Logo Search packages:      
Sourcecode: paros version File versions  Download package

ProxyListenerLog.java

/*
 * Created on Jun 17, 2004
 *
 * Paros and its related class files.
 * 
 * Paros is an HTTP/HTTPS proxy for assessing web application security.
 * Copyright (C) 2003-2004 Chinotec Technologies Company
 * 
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the Clarified Artistic License
 * as published by the Free Software Foundation.
 * 
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * Clarified Artistic License for more details.
 * 
 * You should have received a copy of the Clarified Artistic License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
 */
package org.parosproxy.paros.extension.history;
 
//import org.apache.commons.httpclient.HttpMethod;
//import org.apache.commons.httpclient.methods.EntityEnclosingMethod;
//import org.apache.commons.httpclient.methods.PostMethod;

import java.awt.EventQueue;
import java.util.regex.Pattern;

import org.parosproxy.paros.core.proxy.ProxyListener;
import org.parosproxy.paros.extension.ViewDelegate;
import org.parosproxy.paros.model.HistoryList;
import org.parosproxy.paros.model.HistoryReference;
import org.parosproxy.paros.model.Model;
import org.parosproxy.paros.network.HttpHeader;
import org.parosproxy.paros.network.HttpMessage;
import org.parosproxy.paros.network.HttpStatusCode;


/**
 *
 * To change the template for this generated type comment go to
 * Window - Preferences - Java - Code Generation - Code and Comments
 */
00046 public class ProxyListenerLog implements ProxyListener {
    
      private ViewDelegate view = null;
      private Model model = null;
      private HistoryList historyList = null;
      private Pattern pattern = null;
      private boolean isFirstAccess = true;
      
      public ProxyListenerLog(Model model, ViewDelegate view, HistoryList historyList) {
          this.model = model;
          this.view = view;
          this.historyList = historyList;
      }

      public void setFilter(String filter) {
          if (filter == null || filter.equals("")) {
              pattern = null;
          } else {
              pattern = Pattern.compile(filter, Pattern.CASE_INSENSITIVE | Pattern.MULTILINE);
          }
      }
      
      /* (non-Javadoc)
       * @see com.proofsecure.paros.proxy.ProxyHandler#onHttpRequestReceived(org.apache.commons.httpclient.HttpMethod)
       */
      public void onHttpRequestSend(HttpMessage msg) {
//        if (msg.getRequestHeader().isImage()) {
//            return;
//        }
          
          HttpMessage existingMsg = model.getSession().getSiteTree().pollPath(msg);

          // check if a msg of the same type exist
          if (existingMsg != null && !existingMsg.getResponseHeader().isEmpty()) {
              if (HttpStatusCode.isSuccess(existingMsg.getResponseHeader().getStatusCode())) {
                  // exist, no modification necessary
                  return;
              }
          }
        
          // if not, make sure a new copy will be obtained
          if (msg.getRequestHeader().getHeader(HttpHeader.IF_MODIFIED_SINCE) != null) {
              msg.getRequestHeader().setHeader(HttpHeader.IF_MODIFIED_SINCE, null);
          }
          
          if (msg.getRequestHeader().getHeader(HttpHeader.IF_NONE_MATCH) != null) {
              msg.getRequestHeader().setHeader(HttpHeader.IF_NONE_MATCH, null);
          }

      }
      
      /* (non-Javadoc)
       * @see com.proofsecure.paros.proxy.ProxyHandler#onHttpResponseSend(org.apache.commons.httpclient.HttpMethod, com.proofsecure.paros.proxy.HttpMessage)
       */
      public void onHttpResponseReceive(final HttpMessage msg) {

        int type = HistoryReference.TYPE_MANUAL;
            if (isSkipImage(msg.getRequestHeader()) || isSkipImage(msg.getResponseHeader())) {
            if (msg.getResponseHeader().getStatusCode() == HttpStatusCode.OK) {
                type = HistoryReference.TYPE_HIDDEN;
            } else {
                return;
            }
            }
            final int finalType = type;
            Thread t = new Thread(new Runnable() {
                public void run() {
                    addHistory(msg, finalType);
                }
            });
            t.start();
                        

      }
          
    public boolean isSkipImage(HttpHeader header) {
            if (header.isImage() && !model.getOptionsParam().getViewParam().isProcessImages()) {
                  return true;
            }
                  
            return false;
                        
      }
    
    private void addHistory(HttpMessage msg, int type) {

        
        HistoryReference historyRef = null;

        try {
            historyRef = new HistoryReference(model.getSession(), type, msg);
        } catch (Exception e) {
            return;
        }

        if (type != HistoryReference.TYPE_MANUAL && type != HistoryReference.TYPE_HIDDEN) {
            return;
        }

        // add history to list (log panel).  Must use event queue because this proxylistener may not be run from event queue.
        synchronized(historyList) {
            if (type == HistoryReference.TYPE_MANUAL) {
                
                if (pattern == null) {
                    addHistoryInEventQueue(historyRef);
                } else {
                    StringBuffer sb = new StringBuffer();
                    sb.append(msg.getRequestHeader().toString());
                    sb.append(msg.getRequestBody().toString());
                    if (!msg.getResponseHeader().isEmpty()) {
                        sb.append(msg.getResponseHeader().toString());
                        sb.append(msg.getResponseBody().toString());
                        
                    }
                    if (pattern.matcher(sb.toString()).find()) {
                        addHistoryInEventQueue(historyRef);
                    }
                }
            }
        }

        // add history to site panel.  Must use event queue because this proxylistener may not be run from event queue.
        final HistoryReference ref = historyRef;
        final HttpMessage finalMsg = msg;
        if (EventQueue.isDispatchThread()) {
            model.getSession().getSiteTree().addPath(ref, msg);
            if (isFirstAccess) {
                isFirstAccess = false;
                view.getSiteTreePanel().expandRoot();
            }
            
        } else {
            try {
                EventQueue.invokeAndWait(new Runnable() {
                    public void run() {
                        model.getSession().getSiteTree().addPath(ref, finalMsg);
                        if (isFirstAccess) {
                            isFirstAccess = false;
                            view.getSiteTreePanel().expandRoot();
                        }
                    }
                });
            } catch (Exception e) {
            }
            
            
        }
    }
    
    private void addHistoryInEventQueue(final HistoryReference ref) {
        if (EventQueue.isDispatchThread()) {
            historyList.addElement(ref);
        } else {
            try {
                EventQueue.invokeAndWait(new Runnable() {
                    public void run() {
                        historyList.addElement(ref);
                    }
                    
                });
            } catch (Exception e) {
            }
        }
    }
}

Generated by  Doxygen 1.6.0   Back to index