Computed original reference according to the proxy forwarding. Issue #1191

Author: thboileau

Diff for: modules/org.restlet.ext.jetty/src/org/restlet/ext/jetty/JettyServerHelper.java

@@ -32,7 +32,6 @@
 
 import javax.servlet.ServletException;
 
-import org.eclipse.jetty.http.HttpGenerator;
 import org.eclipse.jetty.io.ArrayByteBufferPool;
 import org.eclipse.jetty.io.ByteBufferPool;
 import org.eclipse.jetty.server.ConnectionFactory;

Diff for: modules/org.restlet.ext.nio/src/org/restlet/ext/nio/internal/request/HttpInboundRequest.java

@@ -60,6 +60,7 @@
 import org.restlet.engine.header.WarningReader;
 import org.restlet.engine.security.AuthenticatorUtils;
 import org.restlet.engine.util.DateUtils;
+import org.restlet.engine.util.ReferenceUtils;
 import org.restlet.ext.nio.internal.connection.Connection;
 import org.restlet.util.Series;
 
@@ -746,16 +747,16 @@ public void setHeaders(Series<Header> headers) {
             } else {
                 // IPv6 address handling.
                 //
-                // Two possible cases, host == "[::1]:8182" --using the 8182
-                // port. host == "[::1]" ------ using the default port 80.
+                // Two possible cases:
+                // - host == "[::1]:8182" --using the 8182 port.
+                // - host == "[::1]" ------ using the default port 80.
                 //
                 // For IPv6 address, we use ']' to separate the domain and the
                 // port, because it's unique.
                 if (rightSquareBracketIndex + 1 < host.length()) {
                     // Using specified port
                     hostDomain = host.substring(0, rightSquareBracketIndex + 1);
-                    hostPort = Integer.valueOf(host
-                            .substring(rightSquareBracketIndex + 2));
+                    hostPort = Integer.valueOf(host.substring(rightSquareBracketIndex + 2));
                 } else if (rightSquareBracketIndex + 1 == host.length()) {
                     // Must be using default port 80,
                     hostDomain = host;
@@ -767,15 +768,11 @@ public void setHeaders(Series<Header> headers) {
                                 + hostDomain + ", hostPort: " + hostPort);
             }
         } else {
-            Protocol serverProtocol = getConnection().getHelper().getHelped()
-                    .getProtocols().get(0);
-
-            if (!Protocol.SIP.getSchemeName().equals(
-                    serverProtocol.getSchemeName())
-                    && !Protocol.SIPS.getSchemeName().equals(
-                            serverProtocol.getSchemeName())) {
-                Context.getCurrentLogger()
-                        .info("Couldn't find the mandatory \"Host\" HTTP header. Falling back to the IP address.");
+            Protocol serverProtocol = getConnection().getHelper().getHelped().getProtocols().get(0);
+
+            if (!Protocol.SIP.getSchemeName().equals(serverProtocol.getSchemeName())
+                    && !Protocol.SIPS.getSchemeName().equals(serverProtocol.getSchemeName())) {
+                Context.getCurrentLogger().info("Couldn't find the mandatory \"Host\" HTTP header. Falling back to the IP address.");
                 hostDomain = getConnection().getAddress();
                 hostPort = getConnection().getPort();
 
@@ -784,8 +781,7 @@ public void setHeaders(Series<Header> headers) {
                 }
 
                 if (hostPort == -1) {
-                    hostPort = getConnection().getHelper().getHelped()
-                            .getActualPort();
+                    hostPort = getConnection().getHelper().getHelped().getActualPort();
                 }
 
                 if (hostPort == -1) {
@@ -795,8 +791,7 @@ public void setHeaders(Series<Header> headers) {
         }
 
         // Set the host reference
-        Protocol protocol = getConnection().getHelper().getHelped()
-                .getProtocols().get(0);
+        Protocol protocol = getConnection().getHelper().getHelped().getProtocols().get(0);
         StringBuilder sb = new StringBuilder();
         sb.append(protocol.getSchemeName()).append("://");
         sb.append(hostDomain);
@@ -814,20 +809,18 @@ public void setHeaders(Series<Header> headers) {
             if (getResourceRef().isRelative()) {
                 // Take care of the "/" between the host part and the segments.
                 if (!resourceUri.startsWith("/")) {
-                    setResourceRef(new Reference(getHostRef().toString() + "/"
-                            + resourceUri));
+                    setResourceRef(new Reference(getHostRef().toString() + "/" + resourceUri));
                 } else {
-                    setResourceRef(new Reference(getHostRef().toString()
-                            + resourceUri));
+                    setResourceRef(new Reference(getHostRef().toString() + resourceUri));
                 }
             }
 
-            setOriginalRef(getResourceRef().getTargetRef());
+            setOriginalRef(ReferenceUtils.getOriginalRef(getResourceRef(), headers));
         }
 
         // Set the request date
-        String dateHeader = (getHeaders() == null) ? null : getHeaders()
-                .getFirstValue(HeaderConstants.HEADER_DATE, true);
+        String dateHeader = (getHeaders() == null) ? null : 
+            getHeaders().getFirstValue(HeaderConstants.HEADER_DATE, true);
         Date date = null;
         if (dateHeader != null) {
             date = DateUtils.parse(dateHeader);
@@ -840,8 +833,8 @@ public void setHeaders(Series<Header> headers) {
         setDate(date);
 
         // Set the max forwards
-        String maxForwardsHeader = (getHeaders() == null) ? null : getHeaders()
-                .getFirstValue(HeaderConstants.HEADER_MAX_FORWARDS, true);
+        String maxForwardsHeader = (getHeaders() == null) ? null : 
+            getHeaders().getFirstValue(HeaderConstants.HEADER_MAX_FORWARDS, true);
         if (maxForwardsHeader != null) {
             try {
                 setMaxForwards(Integer.parseInt(maxForwardsHeader));

Diff for: modules/org.restlet.ext.sip/src/org/restlet/ext/sip/internal/SipInboundRequest.java

@@ -58,6 +58,7 @@
 import org.restlet.engine.header.WarningReader;
 import org.restlet.engine.security.AuthenticatorUtils;
 import org.restlet.engine.util.DateUtils;
+import org.restlet.engine.util.ReferenceUtils;
 import org.restlet.ext.nio.internal.connection.Connection;
 import org.restlet.ext.nio.internal.request.InboundRequest;
 import org.restlet.ext.sip.Address;
@@ -1145,7 +1146,7 @@ public void setHeaders(Series<Header> headers) {
                 }
             }
 
-            setOriginalRef(getResourceRef().getTargetRef());
+            setOriginalRef(ReferenceUtils.getOriginalRef(getResourceRef(), headers));
         }
 
         // Set the request date

Diff for: modules/org.restlet.test/src/org/restlet/test/data/ReferenceTestCase.java

@@ -28,9 +28,13 @@
 import java.util.List;
 
 import org.restlet.data.Form;
+import org.restlet.data.Header;
 import org.restlet.data.Protocol;
 import org.restlet.data.Reference;
+import org.restlet.engine.header.HeaderConstants;
+import org.restlet.engine.util.ReferenceUtils;
 import org.restlet.test.RestletTestCase;
+import org.restlet.util.Series;
 
 /**
  * Test {@link org.restlet.data.Reference}.
@@ -199,6 +203,17 @@ public void testMatrix() {
         newForm.add("c", "4");
         assertEquals("a=1;b=2;c=4", newForm.getMatrixString());
     }
+    
+    public void testOriginalRef() {
+        Reference ref = new Reference("http://localhost/test");
+        Series<Header> headers = new Series<>(Header.class);
+        headers.add(HeaderConstants.HEADER_X_FORWARDED_PROTO, "HTTPS");
+        headers.add(HeaderConstants.HEADER_X_FORWARDED_PORT, "123");
+
+        Reference originalRef = ReferenceUtils.getOriginalRef(ref, headers);
+        assertEquals(originalRef.getSchemeProtocol(), Protocol.HTTPS);
+        assertEquals(originalRef.getHostPort(), 123);
+    }
 
     /**
      * Test the computation of parent references, for absolute and relative

Diff for: modules/org.restlet/src/org/restlet/engine/adapter/HttpRequest.java

@@ -41,6 +41,7 @@
 import org.restlet.data.Cookie;
 import org.restlet.data.Header;
 import org.restlet.data.Method;
+import org.restlet.data.Protocol;
 import org.restlet.data.Range;
 import org.restlet.data.RecipientInfo;
 import org.restlet.data.Reference;
@@ -58,6 +59,7 @@
 import org.restlet.engine.header.WarningReader;
 import org.restlet.engine.security.AuthenticatorUtils;
 import org.restlet.engine.util.DateUtils;
+import org.restlet.engine.util.ReferenceUtils;
 import org.restlet.representation.Representation;
 import org.restlet.util.Series;
 
@@ -164,8 +166,7 @@ public HttpRequest(Context context, ServerCall httpCall) {
         sb.append(httpCall.getProtocol().getSchemeName()).append("://");
         sb.append(httpCall.getHostDomain());
         if ((httpCall.getHostPort() != -1)
-                && (httpCall.getHostPort() != httpCall.getProtocol()
-                        .getDefaultPort())) {
+                && (httpCall.getHostPort() != httpCall.getProtocol().getDefaultPort())) {
             sb.append(':').append(httpCall.getHostPort());
         }
         setHostRef(sb.toString());
@@ -185,12 +186,11 @@ public HttpRequest(Context context, ServerCall httpCall) {
                 }
             }
 
-            setOriginalRef(getResourceRef().getTargetRef());
+            setOriginalRef(ReferenceUtils.getOriginalRef(getResourceRef(), httpCall.getRequestHeaders()));
         }
 
         // Set the request date
-        String dateHeader = httpCall.getRequestHeaders().getFirstValue(
-                HeaderConstants.HEADER_DATE, true);
+        String dateHeader = httpCall.getRequestHeaders().getFirstValue(HeaderConstants.HEADER_DATE, true);
         Date date = null;
         if (dateHeader != null) {
             date = DateUtils.parse(dateHeader);

Diff for: modules/org.restlet/src/org/restlet/engine/header/HeaderConstants.java

@@ -193,6 +193,11 @@ public final class HeaderConstants {
 
     public static final String HEADER_X_FORWARDED_FOR = "X-Forwarded-For";
 
+    public static final String HEADER_X_FORWARDED_PORT = "X-Forwarded-Port";
+    
+    public static final String HEADER_X_FORWARDED_PROTO = "X-Forwarded-Proto";
+    
+
     public static final String HEADER_X_HTTP_METHOD_OVERRIDE = "X-HTTP-Method-Override";
 
     // -------------------------

Diff for: modules/org.restlet/src/org/restlet/engine/local/DirectoryServerResource.java

@@ -186,16 +186,16 @@ public void doInit() throws ResourceException {
         }
 
         // Update the member variables
-        this.relativePart = getReference().getRemainingPart(false, false);
         setNegotiated(this.directory.isNegotiatingContent());
-
-        // Restore the original URI in case the call has been tunneled.
-        if ((getApplication() != null)
-                && getApplication().getTunnelService().isExtensionsTunnel()) {
-            this.originalRef = getOriginalRef();
-
-            if (this.originalRef != null) {
-                this.originalRef.setBaseRef(getReference().getBaseRef());
+        this.relativePart = getReference().getRemainingPart(false, false);
+        this.originalRef = getOriginalRef();
+        if (this.originalRef != null) {
+            // Restore the original URI in case the call has been tunneled.
+            if ((getApplication() != null)
+                    && getApplication().getTunnelService().isExtensionsTunnel()) {
+                Reference originalBaseRef = new Reference(this.originalRef);
+                originalBaseRef.setPath(getReference().getBaseRef().getPath());
+                this.originalRef.setBaseRef(originalBaseRef);
                 this.relativePart = this.originalRef.getRemainingPart();
             }
         }
@@ -729,12 +729,11 @@ public Representation handle() {
         }
 
         // detected a directory, but the current reference lacks the trailing "/", let's redirect.
-        Reference directoryReference = (this.originalRef != null) ? this.originalRef : getReference();
-
+        Reference directoryReference = (this.originalRef != null) ? this.originalRef : getReference().getTargetRef();
         if (directoryReference.hasQuery()) {
-            redirectSeeOther(directoryReference.getPath() + "/?" + directoryReference.getQuery());
+            redirectSeeOther(directoryReference.toString(false, false) + "/?" + directoryReference.getQuery());
         } else {
-            redirectSeeOther(directoryReference.getPath() + "/");
+            redirectSeeOther(directoryReference.toString(false, false) + "/");
         }
 
         return null;

Diff for: modules/org.restlet/src/org/restlet/engine/util/ReferenceUtils.java

@@ -25,8 +25,12 @@
 package org.restlet.engine.util;
 
 import org.restlet.Request;
+import org.restlet.data.Header;
+import org.restlet.data.Protocol;
 import org.restlet.data.Reference;
+import org.restlet.engine.header.HeaderConstants;
 import org.restlet.engine.security.AuthenticatorUtils;
+import org.restlet.util.Series;
 
 /**
  * Utilities related to URI references.
@@ -45,8 +49,8 @@ public class ReferenceUtils {
      * @return The absolute request URI.
      */
     public static Reference update(Reference resourceRef, Request request) {
-        Reference result = resourceRef.isAbsolute() ? resourceRef : resourceRef
-                .getTargetRef();
+        Reference result = resourceRef.isAbsolute() ? resourceRef :
+                resourceRef.getTargetRef();
 
         // Optionally update the request before formatting its URI
         result = AuthenticatorUtils.updateReference(result,
@@ -89,6 +93,35 @@ public static String format(Reference resourceRef, boolean isProxied,
         return result;
     }
 
+    /**
+     * Returns the original reference especially by detecting potential proxy forwardings.
+     * 
+     * @param resourceRef
+     *            The request's resource reference.
+     * @param headers
+     *            The set of request's headers.
+     * @return The original reference.
+     */
+    public static Reference getOriginalRef(Reference resourceRef, Series<Header> headers) {
+        Reference originalRef = resourceRef.getTargetRef();
+
+        if (headers == null) {
+            return originalRef;
+        }
+        
+        String value = headers.getFirstValue(HeaderConstants.HEADER_X_FORWARDED_PORT);
+        if (value != null) {
+            originalRef.setHostPort(Integer.parseInt(value));
+        }
+
+        value = headers.getFirstValue(HeaderConstants.HEADER_X_FORWARDED_PROTO);
+        if (value != null) {
+            originalRef.setScheme(value);
+        }
+
+        return originalRef;
+    }
+
     /**
      * Constructor.
      */

Diff for: modules/org.restlet/src/org/restlet/engine/util/TemplateDispatcher.java

@@ -84,7 +84,7 @@ public int beforeHandle(Request request, Response response) {
             request.setResourceRef(template.format(request, response));
         }
 
-        request.setOriginalRef(request.getResourceRef().getTargetRef());
+        request.setOriginalRef(ReferenceUtils.getOriginalRef(request.getResourceRef(), request.getHeaders()));
         return CONTINUE;
     }