Headers.java

package com.renomad.minum.web;

import com.renomad.minum.logging.ILogger;
import com.renomad.minum.security.ForbiddenUseException;

import java.io.IOException;
import java.io.InputStream;
import java.util.*;

/**
 * Details extracted from the headers.  For example,
 * is this a keep-alive connection? what is the content-length,
 * and so on.
 * Here is some detail from <a href="https://en.wikipedia.org/wiki/List_of_HTTP_header_fields">Wikipedia</a> on the subject:
 * <p>
 * HTTP header fields are a list of strings sent and received by both
 * the client program and server on every HTTP request and response. These
 * headers are usually invisible to the end-user and are only processed or
 * logged by the server and client applications. They define how information
 * sent/received through the connection are encoded (as in Content-Encoding),
 * the session verification and identification of the client (as in browser
 * cookies, IP address, user-agent) or their anonymity thereof (VPN or
 * proxy masking, user-agent spoofing), how the server should handle data
 * (as in Do-Not-Track), the age (the time it has resided in a shared cache)
 * of the document being downloaded, amongst others.
 * </p>
 */
public final class Headers{

    public static final Headers EMPTY = new Headers(List.of(), null);
    private static final int MAX_HEADERS_COUNT = 70;
    private Integer contentLength;

    /**
     * Each line of the headers is read into this data structure
     */
    private final List<String> headerStrings;
    private final Map<String, List<String>> headersMap;
    private final ILogger logger;

    public Headers(List<String> headerStrings, ILogger logger) {
        this.headerStrings = new ArrayList<>(headerStrings);
        this.headersMap = Collections.unmodifiableMap(extractHeadersToMap(headerStrings));
        this.logger = logger;
    }

    public Headers(List<String> headerStrings) { this(headerStrings, null); }

    public List<String> getHeaderStrings() {
        return new ArrayList<>(headerStrings);
    }

    /**
     * Obtain any desired header by looking it up in this map.  All keys
     * are made lowercase.
     */
    static Map<String, List<String>> extractHeadersToMap(List<String> headerStrings) {
        var result = new HashMap<String, List<String>>();
        for (var h : headerStrings) {
            var indexOfFirstColon = h.indexOf(":");

            // if the header is malformed, just move on
            if (indexOfFirstColon <= 0) continue;

            String key = h.substring(0, indexOfFirstColon).toLowerCase(Locale.ROOT);
            String value = h.substring(indexOfFirstColon+1).trim();

            if (result.containsKey(key)) {
                var currentValue = result.get(key);
                List<String> newList = new ArrayList<>();
                newList.add(value);
                newList.addAll(currentValue);
                result.put(key, newList);
            } else {
                result.put(key, List.of(value));
            }

        }
        return result;
    }

    /**
     * Gets the one content-type header, or returns an empty string
     */
    public String contentType() {
        // find the header that starts with content-type
        List<String> cts = Objects.requireNonNullElse(headersMap.get("content-type"), List.of());
        if (cts.size() > 1) {
            cts.sort(Comparator.naturalOrder());
            throw new WebServerException("The number of content-type headers must be exactly zero or one.  Received: " + cts);
        }
        if (!cts.isEmpty()) {
            return cts.getFirst();
        }

        // if we don't find a content-type header, or if we don't find one we can handle, return an empty string.
        return "";
    }

    /**
     * Given the list of headers, find the one with the length of the
     * body of the POST and return that value as an integer. If
     * we do not find a content length, return -1.
     */
    public int contentLength() {
        // if we have a saved value for content length, use that
        if (contentLength != null) return contentLength;

        List<String> cl = Objects.requireNonNullElse(headersMap.get("content-length"), List.of());
        if (cl.isEmpty()) {
            contentLength = -1;
        } else if (cl.size() > 1) {
            if (logger != null) logger.logDebug(() -> "Did not receive a valid content length.  Setting length to -1.  Received: " + cl);
            contentLength = -1;
        } else {
            contentLength = Integer.parseInt(cl.getFirst());
            if (contentLength < 0) {
                if (logger != null) logger.logDebug(() -> "Content length cannot be negative.  Setting length to -1.  Received: " + contentLength);
                contentLength = -1;
            }
        }
        return contentLength;
    }

    /**
     * Indicates whether the headers in this request
     * have a Connection: Keep-Alive
     */
    public boolean hasKeepAlive() {
        List<String> connectionHeader = headersMap.get("connection");
        if (connectionHeader == null) return false;
        return connectionHeader.stream().anyMatch(x -> x.toLowerCase(Locale.ROOT).contains("keep-alive"));
    }

    /**
     * Indicates whether the headers in this request
     * have a Connection: close
     */
    public boolean hasConnectionClose() {
        List<String> connectionHeader = headersMap.get("connection");
        if (connectionHeader == null) return false;
        return connectionHeader.stream().anyMatch(x -> x.toLowerCase(Locale.ROOT).contains("close"));
    }

    /**
     * Loop through the lines of header in the HTTP message
     */
    static List<String> getAllHeaders(InputStream is, IInputStreamUtils inputStreamUtils) {
        // we'll give the list an initial size, since in most cases we're going to have headers.
        // 10 is just an arbitrary number, seems about right.
        List<String> headers = new ArrayList<>(10);
        for (int i = 0;; i++) {
            if (i >=MAX_HEADERS_COUNT) {
                throw new ForbiddenUseException("User tried sending too many headers.  max: " + MAX_HEADERS_COUNT);
            }
            String value;
            try {
                value = inputStreamUtils.readLine(is);
            } catch (IOException e) {
                throw new WebServerException(e);
            }
            if (value != null && value.isBlank()) {
                break;
            } else if (value == null) {
                return headers;
            } else {
                headers.add(value);
            }
        }
        return headers;
    }

    /**
     * Allows a user to obtain any header value by its key, case-insensitively
     * @return a {@link List} of string values, or null
     * if no header was found.
     */
    public List<String> valueByKey(String key) {
        return headersMap.get(key.toLowerCase(Locale.ROOT));
    }

    @Override
    public boolean equals(Object o) {
        if (o == null || getClass() != o.getClass()) return false;
        Headers headers = (Headers) o;
        return Objects.equals(contentLength, headers.contentLength) && Objects.equals(headerStrings, headers.headerStrings) && Objects.equals(headersMap, headers.headersMap) && Objects.equals(logger, headers.logger);
    }

    @Override
    public int hashCode() {
        return Objects.hash(contentLength, headerStrings, headersMap, logger);
    }

    @Override
    public String toString() {
        return "Headers{" +
                "headerStrings=" + headerStrings +
                '}';
    }
}































Active mutators

CONDITIONALS_BOUNDARY
EMPTY_RETURNS
FALSE_RETURNS
INCREMENTS
INVERT_NEGS
MATH
NEGATE_CONDITIONALS
NULL_RETURNS
PRIMITIVE_RETURNS
TRUE_RETURNS
VOID_METHOD_CALLS

Tests examined

com.renomad.minum.web.RangeTests.test_MultipleRangeHeaders(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_NoRange(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_InvalidPattern_tooLongLeft(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_InvalidPattern(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_InvalidPattern_tooLongRight(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_MultipleRange(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_InvalidValueForRight(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_DetermineLengthFromRangeHeader_EdgeCase_NegativeNumbers(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_InvalidValueForLeft(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_DetermineLengthFromRangeHeader_EdgeCase_MissingSecondPart_2(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_DetermineLengthFromRangeHeader_EdgeCase_MissingSecondPart(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_DetermineLengthFromRangeHeader_EdgeCase_FirstLarger(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_DetermineLengthFromRangeHeader_EdgeCase_MissingBothParts(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_DetermineLengthFromRangeHeader_EdgeCase_MissingFirstPart(com.renomad.minum.web.RangeTests) (0 ms)
com.renomad.minum.web.RangeTests.test_DetermineLengthFromRangeHeader(com.renomad.minum.web.RangeTests) (1 ms)
com.renomad.minum.web.ResponseTests.testResponse_EdgeCase_BadPathRequested(com.renomad.minum.web.ResponseTests) (1 ms)
com.renomad.minum.web.WebFrameworkTests.test_ExtraMimeMappings(com.renomad.minum.web.WebFrameworkTests) (0 ms)
com.renomad.minum.web.WebFrameworkTests.test_ExtraMimeMappings_Null(com.renomad.minum.web.WebFrameworkTests) (0 ms)
com.renomad.minum.web.WebFrameworkTests.test_ExtraMimeMappings_NoValues(com.renomad.minum.web.WebFrameworkTests) (0 ms)
com.renomad.minum.web.WebFrameworkTests.test_ExtraMimeMappings_BadSyntax(com.renomad.minum.web.WebFrameworkTests) (1 ms)
com.renomad.minum.web.WebFrameworkTests.test_compressIfRequested(com.renomad.minum.web.WebFrameworkTests) (1 ms)
com.renomad.minum.web.WebFrameworkTests.test_ReadFile_Edge_ForwardSlashes(com.renomad.minum.web.WebFrameworkTests) (1 ms)
com.renomad.minum.web.WebFrameworkTests.test_readStaticFile_Edge_Colon(com.renomad.minum.web.WebFrameworkTests) (1 ms)
com.renomad.minum.web.WebFrameworkTests.test_readStaticFile_Edge_OutsideDirectory(com.renomad.minum.web.WebFrameworkTests) (1 ms)
com.renomad.minum.web.WebFrameworkTests.test_readStaticFile_Edge_CurrentDirectory(com.renomad.minum.web.WebFrameworkTests) (2 ms)
com.renomad.minum.web.WebFrameworkTests.test_readStaticFile_EdgeCase(com.renomad.minum.web.WebFrameworkTests) (2 ms)
com.renomad.minum.web.WebFrameworkTests.test_readStaticFile_Edge_Directory(com.renomad.minum.web.WebFrameworkTests) (2 ms)
com.renomad.minum.web.WebFrameworkTests.test_readStaticFile_IOException(com.renomad.minum.web.WebFrameworkTests) (3 ms)
com.renomad.minum.web.WebFrameworkTests.test_readStaticFile_HTML(com.renomad.minum.web.WebFrameworkTests) (2 ms)
com.renomad.minum.web.WebFrameworkTests.test_readStaticFile_CSS(com.renomad.minum.web.WebFrameworkTests) (2 ms)
com.renomad.minum.web.WebFrameworkTests.test_Edge_ApplicationOctetStream(com.renomad.minum.web.WebFrameworkTests) (3 ms)
com.renomad.minum.web.WebFrameworkTests.test_readStaticFile_JS(com.renomad.minum.web.WebFrameworkTests) (2 ms)
com.renomad.minum.web.RequestTests.testEndOfStreamWhileReadingStreamingMultipartPartition(com.renomad.minum.web.RequestTests) (13 ms)
com.renomad.minum.web.HeadersTests.test_extractHeadersToMap_EdgeCase_Malformed(com.renomad.minum.web.HeadersTests) (30 ms)
com.renomad.minum.web.WebFrameworkTests.test_HandleForbiddenUse(com.renomad.minum.web.WebFrameworkTests) (23 ms)
com.renomad.minum.web.HeadersTests.test_HasConnectionClose(com.renomad.minum.web.HeadersTests) (30 ms)
com.renomad.minum.web.HeadersTests.test_HasKeepAlive(com.renomad.minum.web.HeadersTests) (30 ms)
com.renomad.minum.web.HeadersTests.test_ContentType_HappyPath(com.renomad.minum.web.HeadersTests) (31 ms)
com.renomad.minum.web.HeadersTests.test_ContentLength_Negative_NoLogging(com.renomad.minum.web.HeadersTests) (30 ms)
com.renomad.minum.web.WebFrameworkTests.testReadTimedOut(com.renomad.minum.web.WebFrameworkTests) (31 ms)
com.renomad.minum.web.HeadersTests.test_ContentType_TooMany(com.renomad.minum.web.HeadersTests) (29 ms)
com.renomad.minum.web.HeadersTests.test_ContentLength_TooMany_NoLogging(com.renomad.minum.web.HeadersTests) (30 ms)
com.renomad.minum.web.RequestTests.testRequest_ExpectComplaintAfterBegunReading_6(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.test_GetSocketWrapper(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.testRequest_ExpectComplaintAfterBegunReading_8(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.testRequest_ExpectComplaintAfterBegunReading_5(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.testRequest_ExpectComplaintAfterBegunReading_2(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.testRequest_ExpectComplaintAfterBegunReading_7(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.testRequest_ExpectComplaintAfterBegunReading_9(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.testRequest_ExpectComplaintAfterBegunReading_1(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.test_Request_ToString(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.test_Request_getMultipartForm_EdgeCase_UrlEncodedData(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.test_Request_getUrlEncoded_EdgeCase_MultipartData(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.test_Request_getMultipartIterable_EdgeCase_No_Valid_Boundary_2(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.testSimplerRequest(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.testSimplerRequest3(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.test_Request_getMultipartIterable_EdgeCase_No_Valid_Boundary(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.testRequest_ExpectComplaintAfterBegunReading_4(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.testSimplerRequest2(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.testRequest_ExpectComplaintAfterBegunReading_10(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.testRequest_ExpectComplaintAfterBegunReading_13(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.testRequest_ExpectComplaintAfterBegunReading_3(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.test_Request_BodyTooLong(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.testRequest_ExpectComplaintAfterBegunReading_12(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.testRequest_ExpectComplaintAfterBegunReading_11(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.test_Request_getUrlEncoded_EdgeCase_Empty(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.test_Request_getMultipartIterable_EdgeCase_Empty(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.test_Request_getUrlEncoded_EdgeCase_ComplaintAfterGetBody(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.test_Request_getUrlEncoded_EdgeCase_PlayingWithClose(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.test_Request_getMultipartIterable_EdgeCase_No_Valid_Boundary_3(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.test_Request_getUrlEncoded_EdgeCase_ContentLengthTooLong(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.test_Request_ImproperlyFormedUrlEncoded(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.test_Request_ImproperlyFormedMultipart(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.test_Request_getUrlEncoded_EdgeCase_ContentLengthNotLongEnough(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.testOnlyHavingBoundaryValue(com.renomad.minum.web.RequestTests) (30 ms)
com.renomad.minum.web.RequestTests.testEndOfStreamWhileReadingStreamingMultipartPartition2(com.renomad.minum.web.RequestTests) (33 ms)
com.renomad.minum.web.RequestTests.testReadingAStreamingUrlEncoded(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.test_Request_getMultipartForm_EdgeCase_PlayingWithClose(com.renomad.minum.web.RequestTests) (29 ms)
com.renomad.minum.web.RequestTests.testReadingEmptyStreamingMultipart(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.test_Request_Multipart_ImproperlyFormed_CorrectContentLength(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.testReadingStreamingMultipart_AlternateCase_UsingBuffer(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.testReadingStreamingMultipart(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.RequestTests.test_Request_getMultipartForm_EdgeCase_ComplaintAfterGetBody(com.renomad.minum.web.RequestTests) (31 ms)
com.renomad.minum.web.HeadersTests.test_ContentLength_TooMany(com.renomad.minum.web.HeadersTests) (61 ms)
com.renomad.minum.web.HeadersTests.test_ContentLength_Negative(com.renomad.minum.web.HeadersTests) (62 ms)
com.renomad.minum.web.RequestTests.test_Request_ImproperlyFormedUrlEncoded_NoKey(com.renomad.minum.web.RequestTests) (61 ms)
com.renomad.minum.web.RequestTests.test_Request_UrlEncoded_IOException(com.renomad.minum.web.RequestTests) (62 ms)
com.renomad.minum.web.RequestTests.test_Request_UrlEncoded_ExcessiveCountOfKeyValuePairs(com.renomad.minum.web.RequestTests) (61 ms)
com.renomad.minum.web.RequestTests.test_Request_Multipart_ImproperlyFormed(com.renomad.minum.web.RequestTests) (61 ms)
com.renomad.minum.web.RequestTests.test_Request_Multipart_IOException_ReadingBody(com.renomad.minum.web.RequestTests) (62 ms)
com.renomad.minum.web.RequestTests.test_Request_Multipart_ExcessiveCountOfPartitions(com.renomad.minum.web.RequestTests) (79 ms)
com.renomad.minum.web.RequestTests.equalsTest(com.renomad.minum.web.RequestTests) (124 ms)
com.renomad.minum.web.WebFrameworkTests.testHandleIoException(com.renomad.minum.web.WebFrameworkTests) (126 ms)
com.renomad.minum.web.BodyProcessorTests (225 ms)
com.renomad.minum.web.WebPerformanceTests.test2(com.renomad.minum.web.WebPerformanceTests) (612 ms)
com.renomad.minum.web.WebPerformanceTests.test3(com.renomad.minum.web.WebPerformanceTests) (622 ms)
com.renomad.minum.web.WebPerformanceTests.test1(com.renomad.minum.web.WebPerformanceTests) (642 ms)
com.renomad.minum.FunctionalTests.test_EdgeCase_PostHandler_IgnoreBody(com.renomad.minum.FunctionalTests) (707 ms)
com.renomad.minum.web.WebTests (983 ms)
com.renomad.minum.EqualsTests.equalsTest(com.renomad.minum.EqualsTests) (2092 ms)
com.renomad.minum.FunctionalTests.testEndToEnd_Functional(com.renomad.minum.FunctionalTests) (2043 ms)
com.renomad.minum.web.HeadersTests.test_GetAllHeaders_EdgeCase_TooMany(com.renomad.minum.web.HeadersTests) (30 ms)
com.renomad.minum.web.HeadersTests.test_GetAllHeaders_EdgeCase_ValueIsNull(com.renomad.minum.web.HeadersTests) (30 ms)
com.renomad.minum.web.HeadersTests.test_GetAllHeaders_EdgeCase_IOException(com.renomad.minum.web.HeadersTests) (30 ms)

Report generated by PIT 1.17.0

1		package com.renomad.minum.web;
2
3		import com.renomad.minum.logging.ILogger;
4		import com.renomad.minum.security.ForbiddenUseException;
5
6		import java.io.IOException;
7		import java.io.InputStream;
8		import java.util.*;
9
10		/**
11		* Details extracted from the headers. For example,
12		* is this a keep-alive connection? what is the content-length,
13		* and so on.
14		* Here is some detail from <a href="https://en.wikipedia.org/wiki/List_of_HTTP_header_fields">Wikipedia</a> on the subject:
15		* <p>
16		* HTTP header fields are a list of strings sent and received by both
17		* the client program and server on every HTTP request and response. These
18		* headers are usually invisible to the end-user and are only processed or
19		* logged by the server and client applications. They define how information
20		* sent/received through the connection are encoded (as in Content-Encoding),
21		* the session verification and identification of the client (as in browser
22		* cookies, IP address, user-agent) or their anonymity thereof (VPN or
23		* proxy masking, user-agent spoofing), how the server should handle data
24		* (as in Do-Not-Track), the age (the time it has resided in a shared cache)
25		* of the document being downloaded, amongst others.
26		* </p>
27		*/
28		public final class Headers{
29
30		public static final Headers EMPTY = new Headers(List.of(), null);
31		private static final int MAX_HEADERS_COUNT = 70;
32		private Integer contentLength;
33
34		/**
35		* Each line of the headers is read into this data structure
36		*/
37		private final List<String> headerStrings;
38		private final Map<String, List<String>> headersMap;
39		private final ILogger logger;
40

Headers.java

Mutations

Active mutators

Tests examined