/*
* JBoss, Home of Professional Open Source.
* Copyright 2011, Red Hat, Inc., and individual contributors
* as indicated by the @author tags. See the copyright.txt file in the
* distribution for a full listing of individual contributors.
*
* This is free software; you can redistribute it and/or modify it
* under the terms of the GNU Lesser General Public License as
* published by the Free Software Foundation; either version 2.1 of
* the License, or (at your option) any later version.
*
* This software is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public
* License along with this software; if not, write to the Free
* Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
* 02110-1301 USA, or see the FSF site: http://www.fsf.org.
*/
package org.jboss.as.domain.http.server;
import java.io.IOException;
import java.net.InetSocketAddress;
import java.util.LinkedList;
import java.util.List;
import java.util.concurrent.Executor;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLParameters;
import org.jboss.as.controller.client.ModelControllerClient;
import org.jboss.as.domain.management.SecurityRealm;
import org.jboss.com.sun.net.httpserver.HttpServer;
import org.jboss.com.sun.net.httpserver.HttpsConfigurator;
import org.jboss.com.sun.net.httpserver.HttpsParameters;
import org.jboss.com.sun.net.httpserver.HttpsServer;
/**
* The general HTTP server for handling management API requests.
*
* @author <a href="mailto:darran.lofthouse@jboss.com">Darran Lofthouse</a>
*/
public class ManagementHttpServer {
private final HttpServer httpServer;
private final HttpServer secureHttpServer;
private SecurityRealm securityRealm;
private List<ManagementHttpHandler> handlers = new LinkedList<ManagementHttpHandler>();
private ManagementHttpServer(HttpServer httpServer, HttpServer secureHttpServer, SecurityRealm securityRealm) {
this.httpServer = httpServer;
this.secureHttpServer = secureHttpServer;
this.securityRealm = securityRealm;
}
private void addHandler(ManagementHttpHandler handler) {
handlers.add(handler);
}
public void start() {
start(httpServer);
start(secureHttpServer);
}
private void start(HttpServer httpServer) {
if (httpServer == null)
return;
for (ManagementHttpHandler current : handlers) {
current.start(httpServer, securityRealm);
}
httpServer.start();
}
public void stop() {
stop(httpServer);
stop(secureHttpServer);
}
private void stop(HttpServer httpServer) {
if (httpServer == null)
return;
httpServer.stop(0);
for (ManagementHttpHandler current : handlers) {
current.stop(httpServer);
}
}
public static ManagementHttpServer create(InetSocketAddress bindAddress, InetSocketAddress secureBindAddress, int backlog, ModelControllerClient modelControllerClient, Executor executor, SecurityRealm securityRealm)
throws IOException {
HttpServer httpServer = null;
if (bindAddress != null) {
httpServer = HttpServer.create(bindAddress, backlog);
httpServer.setExecutor(executor);
}
HttpServer secureHttpServer = null;
if (secureBindAddress != null) {
secureHttpServer = HttpsServer.create(secureBindAddress, backlog);
SSLContext context = securityRealm.getSSLContext();
((HttpsServer) secureHttpServer).setHttpsConfigurator(new HttpsConfigurator(context) {
@Override
public void configure(HttpsParameters params) {
super.configure(params);
{
if (true)
return;
// TODO - Add propper capture of these values.
System.out.println(" * SSLContext * ");
SSLContext sslContext = getSSLContext();
SSLParameters sslParams = sslContext.getDefaultSSLParameters();
String[] cipherSuites = sslParams.getCipherSuites();
for (String current : cipherSuites) {
System.out.println("Cipher Suite - " + current);
}
System.out.println("Need Client Auth " + sslParams.getNeedClientAuth());
String[] protocols = sslParams.getProtocols();
for (String current : protocols) {
System.out.println("Protocol " + current);
}
System.out.println("Want Client Auth " + sslParams.getWantClientAuth());
}
System.out.println(" * HTTPSParameters * ");
{
System.out.println("Client Address " + params.getClientAddress());
String[] cipherSuites = params.getCipherSuites();
if (cipherSuites != null) {
for (String current : cipherSuites) {
System.out.println("Cipher Suite - " + current);
}
}
System.out.println("Need Client Auth " + params.getNeedClientAuth());
String[] protocols = params.getProtocols();
if (protocols != null) {
for (String current : protocols) {
System.out.println("Protocol " + current);
}
}
System.out.println("Want Client Auth " + params.getWantClientAuth());
}
}
});
secureHttpServer.setExecutor(executor);
}
ManagementHttpServer managementHttpServer = new ManagementHttpServer(httpServer, secureHttpServer, securityRealm);
managementHttpServer.addHandler(new DomainApiHandler(modelControllerClient));
managementHttpServer.addHandler(new ConsoleHandler());
return managementHttpServer;
}
}