2013-12-07 15:52:38 +00:00
|
|
|
|
using MediaBrowser.Model.Logging;
|
2014-07-19 01:28:40 +00:00
|
|
|
|
using MediaBrowser.Server.Implementations.HttpServer.SocketSharp;
|
2013-12-07 15:52:38 +00:00
|
|
|
|
using ServiceStack.Web;
|
|
|
|
|
|
using System;
|
|
|
|
|
|
using System.Globalization;
|
|
|
|
|
|
using System.Net;
|
|
|
|
|
|
using System.Text;
|
|
|
|
|
|
|
|
|
|
|
|
namespace MediaBrowser.Server.Implementations.HttpServer
|
|
|
|
|
|
{
|
|
|
|
|
|
public class ResponseFilter
|
|
|
|
|
|
{
|
|
|
|
|
|
private static readonly CultureInfo UsCulture = new CultureInfo("en-US");
|
|
|
|
|
|
private readonly ILogger _logger;
|
2015-06-13 04:14:48 +00:00
|
|
|
|
private readonly Func<bool> _denyIframeEmbedding;
|
2013-12-07 15:52:38 +00:00
|
|
|
|
|
2015-06-13 04:14:48 +00:00
|
|
|
|
public ResponseFilter(ILogger logger, Func<bool> denyIframeEmbedding)
|
2013-12-07 15:52:38 +00:00
|
|
|
|
{
|
|
|
|
|
|
_logger = logger;
|
2015-06-13 04:14:48 +00:00
|
|
|
|
_denyIframeEmbedding = denyIframeEmbedding;
|
2013-12-07 15:52:38 +00:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
|
/// Filters the response.
|
|
|
|
|
|
/// </summary>
|
|
|
|
|
|
/// <param name="req">The req.</param>
|
|
|
|
|
|
/// <param name="res">The res.</param>
|
|
|
|
|
|
/// <param name="dto">The dto.</param>
|
|
|
|
|
|
public void FilterResponse(IRequest req, IResponse res, object dto)
|
|
|
|
|
|
{
|
|
|
|
|
|
// Try to prevent compatibility view
|
|
|
|
|
|
res.AddHeader("X-UA-Compatible", "IE=Edge");
|
2015-06-13 04:14:48 +00:00
|
|
|
|
|
|
|
|
|
|
if (_denyIframeEmbedding())
|
|
|
|
|
|
{
|
2015-06-25 21:50:56 +00:00
|
|
|
|
res.AddHeader("X-Frame-Options", "SAMEORIGIN");
|
2015-06-13 04:14:48 +00:00
|
|
|
|
}
|
2013-12-07 15:52:38 +00:00
|
|
|
|
|
|
|
|
|
|
var exception = dto as Exception;
|
|
|
|
|
|
|
|
|
|
|
|
if (exception != null)
|
|
|
|
|
|
{
|
|
|
|
|
|
_logger.ErrorException("Error processing request for {0}", exception, req.RawUrl);
|
|
|
|
|
|
|
|
|
|
|
|
if (!string.IsNullOrEmpty(exception.Message))
|
|
|
|
|
|
{
|
|
|
|
|
|
var error = exception.Message.Replace(Environment.NewLine, " ");
|
|
|
|
|
|
error = RemoveControlCharacters(error);
|
|
|
|
|
|
|
|
|
|
|
|
res.AddHeader("X-Application-Error-Code", error);
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-05-22 19:16:14 +00:00
|
|
|
|
var vary = "Accept-Encoding";
|
2013-12-07 15:52:38 +00:00
|
|
|
|
|
|
|
|
|
|
var hasOptions = dto as IHasOptions;
|
2015-05-22 19:16:14 +00:00
|
|
|
|
var sharpResponse = res as WebSocketSharpResponse;
|
2013-12-07 15:52:38 +00:00
|
|
|
|
|
|
|
|
|
|
if (hasOptions != null)
|
|
|
|
|
|
{
|
2015-05-30 14:32:18 +00:00
|
|
|
|
hasOptions.Options["Server"] = "Mono-HTTPAPI/1.1";
|
2015-05-22 19:16:14 +00:00
|
|
|
|
|
2013-12-07 15:52:38 +00:00
|
|
|
|
// Content length has to be explicitly set on on HttpListenerResponse or it won't be happy
|
|
|
|
|
|
string contentLength;
|
|
|
|
|
|
|
|
|
|
|
|
if (hasOptions.Options.TryGetValue("Content-Length", out contentLength) && !string.IsNullOrEmpty(contentLength))
|
|
|
|
|
|
{
|
|
|
|
|
|
var length = long.Parse(contentLength, UsCulture);
|
|
|
|
|
|
|
|
|
|
|
|
if (length > 0)
|
|
|
|
|
|
{
|
2014-07-19 01:28:40 +00:00
|
|
|
|
res.SetContentLength(length);
|
|
|
|
|
|
|
|
|
|
|
|
var listenerResponse = res.OriginalResponse as HttpListenerResponse;
|
|
|
|
|
|
|
|
|
|
|
|
if (listenerResponse != null)
|
|
|
|
|
|
{
|
|
|
|
|
|
// Disable chunked encoding. Technically this is only needed when using Content-Range, but
|
|
|
|
|
|
// anytime we know the content length there's no need for it
|
|
|
|
|
|
listenerResponse.SendChunked = false;
|
|
|
|
|
|
return;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (sharpResponse != null)
|
|
|
|
|
|
{
|
|
|
|
|
|
sharpResponse.SendChunked = false;
|
|
|
|
|
|
}
|
2013-12-07 15:52:38 +00:00
|
|
|
|
}
|
|
|
|
|
|
}
|
2015-05-22 19:16:14 +00:00
|
|
|
|
|
|
|
|
|
|
string hasOptionsVary;
|
|
|
|
|
|
if (hasOptions.Options.TryGetValue("Vary", out hasOptionsVary))
|
|
|
|
|
|
{
|
|
|
|
|
|
vary = hasOptionsVary;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
hasOptions.Options["Vary"] = vary;
|
2013-12-07 15:52:38 +00:00
|
|
|
|
}
|
2015-05-22 19:16:14 +00:00
|
|
|
|
|
|
|
|
|
|
//res.KeepAlive = false;
|
|
|
|
|
|
|
|
|
|
|
|
// Per Google PageSpeed
|
|
|
|
|
|
// This instructs the proxies to cache two versions of the resource: one compressed, and one uncompressed.
|
|
|
|
|
|
// The correct version of the resource is delivered based on the client request header.
|
|
|
|
|
|
// This is a good choice for applications that are singly homed and depend on public proxies for user locality.
|
|
|
|
|
|
res.AddHeader("Vary", vary);
|
2013-12-07 15:52:38 +00:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
|
/// Removes the control characters.
|
|
|
|
|
|
/// </summary>
|
|
|
|
|
|
/// <param name="inString">The in string.</param>
|
|
|
|
|
|
/// <returns>System.String.</returns>
|
2014-10-28 23:17:55 +00:00
|
|
|
|
public static string RemoveControlCharacters(string inString)
|
2013-12-07 15:52:38 +00:00
|
|
|
|
{
|
|
|
|
|
|
if (inString == null) return null;
|
|
|
|
|
|
|
|
|
|
|
|
var newString = new StringBuilder();
|
|
|
|
|
|
|
|
|
|
|
|
foreach (var ch in inString)
|
|
|
|
|
|
{
|
|
|
|
|
|
if (!char.IsControl(ch))
|
|
|
|
|
|
{
|
|
|
|
|
|
newString.Append(ch);
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
return newString.ToString();
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
