module Network.HTTP.Lucu.StaticFile
- ( staticFile -- FilePath -> ResourceDef
- , handleStaticFile -- FilePath -> Resource ()
+ ( staticFile
+ , handleStaticFile
+
+ , staticDir
+ , handleStaticDir
+
+ , generateETagFromFile
)
where
import Network.HTTP.Lucu.Resource
import Network.HTTP.Lucu.Resource.Tree
import Network.HTTP.Lucu.Response
+import Network.HTTP.Lucu.Utils
import System.Directory
import System.Posix.Files
import Text.Printf
handleStaticFile :: FilePath -> Resource ()
handleStaticFile path
- = do exist <- liftIO $ fileExist path
- if exist then
+ = do isFile <- liftIO $ doesFileExist path
+ if isFile then
-- 存在はした。讀めるかどうかは知らない。
do readable <- liftIO $ fileAccess path True False False
unless readable
-- 實際にファイルを讀んで送る
(liftIO $ B.readFile path) >>= outputBS
else
- foundNoEntity Nothing
+ do isDir <- liftIO $ doesDirectoryExist path
+ if isDir then
+ abort Forbidden [] Nothing
+ else
+ foundNoEntity Nothing
--- inode-size-lastmod
+-- |Computation @'generateETagFromFile' fpath@ generates a strong
+-- entity tag from a file. The file doesn't necessarily have to be a
+-- regular file; it may be a FIFO or a device file. The tag is made of
+-- inode ID, size and modification time.
+--
+-- Note that the tag is not strictly strong because the file could be
+-- modified twice at a second without changing inode ID or size, but
+-- it's not really possible to generate a strict strong ETag from a
+-- file since we don't want to simply grab the entire file and use it
+-- as an ETag. It is indeed possible to hash it with SHA-1 or MD5 to
+-- increase strictness, but it's too inefficient if the file is really
+-- large (say, 1 TiB).
generateETagFromFile :: FilePath -> IO ETag
generateETagFromFile path
= do stat <- getFileStatus path
size = fromEnum $ fileSize stat
lastmod = fromEnum $ modificationTime stat
return $ strongETag $ printf "%x-%x-%x" inode size lastmod
+
+
+staticDir :: FilePath -> ResourceDef
+staticDir path
+ = ResourceDef {
+ resUsesNativeThread = False
+ , resIsGreedy = True
+ , resGet = Just $ handleStaticDir path
+ , resHead = Nothing
+ , resPost = Nothing
+ , resPut = Nothing
+ , resDelete = Nothing
+ }
+
+
+handleStaticDir :: FilePath -> Resource ()
+handleStaticDir basePath
+ = do extraPath <- getPathInfo
+ securityCheck extraPath
+ let path = basePath ++ "/" ++ joinWith "/" extraPath
+
+ handleStaticFile path
+ where
+ securityCheck :: Monad m => [String] -> m ()
+ securityCheck pathElems
+ = when (any (== "..") pathElems) $ fail ("security error: "
+ ++ joinWith "/" pathElems)