::noncopyable { private: enum State { State_WritingHeader, State_WritingBody, State_Done }; IHttpOutputStream& stream_; State state_; HttpStatus status_; bool hasContentLength_; uint64_t contentLength_; uint64_t contentPosition_; bool keepAlive_; std::list<std::string> headers_; public: StateMachine(IHttpOutputStream& stream, bool isKeepAlive); ~StateMachine(); void SetHttpStatus(HttpStatus status); void SetContentLength(uint64_t length); void SetContentType(const char* contentType); void SetContentFilename(const char* filename); void SetCookie(const std::string& cookie, const std::string& value); void AddHeader(const std::string& header, const std::string& value); void ClearHeaders(); void SendBody(const void* buffer, size_t length); }; StateMachine stateMachine_; public: HttpOutput(IHttpOutputStream& stream, bool isKeepAlive) : stateMachine_(stream, isKeepAlive) { } void SendStatus(HttpStatus status); void SetContentType(const char* contentType) { stateMachine_.SetContentType(contentType); } void SetContentFilename(const char* filename) { stateMachine_.SetContentFilename(filename); } void SetContentLength(uint64_t length) { stateMachine_.SetContentLength(length); } void SetCookie(const std::string& cookie, const std::string& value) { stateMachine_.SetCookie(cookie, value); } void AddHeader(const std::string& key, const std::string& value) { stateMachine_.AddHeader(key, value); } void SendBody(const void* buffer, size_t length); void SendBody(const std::string& str); void SendBody(); void SendMethodNotAllowed(const std::string& allowed); void Redirect(const std::string& path); void SendUnauthorized(const std::string& realm); }; }