michael@0: /* michael@0: * ==================================================================== michael@0: * Licensed to the Apache Software Foundation (ASF) under one michael@0: * or more contributor license agreements. See the NOTICE file michael@0: * distributed with this work for additional information michael@0: * regarding copyright ownership. The ASF licenses this file michael@0: * to you under the Apache License, Version 2.0 (the michael@0: * "License"); you may not use this file except in compliance michael@0: * with the License. You may obtain a copy of the License at michael@0: * michael@0: * http://www.apache.org/licenses/LICENSE-2.0 michael@0: * michael@0: * Unless required by applicable law or agreed to in writing, michael@0: * software distributed under the License is distributed on an michael@0: * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY michael@0: * KIND, either express or implied. See the License for the michael@0: * specific language governing permissions and limitations michael@0: * under the License. michael@0: * ==================================================================== michael@0: * michael@0: * This software consists of voluntary contributions made by many michael@0: * individuals on behalf of the Apache Software Foundation. For more michael@0: * information on the Apache Software Foundation, please see michael@0: * . michael@0: * michael@0: */ michael@0: package ch.boye.httpclientandroidlib.impl.cookie; michael@0: michael@0: import ch.boye.httpclientandroidlib.annotation.Immutable; michael@0: michael@0: import ch.boye.httpclientandroidlib.cookie.Cookie; michael@0: import ch.boye.httpclientandroidlib.cookie.CookieAttributeHandler; michael@0: import ch.boye.httpclientandroidlib.cookie.CookieOrigin; michael@0: import ch.boye.httpclientandroidlib.cookie.CookieRestrictionViolationException; michael@0: import ch.boye.httpclientandroidlib.cookie.MalformedCookieException; michael@0: import ch.boye.httpclientandroidlib.cookie.SetCookie; michael@0: michael@0: /** michael@0: * michael@0: * @since 4.0 michael@0: */ michael@0: @Immutable michael@0: public class BasicDomainHandler implements CookieAttributeHandler { michael@0: michael@0: public BasicDomainHandler() { michael@0: super(); michael@0: } michael@0: michael@0: public void parse(final SetCookie cookie, final String value) michael@0: throws MalformedCookieException { michael@0: if (cookie == null) { michael@0: throw new IllegalArgumentException("Cookie may not be null"); michael@0: } michael@0: if (value == null) { michael@0: throw new MalformedCookieException("Missing value for domain attribute"); michael@0: } michael@0: if (value.trim().length() == 0) { michael@0: throw new MalformedCookieException("Blank value for domain attribute"); michael@0: } michael@0: cookie.setDomain(value); michael@0: } michael@0: michael@0: public void validate(final Cookie cookie, final CookieOrigin origin) michael@0: throws MalformedCookieException { michael@0: if (cookie == null) { michael@0: throw new IllegalArgumentException("Cookie may not be null"); michael@0: } michael@0: if (origin == null) { michael@0: throw new IllegalArgumentException("Cookie origin may not be null"); michael@0: } michael@0: // Validate the cookies domain attribute. NOTE: Domains without michael@0: // any dots are allowed to support hosts on private LANs that don't michael@0: // have DNS names. Since they have no dots, to domain-match the michael@0: // request-host and domain must be identical for the cookie to sent michael@0: // back to the origin-server. michael@0: String host = origin.getHost(); michael@0: String domain = cookie.getDomain(); michael@0: if (domain == null) { michael@0: throw new CookieRestrictionViolationException("Cookie domain may not be null"); michael@0: } michael@0: if (host.contains(".")) { michael@0: // Not required to have at least two dots. RFC 2965. michael@0: // A Set-Cookie2 with Domain=ajax.com will be accepted. michael@0: michael@0: // domain must match host michael@0: if (!host.endsWith(domain)) { michael@0: if (domain.startsWith(".")) { michael@0: domain = domain.substring(1, domain.length()); michael@0: } michael@0: if (!host.equals(domain)) { michael@0: throw new CookieRestrictionViolationException( michael@0: "Illegal domain attribute \"" + domain michael@0: + "\". Domain of origin: \"" + host + "\""); michael@0: } michael@0: } michael@0: } else { michael@0: if (!host.equals(domain)) { michael@0: throw new CookieRestrictionViolationException( michael@0: "Illegal domain attribute \"" + domain michael@0: + "\". Domain of origin: \"" + host + "\""); michael@0: } michael@0: } michael@0: } michael@0: michael@0: public boolean match(final Cookie cookie, final CookieOrigin origin) { michael@0: if (cookie == null) { michael@0: throw new IllegalArgumentException("Cookie may not be null"); michael@0: } michael@0: if (origin == null) { michael@0: throw new IllegalArgumentException("Cookie origin may not be null"); michael@0: } michael@0: String host = origin.getHost(); michael@0: String domain = cookie.getDomain(); michael@0: if (domain == null) { michael@0: return false; michael@0: } michael@0: if (host.equals(domain)) { michael@0: return true; michael@0: } michael@0: if (!domain.startsWith(".")) { michael@0: domain = '.' + domain; michael@0: } michael@0: return host.endsWith(domain) || host.equals(domain.substring(1)); michael@0: } michael@0: michael@0: }