Skip to content

Commit

Permalink
For #3336: send 405 status code for services and use constants
Browse files Browse the repository at this point in the history
  • Loading branch information
@ebruchez
ebruchez committed Nov 17, 2017
1 parent e7a4e1c commit 0f76812
Show file tree
Hide file tree
Showing 2 changed files with 16 additions and 7 deletions.
21 changes: 14 additions & 7 deletions src/main/scala/org/orbeon/oxf/controller/PageFlowControllerProcessor.scala
View file
Expand Up @@ -103,10 +103,14 @@ class PageFlowControllerProcessor extends ProcessorImpl with Logging {
def logUnauthorized(e: HttpStatusCodeException) =
info("unauthorized", logParams :+ ("status-code" e.code.toString))

def logMethodNotAllowed() =
info("method not allowed", logParams)

// For services: only log and set response code
def sendError(t: Throwable) = { logError(t); ec.getResponse.setStatus(500) }
def sendNotFound(t: Option[Throwable]) = { logNotFound(t); ec.getResponse.setStatus(404) }
def sendUnauthorized(e: HttpStatusCodeException) = { logUnauthorized(e); ec.getResponse.setStatus(e.code) }
def sendError(t: Throwable) = { logError(t); ec.getResponse.setStatus(StatusCode.InternalServerError) }
def sendNotFound(t: Option[Throwable]) = { logNotFound(t); ec.getResponse.setStatus(StatusCode.NotFound) }
def sendUnauthorized(e: HttpStatusCodeException) = { logUnauthorized(e); ec.getResponse.setStatus(e.code) }
def sendMethodNotAllowed() = { logMethodNotAllowed(); ec.getResponse.setStatus(StatusCode.MethodNotAllowed) }

// For pages: log and try to run routes
def runErrorRoute(t: Throwable, log: Boolean = true): Unit = {
Expand All @@ -116,7 +120,7 @@ class PageFlowControllerProcessor extends ProcessorImpl with Logging {
pageFlow.errorRoute match {
case Some(errorRoute)
// Run the error route
ec.getResponse.setStatus(500)
ec.getResponse.setStatus(StatusCode.InternalServerError)
if (ProcessorService.showExceptions)
pc.setAttribute(ProcessorService.Throwable, t)
errorRoute.process(pc, ec, MatchResult(matches = false), mustAuthorize = false)
Expand All @@ -133,7 +137,7 @@ class PageFlowControllerProcessor extends ProcessorImpl with Logging {
pageFlow.notFoundRoute match {
case Some(notFoundRoute)
// Run the not found route
ec.getResponse.setStatus(404)
ec.getResponse.setStatus(StatusCode.NotFound)
try notFoundRoute.process(pc, ec, MatchResult(matches = false), mustAuthorize = false)
catch { case NonFatal(t) runErrorRoute(t) }
case None
Expand Down Expand Up @@ -180,16 +184,19 @@ class PageFlowControllerProcessor extends ProcessorImpl with Logging {
ec.getResponse.sendRedirect(e.location, e.serverSide, e.exitPortal)
// We don't have a "deleted" route at this point, and thus run the not found route when we
// found a "resource" to be deleted
case e: HttpStatusCodeException if Set(404, 410)(e.code)
case e: HttpStatusCodeException if Set(StatusCode.NotFound, StatusCode.Gone)(e.code)
if (route.isPage) runNotFoundRoute(Some(t)) else sendNotFound(Some(t))
case e: HttpStatusCodeException if Set(401, 403)(e.code)
case e: HttpStatusCodeException if Set(StatusCode.Unauthorized, StatusCode.Forbidden)(e.code)
if (route.isPage) runUnauthorizedRoute(e) else sendUnauthorized(e)
case e: ResourceNotFoundException
if (route.isPage) runNotFoundRoute(Some(t)) else sendNotFound(Some(t))
case e
if (route.isPage) runErrorRoute(t) else sendError(t)
}
}
case Some((route: PageOrServiceRoute, _)) if route.isService && ! route.routeElement.supportedMethods(request.getMethod)
// Method not allowed on service
sendMethodNotAllowed()
case _
// Handle "not found"
runNotFoundRoute(None)
Expand Down
2 changes: 2 additions & 0 deletions src/main/scala/org/orbeon/oxf/http/definitions.scala
View file
Expand Up @@ -200,7 +200,9 @@ trait HttpResponse {
object StatusCode {
val Ok = 200
val NotModified = 304
val Unauthorized = 401
val Forbidden = 403
val MethodNotAllowed = 405
val BadRequest = 400
val NotFound = 404
val Conflict = 409
Expand Down

0 comments on commit 0f76812

Please sign in to comment.