using MediaBrowser.Model.Logging; using MediaBrowser.Server.Implementations.HttpServer.SocketSharp; using ServiceStack.Web; using System; using System.Globalization; using System.Net; using System.Text; namespace MediaBrowser.Server.Implementations.HttpServer { public class ResponseFilter { private static readonly CultureInfo UsCulture = new CultureInfo("en-US"); private readonly ILogger _logger; private readonly Func _denyIframeEmbedding; public ResponseFilter(ILogger logger, Func denyIframeEmbedding) { _logger = logger; _denyIframeEmbedding = denyIframeEmbedding; } /// /// Filters the response. /// /// The req. /// The res. /// The dto. public void FilterResponse(IRequest req, IResponse res, object dto) { // Try to prevent compatibility view res.AddHeader("X-UA-Compatible", "IE=Edge"); if (_denyIframeEmbedding()) { res.AddHeader("X-Frame-Options", "DENY"); } var exception = dto as Exception; if (exception != null) { _logger.ErrorException("Error processing request for {0}", exception, req.RawUrl); if (!string.IsNullOrEmpty(exception.Message)) { var error = exception.Message.Replace(Environment.NewLine, " "); error = RemoveControlCharacters(error); res.AddHeader("X-Application-Error-Code", error); } } var vary = "Accept-Encoding"; var hasOptions = dto as IHasOptions; var sharpResponse = res as WebSocketSharpResponse; if (hasOptions != null) { hasOptions.Options["Server"] = "Mono-HTTPAPI/1.1"; // Content length has to be explicitly set on on HttpListenerResponse or it won't be happy string contentLength; if (hasOptions.Options.TryGetValue("Content-Length", out contentLength) && !string.IsNullOrEmpty(contentLength)) { var length = long.Parse(contentLength, UsCulture); if (length > 0) { res.SetContentLength(length); var listenerResponse = res.OriginalResponse as HttpListenerResponse; if (listenerResponse != null) { // Disable chunked encoding. Technically this is only needed when using Content-Range, but // anytime we know the content length there's no need for it listenerResponse.SendChunked = false; return; } if (sharpResponse != null) { sharpResponse.SendChunked = false; } } } string hasOptionsVary; if (hasOptions.Options.TryGetValue("Vary", out hasOptionsVary)) { vary = hasOptionsVary; } hasOptions.Options["Vary"] = vary; } //res.KeepAlive = false; // Per Google PageSpeed // This instructs the proxies to cache two versions of the resource: one compressed, and one uncompressed. // The correct version of the resource is delivered based on the client request header. // This is a good choice for applications that are singly homed and depend on public proxies for user locality. res.AddHeader("Vary", vary); } /// /// Removes the control characters. /// /// The in string. /// System.String. public static string RemoveControlCharacters(string inString) { if (inString == null) return null; var newString = new StringBuilder(); foreach (var ch in inString) { if (!char.IsControl(ch)) { newString.Append(ch); } } return newString.ToString(); } } }