jdk-sandbox: src/java.management.rest/share/classes/com/oracle/jmx/remote/rest/http/MBeanServerResource.java@352a4f213fc6 (annotated)

55998 54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	1	/*
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	2	* Copyright (c) 2018, Oracle and/or its affiliates. All rights reserved.
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	4	*
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	7	* published by the Free Software Foundation. Oracle designates this
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	8	* particular file as subject to the "Classpath" exception as provided
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	9	* by Oracle in the LICENSE file that accompanied this code.
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	10	*
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	11	* This code is distributed in the hope that it will be useful, but WITHOUT
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	12	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	13	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	14	* version 2 for more details (a copy is included in the LICENSE file that
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	15	* accompanied this code).
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	16	*
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	17	* You should have received a copy of the GNU General Public License version
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	18	* 2 along with this work; if not, write to the Free Software Foundation,
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	19	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	20	*
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	21	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	22	* or visit www.oracle.com if you need additional information or have any
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	23	* questions.
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	24	*/
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	25
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	26	package com.oracle.jmx.remote.rest.http;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	27
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	28	import com.oracle.jmx.remote.rest.json.JSONElement;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	29	import com.oracle.jmx.remote.rest.mapper.JSONMapper;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	30	import com.oracle.jmx.remote.rest.mapper.JSONMappingException;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	31	import com.oracle.jmx.remote.rest.mapper.JSONMappingFactory;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	32	import com.sun.jmx.remote.security.JMXPluggableAuthenticator;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	33	import com.sun.jmx.remote.security.JMXSubjectDomainCombiner;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	34	import com.sun.jmx.remote.security.SubjectDelegator;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	35	import com.sun.net.httpserver.BasicAuthenticator;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	36	import com.sun.net.httpserver.HttpContext;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	37	import com.sun.net.httpserver.HttpExchange;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	38	import com.sun.net.httpserver.HttpServer;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	39
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	40	import javax.management.JMX;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	41	import javax.management.MBeanServer;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	42	import javax.management.MBeanServerDelegate;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	43	import javax.management.MBeanServerDelegateMBean;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	44	import javax.management.remote.JMXAuthenticator;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	45	import javax.management.remote.rest.JmxRestAdapter;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	46	import javax.management.remote.rest.PlatformRestAdapter;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	47	import javax.security.auth.Subject;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	48	import java.io.IOException;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	49	import java.lang.reflect.InvocationHandler;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	50	import java.lang.reflect.Method;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	51	import java.lang.reflect.Proxy;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	52	import java.net.HttpURLConnection;
56006 352a4f213fc6 1. URL decoding of URL hb parents: 56002 diff changeset	53	import java.net.URLDecoder;
352a4f213fc6 1. URL decoding of URL hb parents: 56002 diff changeset	54	import java.nio.charset.StandardCharsets;
55998 54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	55	import java.security.AccessControlContext;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	56	import java.security.AccessController;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	57	import java.security.PrivilegedAction;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	58	import java.util.Arrays;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	59	import java.util.LinkedHashMap;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	60	import java.util.Map;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	61	import java.util.concurrent.ConcurrentHashMap;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	62	import java.util.concurrent.TimeUnit;
56002 60ab3b595a8e Lot of bug fixes hb parents: 56001 diff changeset	63	import java.util.concurrent.atomic.AtomicInteger;
55998 54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	64
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	65
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	66	public final class MBeanServerResource implements RestResource, JmxRestAdapter {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	67
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	68	// Initialization parameters
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	69	private final HttpServer httpServer;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	70	private final String contextStr;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	71	private final Map<String, ?> env;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	72	private final MBeanServer mbeanServer;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	73
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	74	// Save the context to start/stop the adapter
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	75	private HttpContext httpContext;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	76	private JMXAuthenticator authenticator = null;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	77	private final MBeanServerDelegateMBean mBeanServerDelegateMBean;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	78
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	79	// Save MBeanServer Proxy for a user
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	80	private final MBeanCollectionResource defaultMBeansResource;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	81	// Use an expiring map that removes entries after the configured period lapses.
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	82	private final TimedMap<String, MBeanCollectionResource> proxyMBeanServers = new TimedMap<>(5*60);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	83
56002 60ab3b595a8e Lot of bug fixes hb parents: 56001 diff changeset	84	private static AtomicInteger resourceNumber = new AtomicInteger(1);
55998 54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	85	private boolean started = false;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	86
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	87	public MBeanServerResource(HttpServer hServer, MBeanServer mbeanServer,
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	88	String context, Map<String, ?> env) {
56002 60ab3b595a8e Lot of bug fixes hb parents: 56001 diff changeset	89	this.httpServer = hServer;
55998 54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	90	this.env = env;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	91	this.mbeanServer = mbeanServer;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	92
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	93	mBeanServerDelegateMBean = JMX.newMBeanProxy(mbeanServer,
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	94	MBeanServerDelegate.DELEGATE_NAME, MBeanServerDelegateMBean.class);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	95
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	96	if (context == null \|\| context.isEmpty()) {
56002 60ab3b595a8e Lot of bug fixes hb parents: 56001 diff changeset	97	contextStr = "server-" + resourceNumber.getAndIncrement();
55998 54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	98	} else {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	99	contextStr = context;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	100	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	101	// setup authentication
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	102	if (env.get("jmx.remote.x.authentication") != null) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	103	authenticator = (JMXAuthenticator) env.get("jmx.remote.authenticator");
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	104	if (authenticator == null) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	105	if (env.get("jmx.remote.x.password.file") != null
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	106	\|\| env.get("jmx.remote.x.login.config") != null) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	107	authenticator = new JMXPluggableAuthenticator(env);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	108	} else {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	109	throw new IllegalArgumentException
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	110	("Config error : Authentication is enabled with no authenticator");
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	111	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	112	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	113	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	114
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	115	if (env.get("jmx.remote.x.authentication") == null) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	116	defaultMBeansResource = new MBeanCollectionResource(mbeanServer);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	117	} else {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	118	defaultMBeansResource = null;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	119	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	120	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	121
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	122	private MBeanServer getMBeanServerProxy(MBeanServer mbeaServer, Subject subject) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	123	return (MBeanServer) Proxy.newProxyInstance(MBeanServer.class.getClassLoader(),
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	124	new Class<?>[]{MBeanServer.class},
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	125	new AuthInvocationHandler(mbeaServer, subject));
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	126	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	127
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	128	@Override
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	129	public HttpResponse doGet(HttpExchange exchange) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	130	String selfUrl = getUrl();
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	131	Map<String, String> links = new LinkedHashMap<>();
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	132	links.put("mbeans", selfUrl + "/mbeans");
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	133
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	134	Map<String, Object> mBeanServerInfo = getMBeanServerInfo();
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	135	mBeanServerInfo.put("_links", links);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	136
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	137	final JSONMapper typeMapper = JSONMappingFactory.INSTANCE.getTypeMapper(mBeanServerInfo);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	138	if (typeMapper != null) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	139	try {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	140	JSONElement jsonElement = typeMapper.toJsonValue(mBeanServerInfo);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	141	return new HttpResponse(jsonElement.toJsonString());
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	142	} catch (JSONMappingException e) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	143	return HttpResponse.SERVER_ERROR;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	144	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	145	} else {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	146	return HttpResponse.SERVER_ERROR;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	147	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	148	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	149
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	150	@Override
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	151	public void handle(HttpExchange exchange) throws IOException {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	152	MBeanCollectionResource mBeansResource = defaultMBeansResource;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	153	if (env.get("jmx.remote.x.authentication") != null) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	154	String authCredentials = HttpUtil.getCredentials(exchange);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	155	// MBeanServer proxy should be populated in the authenticator
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	156	mBeansResource = proxyMBeanServers.get(authCredentials);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	157	if (mBeansResource == null) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	158	throw new IllegalArgumentException("Invalid HTTP request Headers");
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	159	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	160	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	161
56006 352a4f213fc6 1. URL decoding of URL hb parents: 56002 diff changeset	162	String path = URLDecoder.decode(exchange.getRequestURI().getPath(), StandardCharsets.UTF_8.displayName());
55998 54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	163	String pathPrefix = httpContext.getPath();
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	164	// Route request to appropriate resource
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	165	if (path.matches(pathPrefix + "/?$")) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	166	RestResource.super.handle(exchange);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	167	} else if (path.matches(pathPrefix + "/mbeans.*")) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	168	mBeansResource.handle(exchange);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	169	} else {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	170	HttpUtil.sendResponse(exchange, HttpResponse.REQUEST_NOT_FOUND);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	171	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	172	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	173
56001 95c0323f0c1a Few bug fixes hb parents: 55998 diff changeset	174	@Override
55998 54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	175	public synchronized void start() {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	176	if (!started) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	177	httpContext = httpServer.createContext("/jmx/servers/" + contextStr, this);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	178	if (env.get("jmx.remote.x.authentication") != null) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	179	httpContext.setAuthenticator(new RestAuthenticator("jmx-rest"));
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	180	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	181	started = true;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	182	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	183	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	184
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	185	@Override
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	186	public synchronized void stop() {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	187	if (!started) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	188	throw new IllegalStateException("Rest Adapter not started yet");
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	189	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	190	httpServer.removeContext(httpContext);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	191	started = false;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	192	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	193
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	194	@Override
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	195	public String getUrl() {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	196	return PlatformRestAdapter.getBaseURL() + "/" + contextStr;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	197	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	198
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	199	@Override
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	200	public MBeanServer getMBeanServer() {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	201	return mbeanServer;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	202	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	203
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	204	public String getContext() {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	205	return contextStr;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	206	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	207
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	208	private class RestAuthenticator extends BasicAuthenticator {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	209
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	210	RestAuthenticator(String realm) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	211	super(realm);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	212	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	213
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	214	@Override
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	215	public boolean checkCredentials(String username, String password) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	216	if (proxyMBeanServers.containsKey(username)) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	217	return true;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	218	} else {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	219	Subject subject = null;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	220	if (authenticator != null) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	221	String[] credential = new String[]{username, password};
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	222	try {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	223	subject = authenticator.authenticate(credential);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	224	} catch (SecurityException e) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	225	return false;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	226	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	227	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	228	MBeanServer proxy = getMBeanServerProxy(mbeanServer, subject);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	229	proxyMBeanServers.put(username, new MBeanCollectionResource(proxy));
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	230	return true;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	231	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	232	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	233	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	234
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	235	Map<String, Object> getMBeanServerInfo() {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	236	Map<String, Object> result = new LinkedHashMap<>();
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	237
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	238	result.put("id", mBeanServerDelegateMBean.getMBeanServerId());
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	239	result.put("context", contextStr);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	240
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	241	result.put("defaultDomain", mbeanServer.getDefaultDomain());
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	242	result.put("mBeanCount", mbeanServer.getMBeanCount());
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	243	result.put("domains", Arrays.toString(mbeanServer.getDomains()));
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	244
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	245	result.put("specName", mBeanServerDelegateMBean.getSpecificationName());
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	246	result.put("specVersion", mBeanServerDelegateMBean.getSpecificationVersion());
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	247	result.put("specVendor", mBeanServerDelegateMBean.getSpecificationVendor());
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	248
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	249	result.put("implName", mBeanServerDelegateMBean.getImplementationName());
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	250	result.put("implVersion", mBeanServerDelegateMBean.getImplementationVersion());
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	251	result.put("implVendor", mBeanServerDelegateMBean.getImplementationVendor());
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	252
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	253	return result;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	254	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	255
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	256	private class AuthInvocationHandler implements InvocationHandler {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	257
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	258	private final MBeanServer mbeanServer;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	259	private final AccessControlContext acc;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	260
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	261	AuthInvocationHandler(MBeanServer server, Subject subject) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	262	this.mbeanServer = server;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	263	if (subject == null) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	264	this.acc = null;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	265	} else {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	266	if (SubjectDelegator.checkRemoveCallerContext(subject)) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	267	acc = JMXSubjectDomainCombiner.getDomainCombinerContext(subject);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	268	} else {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	269	acc = JMXSubjectDomainCombiner.getContext(subject);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	270	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	271	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	272	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	273
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	274	@Override
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	275	public Object invoke(Object proxy, Method method, Object[] args) throws Throwable {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	276	if (acc == null) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	277	return method.invoke(mbeanServer, args);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	278	} else {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	279	PrivilegedAction<Object> op = () -> {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	280	try {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	281	return method.invoke(mbeanServer, args);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	282	} catch (Exception ex) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	283	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	284	return null;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	285	};
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	286	return AccessController.doPrivileged(op, acc);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	287	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	288	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	289	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	290
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	291	/*
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	292	This is an expiring map that removes entries after the configured time period lapses.
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	293	This is required to re-authenticate the user after the timeout.
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	294	*/
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	295	private class TimedMap<K,V> {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	296
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	297	private ConcurrentHashMap<K,TimeStampedValue<V>> permanentMap;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	298	private long timeout = Long.MAX_VALUE; // Timeout in seconds
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	299
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	300	private class TimeStampedValue<T> {
56001 95c0323f0c1a Few bug fixes hb parents: 55998 diff changeset	301	private final T value;
95c0323f0c1a Few bug fixes hb parents: 55998 diff changeset	302	private final long insertTimeStamp;
55998 54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	303
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	304	TimeStampedValue(T value) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	305	this.value = value;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	306	insertTimeStamp = TimeUnit.MILLISECONDS.toSeconds(System.currentTimeMillis());
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	307	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	308	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	309
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	310	public TimedMap(int seconds) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	311	this.timeout = seconds;
56002 60ab3b595a8e Lot of bug fixes hb parents: 56001 diff changeset	312	permanentMap = new ConcurrentHashMap<>();
55998 54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	313	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	314
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	315	public boolean containsKey(K key) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	316	return permanentMap.containsKey(key);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	317	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	318
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	319	public V get(K key) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	320	TimeStampedValue<V> vTimeStampedValue = permanentMap.get(key);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	321	long current = TimeUnit.MILLISECONDS.toSeconds(System.currentTimeMillis());
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	322	if(current - vTimeStampedValue.insertTimeStamp > timeout) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	323	permanentMap.remove(key);
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	324	return null;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	325	} else {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	326	return vTimeStampedValue.value;
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	327	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	328	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	329
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	330	public void put(K key, V value) {
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	331	permanentMap.put(key, new TimeStampedValue<>(value));
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	332	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	333	}
54779691e11f Code cleanup - PlatformMBeanServer, MBeanServerResource hb parents: diff changeset	334	}

author	hb
	Thu, 04 Jan 2018 14:39:04 +0530
branch	jmx-rest-api
changeset 56006	352a4f213fc6
parent 56002	60ab3b595a8e
permissions	-rw-r--r--