search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Add pgs color type setting
[xy_vsfilter.git] / include / atl / atlisapi.h
blobe812aecc510881a9687e65e5c935bc96b3a2c9a7
1 // This is a part of the Active Template Library.
2 // Copyright (C) Microsoft Corporation
3 // All rights reserved.
4 //
5 // This source code is only intended as a supplement to the
6 // Active Template Library Reference and related
7 // electronic documentation provided with the library.
8 // See these sources for detailed information regarding the
9 // Active Template Library product.
10
11 #ifndef __ATLSTENCIL_H__
12 #include <atlstencil.h>
13 #endif
14
15 #ifndef __ATLISAPI_H__
16 #define __ATLISAPI_H__
17
18 #pragma once
19 #include <atlbase.h>
20 #include <time.h> // needed for cookie support
21 #include <httpext.h> // needed for ECB and IIS support
22 #include <atlspriv.h>
23 #include <atlserr.h>
24 #include <atlfile.h>
25 #include <atlstr.h>
26 #include <atldbcli.h>
27 #include <atlutil.h>
28 #include <atlcache.h>
29 #include <atlsrvres.h>
30 #include <atlsiface.h>
31 #include <objbase.h>
32 #include <atlsecurity.h>
33 #include <errno.h>
34 #ifndef ATL_NO_SOAP
35 #include <msxml2.h>
36 #endif
37 #ifndef ATL_NO_ACLAPI
38 #include <aclapi.h>
39 #endif
40 #ifndef ATL_NO_MMSYS
41 #pragma warning(push)
42 #pragma warning(disable:4201) // nonstandard extension used : nameless struct/union
43 #include <mmsystem.h>
44 #pragma warning(pop)
45 #ifndef _ATL_NO_DEFAULT_LIBS
46 #pragma comment(lib, "winmm.lib")
47 #ifndef ATL_NO_SOAP
48 #pragma comment(lib, "msxml2.lib")
49 #endif
50 #endif // !_ATL_NO_DEFAULT_LIBS
51 #endif
52 #include <atlpath.h>
53
54 #pragma warning(push)
55 #pragma warning(disable: 4291) // allow placement new
56 #pragma warning(disable: 4127) // conditional expression is constant
57 #pragma warning(disable: 4511) // copy constructor could not be generated
58 #pragma warning(disable: 4512) // assignment operator could not be generated
59 #pragma warning(disable: 4625) // copy constructor could not be generated because a base class copy constructor is inaccessible
60 #pragma warning(disable: 4626) // assignment operator could not be generated because a base class assignment operator is inaccessible
61 #pragma warning(disable: 4191) // unsafe conversion from 'functionptr1' to 'functionptr2'
62 #pragma warning(disable: 4702) // unreachable code
63
64 #include <initguid.h>
65 #include <dbgautoattach.h>
66
67 #ifndef SESSION_COOKIE_NAME
68 #define SESSION_COOKIE_NAME "SESSIONID"
69 #endif
70
71 // override this if you want to use a different CLSID for SAX
72 #ifndef ATLS_SAXXMLREADER_CLSID
73 #define ATLS_SAXXMLREADER_CLSID __uuidof(SAXXMLReader)
74 #endif // ATLS_SAXXMLREADER_CLSID
75
76
77 // This function is used in CValidateObject to determine if an empty
78 // request parameter really should be empty. You can
79 // specialize this function in your own code such as
80 // the following specialization for type long:
81 // template <>
82 // inline bool IsNullByType<long>(long type) throw()
83 // {
84 // return type == 0;
85 // }
86 // You should provide your own specialization for this
87 // function if the comparison of type==0 is not adequate
88 // to discover whether or not your type is 0.
89 template <class TComp>
90 inline bool IsNullByType(__in TComp type) throw()
91 {
92 return type == 0;
93 }
94
95
96 #pragma pack(push,_ATL_PACKING)
97 namespace ATL {
98
99 // Default file extension for server response files
100 #ifndef ATL_DEFAULT_STENCIL_EXTENSION
101 #define ATL_DEFAULT_STENCIL_EXTENSION ".srf"
102 #endif
103 extern __declspec(selectany) const char * const c_AtlSRFExtension = ATL_DEFAULT_STENCIL_EXTENSION;
104 extern __declspec(selectany) const TCHAR * const c_tAtlSRFExtension = _T(ATL_DEFAULT_STENCIL_EXTENSION);
105 #define ATLS_EXTENSION_LEN (sizeof(ATL_DEFAULT_STENCIL_EXTENSION)-2)
106
107 // Default file extension for handler DLLs
108 #ifndef ATL_DEFAULT_DLL_EXTENSION
109 #define ATL_DEFAULT_DLL_EXTENSION ".dll"
110 #endif
111 extern __declspec(selectany) const char * const c_AtlDLLExtension = ATL_DEFAULT_DLL_EXTENSION;
112 extern __declspec(selectany) const TCHAR * const c_tAtlDLLExtension = _T(ATL_DEFAULT_DLL_EXTENSION);
113 #define ATLS_DLL_EXTENSION_LEN (sizeof(ATL_DEFAULT_DLL_EXTENSION)-2)
114
115 // maximum handler name length
116 #ifndef ATL_MAX_HANDLER_NAME_LEN
117 #define ATL_MAX_HANDLER_NAME_LEN 64
118 #endif
119
120 #ifndef ATL_HANDLER_NAME_DEFAULT
121 #define ATL_HANDLER_NAME_DEFAULT "Default"
122 #endif // ATL_DEFAULT_HANDLER_NAME
123
124
125 // maximum timeout for async guard mutex
126 #ifndef ATLS_ASYNC_MUTEX_TIMEOUT
127 #define ATLS_ASYNC_MUTEX_TIMEOUT 10000
128 #endif
129
130 #if defined(_M_IA64) || defined (_M_AMD64)
131 #define ATLS_FUNCID_INITIALIZEHANDLERS "InitializeAtlHandlers"
132 #define ATLS_FUNCID_GETATLHANDLERBYNAME "GetAtlHandlerByName"
133 #define ATLS_FUNCID_UNINITIALIZEHANDLERS "UninitializeAtlHandlers"
134 #elif defined(_M_IX86)
135 #define ATLS_FUNCID_INITIALIZEHANDLERS "_InitializeAtlHandlers@8"
136 #define ATLS_FUNCID_GETATLHANDLERBYNAME "_GetAtlHandlerByName@12"
137 #define ATLS_FUNCID_UNINITIALIZEHANDLERS "_UninitializeAtlHandlers@0"
138 #else
139 #error Unknown Platform.
140 #endif
141
142 #define ATL_MAX_COOKIE_LEN 2048
143 #define ATL_MAX_COOKIE_ELEM 1024
144
145
146 // Defines a small value used for comparing the equality of floating point numbers.
147 #ifndef ATL_EPSILON
148 #define ATL_EPSILON .0001
149 #endif
150
151 #ifndef ATL_DEFAULT_PRECISION
152 #define ATL_DEFAULT_PRECISION 6
153 #endif
154
155 // Call this function to URL-encode a buffer and have the result appended to a CString passed by reference.
156 //
157 // A space in the input string is encoded as a plus sign (+).
158 // Other unsafe characters (as determined by AtlIsUnsafeUrlChar) are encoded as escaped octets.
159 // An escaped octet is a percent sign (%) followed by two digits representing the hexadecimal code of the character.
160 //
161 // string A CStringA reference to which will be appended the encoded version of szBuf.
162 //
163 // szBuf The string to be URL-encoded.
164 ATL_NOINLINE inline bool EscapeToCString(__inout CStringA& string, __in LPCSTR szBuf)
165 {
166 ATLENSURE( szBuf != NULL );
167
168 _ATLTRY
169 {
170 CHAR szEscaped[512];
171 LPSTR pszStr = szEscaped;
172 DWORD dwLen = 0;
173
174 while (*szBuf)
175 {
176 if (dwLen+4 >= _countof(szEscaped))
177 {
178 *pszStr = '\0';
179 string.Append(szEscaped, dwLen);
180 pszStr = szEscaped;
181 dwLen = 0;
182 }
183 if (AtlIsUnsafeUrlChar(*szBuf))
184 {
185 if (*szBuf == ' ')
186 {
187 dwLen++;
188 *pszStr++ = '+';
189 }
190 else
191 {
192 LPSTR pszTmp = pszStr;
193 *pszTmp++ = '%';
194 unsigned char ch = (unsigned char)*szBuf;
195 if (ch < 16)
196 {
197 *pszTmp++ = '0';
198 }
199 Checked::ultoa_s((unsigned char)ch, pszTmp, szEscaped + _countof(szEscaped) - pszTmp, 16);
200 pszStr+= sizeof("%FF")-1;
201 dwLen+= sizeof("%FF")-1;
202 }
203 }
204 else
205 {
206 *pszStr++ = *szBuf;
207 dwLen++;
208 }
209 szBuf++;
210 }
211
212 *pszStr = '\0';
213 string.Append(szEscaped, dwLen);
214 }
215 _ATLCATCHALL()
216 {
217 return false;
218 }
219
220 return true;
221 }
222
223 // UNICODE overload for EscapeToCString
224 // follow specifications detailed in RFC document on
225 // Internationalized Uniform Resource Identifiers (IURI)
226 inline bool EscapeToCString(__inout CStringA& string, __in_z LPCWSTR wszBuf) throw()
227 {
228 _ATLTRY
229 {
230 // convert string to UTF8
231 CFixedStringT<CStringA, 2048> strConvert;
232
233 // get the required length for conversion
234 int nSrcLen = (int) wcslen(wszBuf);
235 int nLen = AtlUnicodeToUTF8(wszBuf, nSrcLen, NULL, 0);
236 if (!nLen)
237 {
238 return false;
239 }
240
241 // allocate MBCS conversion string
242 LPSTR sz = strConvert.GetBuffer(nLen+1);
243 if (!sz)
244 {
245 return false;
246 }
247
248 // do the UNICODE to UTF8 conversion
249 nLen = AtlUnicodeToUTF8(wszBuf, nSrcLen, sz, nLen);
250 if (!nLen)
251 {
252 return false;
253 }
254
255 // null-terminate
256 sz[nLen] = '\0';
257
258 // delegate to ANSI version of EscapeToCString
259 if (!EscapeToCString(string, sz))
260 {
261 return false;
262 }
263
264 strConvert.ReleaseBuffer(nLen);
265 }
266 _ATLCATCHALL()
267 {
268 return false;
269 }
270
271 return true;
272 }
273
274 struct CDefaultErrorProvider
275 {
276 struct HTTP_ERROR_TEXT
277 {
278 UINT uHttpError; // the Http Error value
279 UINT uHttpSubError; // Allows for customization of error text based on srf specific errors.
280 LPCSTR szHeader; // the string that should appear in the http response header
281 UINT uResId; // the resource id of the string to send back as the body
282 };
283
284
285 // GetErrorText retrieves the http response header string
286 // and a resource id of the response body for a given
287 // http error code
288 // uError: Http error code to retrieve information for
289 // ppszHeader: pointer to LPCSTR that receives the response header string
290 // ppszHeader is optional
291 // puResId: pointer to UINT that receives the response body resource id
292 // puResId is optional
293 static BOOL GetErrorText(__in UINT uError, __in UINT uSubErr, __deref_out_opt LPCSTR *ppszHeader, __out_opt UINT *puResId) throw()
294 {
295 static const HTTP_ERROR_TEXT s_Errors[] =
296 {
297 { 200, SUBERR_NONE, "OK", 0 },
298 { 201, SUBERR_NONE, "Created", 0 },
299 { 202, SUBERR_NONE, "Accepted", 0 },
300 { 203, SUBERR_NONE, "Non-Authoritative Information", 0 },
301 { 204, SUBERR_NONE, "No Content", 0 },
302 { 204, DBG_SUBERR_ALREADY_DEBUGGING, "Already being debugged by another user", 0},
303 { 204, DBG_SUBERR_NOT_DEBUGGING, "Not currently debugging a process", 0},
304 { 204, DBG_SUBERR_INVALID_SESSION, "Requested DebugSessionID does not match current DebugSessionID", 0},
305 { 204, DBG_SUBERR_BAD_ID, "DebugSessionID corrupted or not provided", 0 },
306 { 204, DBG_SUBERR_COCREATE, "Could not CoCreate the debugger", 0 },
307 { 204, DBG_SUBERR_ATTACH, "Could not attach to process", 0 },
308 { 205, SUBERR_NONE, "Reset Content", 0 },
309 { 206, SUBERR_NONE, "Partial Content", 0 },
310 { 300, SUBERR_NONE, "Multiple Choices", 0 },
311 { 301, SUBERR_NONE, "Moved Permanently", 0 },
312 { 302, SUBERR_NONE, "Found", 0 },
313 { 303, SUBERR_NONE, "See Other", 0 },
314 { 304, SUBERR_NONE, "Not Modified", 0 },
315 { 305, SUBERR_NONE, "Use Proxy", 0 },
316 { 306, SUBERR_NONE, "(Unused)", 0 },
317 { 307, SUBERR_NONE, "Temporary Redirect", 0 },
318 { 400, SUBERR_NONE, "Bad Request", IDS_ATLSRV_BAD_REQUEST },
319 { 401, SUBERR_NONE, "Unauthorized", IDS_ATLSRV_AUTH_REQUIRED },
320 { 402, SUBERR_NONE, "Payment Required", 0 },
321 { 403, SUBERR_NONE, "Forbidden", IDS_ATLSRV_FORBIDDEN },
322 { 404, SUBERR_NONE, "Not Found", IDS_ATLSRV_NOT_FOUND },
323 { 405, SUBERR_NONE, "Method Not Allowed", 0 },
324 { 406, SUBERR_NONE, "Not Acceptable", 0 },
325 { 407, SUBERR_NONE, "Proxy Authentication Required", 0 },
326 { 408, SUBERR_NONE, "Request Timeout", 0 },
327 { 409, SUBERR_NONE, "Conflict", 0 },
328 { 410, SUBERR_NONE, "Gone", 0 },
329 { 411, SUBERR_NONE, "Length Required", 0 },
330 { 412, SUBERR_NONE, "Precondition Failed", 0 },
331 { 413, SUBERR_NONE, "Request Entity Too Long", 0 },
332 { 414, SUBERR_NONE, "Request-URI Too Long", 0 },
333 { 415, SUBERR_NONE, "Unsupported Media Type", 0 },
334 { 416, SUBERR_NONE, "Requested Range Not Satisfiable", 0 },
335 { 417, SUBERR_NONE, "Expectation Failed", 0 },
336 { 500, SUBERR_NONE, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR },
337 { 500, ISE_SUBERR_BADSRF, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_BADSRF },
338 { 500, ISE_SUBERR_HNDLFAIL, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_HNDLFAIL },
339 { 500, ISE_SUBERR_SYSOBJFAIL, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_SYSOBJFAIL},
340 { 500, ISE_SUBERR_READFILEFAIL, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_READFILEFAIL},
341 { 500, ISE_SUBERR_LOADFILEFAIL, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_LOADFILEFAIL},
342 { 500, ISE_SUBERR_LOADLIB, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_LOADLIB},
343 { 500, ISE_SUBERR_HANDLERIF, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_HANDLERIF},
344 { 500, ISE_SUBERR_OUTOFMEM, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_OUTOFMEM},
345 { 500, ISE_SUBERR_UNEXPECTED, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_UNEXPECTED},
346 { 500, ISE_SUBERR_STENCIL_PARSE_FAIL, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_STENCILPARSEFAIL},
347 { 500, ISE_SUBERR_STENCIL_LOAD_FAIL, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_STENCILLOADFAIL},
348 { 500, ISE_SUBERR_HANDLER_NOT_FOUND, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_HANDLERNOTFOUND},
349 { 500, ISE_SUBERR_BAD_HANDLER_TAG, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_BADHANDLERTAG},
350 { 500, ISE_SUBERR_LONGMETHODNAME, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_LONGMETHODNAME},
351 { 500, ISE_SUBERR_LONGHANDLERNAME, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_LONGHANDLERNAME},
352 { 500, ISE_SUBERR_NO_HANDLER_TAG, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_NOHANDLERTAG},
353 { 500, ISE_SUBERR_IMPERSONATIONFAILED, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_IMPERSONATIONFAILED},
354 { 500, ISE_SUBERR_ISAPISTARTUPFAILED, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_ISAPISTARTUPFAILED},
355 { 500, ISE_SUBERR_SOAPNOSOAPACTION, "Internal Server Error", IDS_ATLSRV_SERVER_ERROR_SOAPNOSOAPACTION},
356
357 { 501, SUBERR_NONE, "Not Implemented", IDS_ATLSRV_NOT_IMPLEMENTED },
358 { 502, SUBERR_NONE, "Bad Gateway", IDS_ATLSRV_BAD_GATEWAY },
359 { 503, SUBERR_NONE, "Service Unavailable", IDS_ATLSRV_SERVICE_NOT_AVAILABLE },
360 { 504, SUBERR_NONE, "Gateway Timeout", 0 },
361 { 505, SUBERR_NONE, "HTTP Version Not Supported", 0 },
362 };
363
364 // look for the error
365 for (int i=0; i<sizeof(s_Errors)/sizeof(s_Errors[0]); i++)
366 {
367 if ((s_Errors[i].uHttpError == uError) && (s_Errors[i].uHttpSubError == uSubErr))
368 {
369 if (ppszHeader)
370 *ppszHeader = s_Errors[i].szHeader;
371 if (puResId)
372 *puResId = s_Errors[i].uResId;
373 return TRUE;
374 }
375 }
376
377 // not found
378 return FALSE;
379 }
380 }; // CDefaultErrorProvider
381
382 template<class HttpUserErrorTextProvider>
383 void GetStatusHeader(__inout CStringA &strStatus, __in DWORD dwStatus, __in DWORD dwSubStatus, __in HttpUserErrorTextProvider* pErrorProvider, __out_opt UINT *puResId = NULL) throw(...)
384 {
385 ATLENSURE( pErrorProvider != NULL );
386
387 LPCSTR szHeadErr = NULL;
388 // First, we check for the error text in the extension's user error text provider
389 BOOL bRet = pErrorProvider->GetErrorText(dwStatus, dwSubStatus, &szHeadErr, puResId);
390 if (!bRet)
391 {
392 szHeadErr = "";
393 }
394
395 char szBuf[512];
396 Checked::itoa_s(dwStatus, szBuf, _countof(szBuf), 10);
397
398 // add the space after the 3 digit response code
399 szBuf[3] = ' ';
400 szBuf[4] = '\0';
401 strStatus.SetString(szBuf, 4);
402 strStatus.Append(szHeadErr);
403 }
404
405 template<class HttpUserErrorTextProvider>
406 void RenderError(__in IHttpServerContext *pServerContext, __in DWORD dwStatus, __in DWORD dwSubStatus, __in HttpUserErrorTextProvider* pErrorProvider)
407 {
408 ATLENSURE( pServerContext != NULL );
409 ATLENSURE( pErrorProvider != NULL );
410 _ATLTRY
411 {
412 UINT uResId = 0;
413
414 CFixedStringT<CStringA, 256> strStatus;
415 GetStatusHeader(strStatus, dwStatus, dwSubStatus, pErrorProvider, &uResId);
416 pServerContext->SendResponseHeader(NULL, strStatus, FALSE);
417
418 LPCSTR szBody = strStatus;
419 DWORD dwBodyLen = strStatus.GetLength();
420 CFixedStringT<CStringA, 1024> strBody;
421 if (uResId)
422 {
423 // load the body string from a resource
424 if (strBody.LoadString(uResId))
425 {
426 szBody = strBody;
427 dwBodyLen = strBody.GetLength();
428 }
429 }
430
431 pServerContext->WriteClient((void *) szBody, &dwBodyLen);
432 }
433 _ATLCATCHALL()
434 {
435 // last resort message when low on memory
436 LPCSTR szError;
437 BOOL bRes;
438 bRes = CDefaultErrorProvider::GetErrorText(dwStatus, dwSubStatus, &szError, 0);
439 if (!bRes)
440 bRes = CDefaultErrorProvider::GetErrorText(dwStatus, SUBERR_NONE, &szError, 0);
441 if (!bRes)
442 bRes = CDefaultErrorProvider::GetErrorText(500, SUBERR_NONE, &szError, 0);
443 if(!szError)
444 {
445 szError="Unknown Error"; // last resort, can't localize
446 }
447 DWORD dwBodyLen = (DWORD) strlen(szError);
448 pServerContext->WriteClient((void *) szError, &dwBodyLen);
449 }
450 }
451
452 // Call this function to retrieve the full canonical physical path
453 // of a file relative to the current script.
454 //
455 // Returns TRUE on success, FALSE on error.
456 //
457 // szFile A file path relative to the current script directory for which
458 // you are trying to retrieve the full path.
459 //
460 // szFullFileName A caller-allocated buffer of at least MAX_PATH characters in length.
461 // On success, contains the the full canonical path of szFile.
462 //
463 // pServerContext The context for the current request. The context is used to obtain the
464 // current script directory.
465 inline BOOL GetScriptFullFileName(
466 __in LPCSTR szFile,
467 __in_ecount(MAX_PATH) LPSTR szFullFileName,
468 __in IHttpServerContext* pServerContext) throw(...)
469 {
470 ATLENSURE( szFile != NULL );
471 ATLASSERT( szFullFileName != NULL );
472 ATLENSURE( pServerContext != NULL );
473
474 char szTmpScriptPath[MAX_PATH];
475 LPCSTR szTmp = pServerContext->GetScriptPathTranslated();
476
477 if (!szTmp)
478 {
479 return FALSE;
480 }
481
482 if (!SafeStringCopy(szTmpScriptPath, szTmp))
483 {
484 // path is too long
485 return FALSE;
486 }
487
488 CHAR *szScriptPath = szTmpScriptPath;
489
490 LPSTR szBackslash;
491 if (*szFile != '\\')
492 {
493 szBackslash = strrchr(szScriptPath, '\\');
494
495 ATLASSERT( *(szScriptPath+strlen(szScriptPath)) != '\\');
496
497 if (szBackslash)
498 szBackslash++;
499 }
500 else
501 {
502 // handle case where szFile is of the form \directory\etc\etc
503 szBackslash = strchr(szScriptPath, '\\');
504 }
505
506 if (szBackslash)
507 *szBackslash = '\0';
508
509 int nScriptPathLen = (int)(szBackslash ? strlen(szScriptPath) : 0);
510 int nFileLen = (int) strlen(szFile);
511 int newLen = nScriptPathLen + nFileLen;
512
513 if ((newLen < nScriptPathLen) || (newLen < nFileLen) || (newLen > MAX_PATH-1))
514 {
515 return FALSE;
516 }
517 CHAR szTemp[MAX_PATH];
518 if (nScriptPathLen)
519 {
520 Checked::memcpy_s(szTemp, MAX_PATH, szScriptPath, nScriptPathLen);
521 }
522 Checked::memcpy_s(szTemp + nScriptPathLen, MAX_PATH-nScriptPathLen, szFile, nFileLen);
523 *(szTemp + newLen) = 0;
524
525 return PathCanonicalizeA(szFullFileName, szTemp);
526 }
527
528 enum ATLSRV_STATE
529 {
530 ATLSRV_STATE_BEGIN, // The request has just arrived, and the type has not been determined
531 ATLSRV_STATE_CONTINUE, // The request is a continuation of an async request
532 ATLSRV_STATE_DONE, // The request is a continuation of an async request, but the server is done with it
533 ATLSRV_STATE_CACHE_DONE // The request is the callback of a cached page
534 };
535
536 enum ATLSRV_REQUESTTYPE
537 {
538 ATLSRV_REQUEST_UNKNOWN=-1, // The request type isn't known yet
539 ATLSRV_REQUEST_STENCIL, // The request is for a .srf file
540 ATLSRV_REQUEST_DLL // The request is for a .dll file
541 };
542
543 // Flags the InitRequest can return in dwStatus
544 #define ATLSRV_INIT_USECACHE 1
545 #define ATLSRV_INIT_USEASYNC 2
546 #define ATLSRV_INIT_USEASYNC_EX 4 // required for use of NOFLUSH status
547
548 typedef HTTP_CODE (IRequestHandler::*PFnHandleRequest)(AtlServerRequest *pRequestInfo, IServiceProvider *pProvider);
549 typedef void (*PFnAsyncComplete)(AtlServerRequest *pRequestInfo, DWORD cbIO, DWORD dwError);
550
551 struct AtlServerRequest
552 {
553 DWORD cbSize; // For future compatibility
554 IHttpServerContext *pServerContext; // Necessary because it wraps the ECB
555 ATLSRV_REQUESTTYPE dwRequestType; // See the ATLSRV variables above
556 // Indicates whether it was called through an .srf file or through a .dll file
557 ATLSRV_STATE dwRequestState; // See the ATLSRV variables above
558 // Indicates what state of completion the request is in
559 IRequestHandler *pHandler; // Necessary because the callback (for async calls) must know where to
560 // route the request
561 HINSTANCE hInstDll; // Necessary in order to release the dll properly (for async calls)
562 IIsapiExtension *pExtension; // Necessary to requeue the request (for async calls)
563 IDllCache* pDllCache; // Necessary to release the dll in async callback
564
565 HANDLE hFile;
566 HCACHEITEM hEntry;
567 IFileCache* pFileCache;
568
569 HANDLE m_hMutex; // necessary to syncronize calls to HandleRequest
570 // if HandleRequest could potientially make an
571 // async call before returning. only used
572 // if indicated with ATLSRV_INIT_USEASYNC_EX
573
574 DWORD dwStartTicks; // Tick count when the request was received
575 EXTENSION_CONTROL_BLOCK *pECB;
576 PFnHandleRequest pfnHandleRequest;
577 PFnAsyncComplete pfnAsyncComplete;
578 LPCSTR pszBuffer; // buffer to be flushed asyncronously
579 DWORD dwBufferLen; // length of data in pszBuffer
580 void* pUserData; // value that can be used to pass user data between parent and child handlers
581 };
582
583 inline void _ReleaseAtlServerRequest(__inout AtlServerRequest* pRequest)
584 {
585 ATLENSURE(pRequest!=NULL);
586 if (pRequest->pHandler)
587 pRequest->pHandler->Release();
588 if (pRequest->pServerContext)
589 pRequest->pServerContext->Release();
590 if (pRequest->pDllCache && pRequest->hInstDll)
591 pRequest->pDllCache->ReleaseModule(pRequest->hInstDll);
592 if (pRequest->m_hMutex)
593 CloseHandle(pRequest->m_hMutex);
594 }
595
596 typedef BOOL (__stdcall *GETATLHANDLERBYNAME)(LPCSTR szHandlerName, IIsapiExtension *pExtension, IUnknown **ppHandler);
597 typedef BOOL (__stdcall *INITIALIZEATLHANDLERS)(IHttpServerContext*, IIsapiExtension*);
598 typedef void (__stdcall *UNINITIALIZEATLHANDLERS)();
599
600 // initial size of thread worker heap (per thread)
601 // The heap is growable. The default initial is 16KB
602 #ifndef ATLS_WORKER_HEAP_SIZE
603 #define ATLS_WORKER_HEAP_SIZE 16384
604 #endif
605
606 class CIsapiWorker
607 {
608 public:
609 typedef AtlServerRequest* RequestType;
610 HANDLE m_hHeap;
611 #ifndef ATL_NO_SOAP
612 CComPtr<ISAXXMLReader> m_spReader;
613 #endif
614
615 CIsapiWorker() throw()
616 {
617 m_hHeap = NULL;
618 }
619
620 virtual ~CIsapiWorker() throw()
621 {
622 ATLASSUME(m_hHeap == NULL);
623 }
624
625 virtual BOOL Initialize(__inout __crt_typefix(IIsapiExtension*) void *pvParam)
626 {
627 IIsapiExtension* pExtension = (IIsapiExtension*) pvParam;
628 ATLENSURE(pExtension);
629 if (!(pExtension->OnThreadAttach()))
630 return FALSE;
631
632 m_hHeap = HeapCreate(HEAP_NO_SERIALIZE, ATLS_WORKER_HEAP_SIZE, 0);
633 if (!m_hHeap)
634 return FALSE;
635 #ifndef ATL_NO_SOAP
636 if (FAILED(m_spReader.CoCreateInstance(ATLS_SAXXMLREADER_CLSID, NULL, CLSCTX_INPROC_SERVER )))
637 {
638 ATLASSERT( FALSE );
639 ATLTRACE( atlTraceISAPI, 0, _T("MSXML3 is not installed -- web services will not work.") );
640 }
641 #endif
642 return pExtension->SetThreadWorker(this);
643 }
644
645 virtual void Terminate(__inout_opt __crt_typefix(IIsapiExtension*) void* pvParam) throw()
646 {
647 if (m_hHeap)
648 {
649 if (HeapDestroy(m_hHeap))
650 m_hHeap = NULL;
651 else
652 {
653 ATLASSERT(FALSE);
654 }
655 }
656
657 #ifndef ATL_NO_SOAP
658 m_spReader.Release();
659 #endif
660 if (pvParam != NULL)
661 (static_cast<IIsapiExtension*>(pvParam))->OnThreadTerminate();
662 }
663
664 void Execute(__inout AtlServerRequest *pRequestInfo, __inout __crt_typefix(IIsapiExtension*) void *pvParam, __reserved OVERLAPPED *pOverlapped)
665 {
666 ATLENSURE(pRequestInfo != NULL);
667 ATLENSURE(pvParam != NULL);
668 (pOverlapped); // unused
669 ATLASSUME(m_hHeap != NULL);
670 // any exceptions thrown at this point should have been caught in an
671 // override of DispatchStencilCall. They will not be thrown out of this
672 // function.
673 _ATLTRY
674 {
675 (static_cast<IIsapiExtension*>(pvParam))->DispatchStencilCall(pRequestInfo);
676 }
677 _ATLCATCHALL()
678 {
679 ATLTRACE(_T("Warning. An uncaught exception was thrown from DispatchStencilCall\n"));
680 ATLASSERT(FALSE);
681 }
682 }
683
684 virtual BOOL GetWorkerData(DWORD /*dwParam*/, void ** /*ppvData*/) throw()
685 {
686 return FALSE;
687 }
688 };
689
690 inline void _AtlGetScriptPathTranslated(
691 __in LPCSTR szPathTranslated,
692 __inout CFixedStringT<CStringA, MAX_PATH>& strScriptPathTranslated)
693 {
694 ATLENSURE(szPathTranslated!=NULL);
695 LPCSTR szEnd = szPathTranslated;
696
697 while (TRUE)
698 {
699 while (*szEnd != '.' && *szEnd != '\0')
700 szEnd++;
701 if (*szEnd == '\0')
702 break;
703
704 szEnd++;
705
706 size_t nLen(0);
707 if (!AsciiStrnicmp(szEnd, c_AtlDLLExtension+1, ATLS_DLL_EXTENSION_LEN))
708 nLen = ATLS_DLL_EXTENSION_LEN;
709 else if (!AsciiStrnicmp(szEnd, c_AtlSRFExtension+1, ATLS_EXTENSION_LEN))
710 nLen = ATLS_EXTENSION_LEN;
711
712 if (nLen)
713 {
714 szEnd += nLen;
715 if (!*szEnd || *szEnd == '/' || *szEnd == '\\' || *szEnd == '?' || *szEnd == '#')
716 break;
717 }
718 }
719
720 DWORD dwResult = (DWORD)(szEnd - szPathTranslated);
721 char *szScriptPathTranslated = NULL;
722 ATLTRY(szScriptPathTranslated = strScriptPathTranslated.GetBuffer(dwResult));
723 if (szScriptPathTranslated)
724 {
725 Checked::memcpy_s(szScriptPathTranslated, dwResult, szPathTranslated, dwResult);
726 szScriptPathTranslated[dwResult] = '\0';
727 strScriptPathTranslated.ReleaseBuffer(dwResult);
728 }
729 }
730
731
732 struct CStencilState
733 {
734 CStencilState() throw()
735 {
736 dwIndex = 0;
737 locale = CP_ACP;
738 pIncludeInfo = NULL;
739 pParentInfo = NULL;
740 }
741
742 DWORD dwIndex;
743 LCID locale;
744 AtlServerRequest* pIncludeInfo;
745 AtlServerRequest* pParentInfo;
746 };
747
748 class CWrappedServerContext:
749 public IHttpServerContext
750 {
751 public:
752 CComPtr<IHttpServerContext> m_spParent;
753
754 CWrappedServerContext() throw()
755 {
756 }
757
758 virtual ~CWrappedServerContext() throw()
759 {
760 }
761
762 CWrappedServerContext(__in IHttpServerContext *pParent) throw()
763 {
764 m_spParent = pParent;
765 }
766
767 LPCSTR GetRequestMethod()
768 {
769 ATLENSURE(m_spParent);
770 return m_spParent->GetRequestMethod();
771 }
772
773 LPCSTR GetQueryString()
774 {
775 ATLENSURE(m_spParent);
776 return m_spParent->GetQueryString();
777 }
778
779 LPCSTR GetPathInfo()
780 {
781 ATLENSURE(m_spParent);
782 return m_spParent->GetPathInfo();
783 }
784
785 LPCSTR GetScriptPathTranslated()
786 {
787 ATLENSURE(m_spParent);
788 return m_spParent->GetScriptPathTranslated();
789 }
790
791 LPCSTR GetPathTranslated()
792 {
793 ATLENSURE(m_spParent);
794 return m_spParent->GetPathTranslated();
795 }
796
797 DWORD GetTotalBytes()
798 {
799 ATLENSURE(m_spParent);
800 return m_spParent->GetTotalBytes();
801 }
802
803 DWORD GetAvailableBytes()
804 {
805 ATLENSURE(m_spParent);
806 return m_spParent->GetAvailableBytes();
807 }
808
809 BYTE *GetAvailableData()
810 {
811 ATLENSURE(m_spParent);
812 return m_spParent->GetAvailableData();
813 }
814
815 LPCSTR GetContentType()
816 {
817 ATLENSURE(m_spParent);
818 return m_spParent->GetContentType();
819 }
820
821 __checkReturn BOOL GetServerVariable(__in_z LPCSTR pszVariableName, __out_ecount_part(*pdwSize,*pdwSize) LPSTR pvBuffer, __inout DWORD *pdwSize)
822 {
823 ATLENSURE(m_spParent);
824 return m_spParent->GetServerVariable(pszVariableName, pvBuffer, pdwSize);
825 }
826
827 __checkReturn BOOL WriteClient(__in_bcount(*pdwBytes) void *pvBuffer, __inout DWORD *pdwBytes)
828 {
829 ATLENSURE(m_spParent);
830 return m_spParent->WriteClient(pvBuffer, pdwBytes);
831 }
832
833 __checkReturn BOOL AsyncWriteClient(__in_bcount(*pdwBytes) void * pvBuffer, __inout DWORD * pdwBytes)
834 {
835 ATLENSURE(m_spParent);
836 return m_spParent->AsyncWriteClient(pvBuffer, pdwBytes);
837 }
838
839 __checkReturn BOOL ReadClient(__out_bcount_part(*pdwSize,*pdwSize) void * pvBuffer, __inout DWORD * pdwSize)
840 {
841 ATLENSURE(m_spParent);
842 return m_spParent->ReadClient(pvBuffer, pdwSize);
843 }
844
845 __checkReturn BOOL AsyncReadClient(__out_bcount_part(*pdwSize,*pdwSize) void * pvBuffer, __inout DWORD * pdwSize)
846 {
847 ATLENSURE(m_spParent);
848 return m_spParent->AsyncReadClient(pvBuffer, pdwSize);
849 }
850
851 __checkReturn BOOL SendRedirectResponse(__in LPCSTR pszRedirectUrl)
852 {
853 ATLENSURE(m_spParent);
854 return m_spParent->SendRedirectResponse(pszRedirectUrl);
855 }
856
857 __checkReturn BOOL GetImpersonationToken(__out HANDLE * pToken)
858 {
859 ATLENSURE(m_spParent);
860 return m_spParent->GetImpersonationToken(pToken);
861 }
862
863 __checkReturn BOOL SendResponseHeader(__in LPCSTR pszHeader, __in LPCSTR pszStatusCode, __in BOOL fKeepConn)
864 {
865 ATLENSURE(m_spParent);
866 return m_spParent->SendResponseHeader(pszHeader, pszStatusCode, fKeepConn);
867 }
868
869 __checkReturn BOOL DoneWithSession(__in DWORD dwHttpStatusCode)
870 {
871 ATLENSURE(m_spParent);
872 return m_spParent->DoneWithSession(dwHttpStatusCode);
873 }
874
875 __checkReturn BOOL RequestIOCompletion(__in PFN_HSE_IO_COMPLETION pfn, DWORD * pdwContext)
876 {
877 ATLENSURE(m_spParent);
878 return m_spParent->RequestIOCompletion(pfn, pdwContext);
879 }
880
881 BOOL TransmitFile(__in HANDLE hFile, __in_opt PFN_HSE_IO_COMPLETION pfn, void * pContext,
882 __in LPCSTR szStatusCode, __in DWORD dwBytesToWrite, __in DWORD dwOffset, __in_bcount_opt(dwHeadLen) void * pvHead,
883 __in DWORD dwHeadLen, __in_bcount_opt(dwTailLen) void * pvTail, __in DWORD dwTailLen, __in DWORD dwFlags)
884 {
885 ATLENSURE(m_spParent);
886 return m_spParent->TransmitFile(hFile, pfn, pContext, szStatusCode,
887 dwBytesToWrite, dwOffset, pvHead, dwHeadLen, pvTail, dwTailLen,
888 dwFlags);
889 }
890
891 BOOL AppendToLog(__in LPCSTR szMessage, __in_opt DWORD* pdwLen)
892 {
893 ATLENSURE(m_spParent);
894 return m_spParent->AppendToLog(szMessage, pdwLen);
895 }
896
897 BOOL MapUrlToPathEx(__in_bcount(dwLen) LPCSTR szLogicalPath, __in DWORD dwLen, __out HSE_URL_MAPEX_INFO *pumInfo)
898 {
899 ATLENSURE(m_spParent);
900 return m_spParent->MapUrlToPathEx(szLogicalPath, dwLen, pumInfo);
901 }
902 }; // class CWrappedServerContext
903
904 // Wraps the EXTENSION_CONTROL_BLOCK structure used by IIS to provide
905 // an ISAPI extension with information about the current request and
906 // access to the web server's functionality.
907 class CServerContext :
908 public CComObjectRootEx<CComMultiThreadModel>,
909 public IHttpServerContext
910 {
911 public:
912 BEGIN_COM_MAP(CServerContext)
913 COM_INTERFACE_ENTRY(IHttpServerContext)
914 END_COM_MAP()
915
916 CServerContext() throw()
917 {
918 m_pECB = NULL;
919 m_bHeadersHaveBeenSent = false;
920 }
921 virtual ~CServerContext() throw()
922 {
923 }
924
925 void Initialize(__in EXTENSION_CONTROL_BLOCK *pECB)
926 {
927 ATLENSURE(pECB);
928 m_pECB = pECB;
929
930 // Initialize the translated script path
931 _AtlGetScriptPathTranslated(GetPathTranslated(), m_strScriptPathTranslated);
932 }
933
934 // Returns a nul-terminated string that contains the HTTP method of the current request.
935 // Examples of common HTTP methods include "GET" and "POST".
936 // Equivalent to the REQUEST_METHOD server variable or EXTENSION_CONTROL_BLOCK::lpszMethod.
937 LPCSTR GetRequestMethod()
938 {
939 ATLENSURE(m_pECB);
940 return m_pECB->lpszMethod;
941 }
942
943 // Returns a nul-terminated string that contains the query information.
944 // This is the part of the URL that appears after the question mark (?).
945 // Equivalent to the QUERY_STRING server variable or EXTENSION_CONTROL_BLOCK::lpszQueryString.
946 LPCSTR GetQueryString()
947 {
948 ATLENSURE(m_pECB);
949 return m_pECB->lpszQueryString;
950 }
951
952 // Returns a nul-terminated string that contains the path of the current request.
953 // This is the part of the URL that appears after the server name, but before the query string.
954 // Equivalent to the PATH_INFO server variable or EXTENSION_CONTROL_BLOCK::lpszPathInfo.
955 LPCSTR GetPathInfo()
956 {
957 ATLENSURE(m_pECB);
958 return m_pECB->lpszPathInfo;
959 }
960
961 // Call this function to retrieve a nul-terminated string containing the physical path of the script.
962 //
963 // Returns TRUE on success, and FALSE on failure. Call GetLastError to get extended error information.
964 //
965 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
966 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the
967 // buffer (including the nul-terminating byte).
968 // The script path is the same as GetPathTranslated up to the first .srf or .dll.
969 // For example, if GetPathTranslated returns "c:\inetpub\vcisapi\hello.srf\goodmorning",
970 // then this function returns "c:\inetpub\vcisapi\hello.srf".
971 LPCSTR GetScriptPathTranslated()
972 {
973 ATLASSUME(m_pECB);
974 return m_strScriptPathTranslated;
975 }
976
977
978 // Returns a nul-terminated string that contains the translated path of the requested resource.
979 // This is the path of the resource on the local server.
980 // Equivalent to the PATH_TRANSLATED server variable or EXTENSION_CONTROL_BLOCK::lpszPathTranslated.
981 LPCSTR GetPathTranslated()
982 {
983 ATLENSURE(m_pECB);
984 return m_pECB->lpszPathTranslated;
985 }
986
987 // Returns the total number of bytes to be received from the client.
988 // If this value is 0xffffffff, then there are four gigabytes or more of available data.
989 // In this case, ReadClient or AsyncReadClient should be called until no more data is returned.
990 // Equivalent to the CONTENT_LENGTH server variable or EXTENSION_CONTROL_BLOCK::cbTotalBytes.
991 DWORD GetTotalBytes()
992 {
993 ATLENSURE(m_pECB);
994 return m_pECB->cbTotalBytes;
995 }
996
997 // Returns the number of bytes available in the request buffer accessible via GetAvailableData.
998 // If GetAvailableBytes returns the same value as GetTotalBytes, the request buffer contains the whole request.
999 // Otherwise, the remaining data should be read from the client using ReadClient or AsyncReadClient.
1000 // Equivalent to EXTENSION_CONTROL_BLOCK::cbAvailable.
1001 DWORD GetAvailableBytes()
1002 {
1003 ATLENSURE(m_pECB);
1004 return m_pECB->cbAvailable;
1005 }
1006
1007 // Returns a pointer to the request buffer containing the data sent by the client.
1008 // The size of the buffer can be determined by calling GetAvailableBytes.
1009 // Equivalent to EXTENSION_CONTROL_BLOCK::lpbData
1010 BYTE *GetAvailableData()
1011 {
1012 ATLENSURE(m_pECB);
1013 return m_pECB->lpbData;
1014 }
1015
1016 // Returns a nul-terminated string that contains the content type of the data sent by the client.
1017 // Equivalent to the CONTENT_TYPE server variable or EXTENSION_CONTROL_BLOCK::lpszContentType.
1018 LPCSTR GetContentType()
1019 {
1020 ATLENSURE(m_pECB);
1021 return m_pECB->lpszContentType;
1022 }
1023
1024 // Call this function to retrieve a nul-terminated string containing the value of the requested server variable.
1025 // Returns TRUE on success, and FALSE on failure. Call GetLastError to get extended error information.
1026 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
1027 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
1028 // Equivalent to EXTENSION_CONTROL_BLOCK::GetServerVariable.
1029 __checkReturn BOOL GetServerVariable(
1030 __in LPCSTR pszVariableName,
1031 __out_ecount_part(*pdwSize,*pdwSize) LPSTR pvBuffer,
1032 __inout DWORD *pdwSize)
1033 {
1034 ATLENSURE(m_pECB);
1035 ATLASSERT(pszVariableName);
1036 ATLASSERT(pdwSize);
1037
1038 if (pszVariableName && pdwSize)
1039 {
1040 return m_pECB->GetServerVariable(m_pECB->ConnID, (LPSTR) pszVariableName,
1041 pvBuffer, pdwSize);
1042 }
1043 return FALSE;
1044 }
1045
1046 // Synchronously sends the data present in the given buffer to the client that made the request.
1047 // Returns TRUE on success, and FALSE on failure. Call GetLastError to get extended error information.
1048 // Equivalent to EXTENSION_CONTROL_BLOCK::WriteClient(..., HSE_IO_SYNC).
1049 __checkReturn BOOL WriteClient(__in_bcount(*pdwBytes) void *pvBuffer, __inout DWORD *pdwBytes)
1050 {
1051 ATLENSURE(m_pECB);
1052 ATLASSERT(pvBuffer);
1053 ATLASSERT(pdwBytes);
1054
1055 if (pvBuffer && pdwBytes)
1056 {
1057 return m_pECB->WriteClient(m_pECB->ConnID, pvBuffer, pdwBytes, HSE_IO_SYNC | HSE_IO_NODELAY);
1058 }
1059 return FALSE;
1060 }
1061
1062 // Asynchronously sends the data present in the given buffer to the client that made the request.
1063 // Returns TRUE on success, and FALSE on failure. Call GetLastError to get extended error information.
1064 // Equivalent to EXTENSION_CONTROL_BLOCK::WriteClient(..., HSE_IO_ASYNC).
1065 __checkReturn BOOL AsyncWriteClient(__in_bcount(*pdwBytes) void *pvBuffer, __inout DWORD *pdwBytes)
1066 {
1067 ATLENSURE(m_pECB);
1068 ATLASSERT(pvBuffer);
1069 ATLASSERT(pdwBytes);
1070
1071 if (pvBuffer && pdwBytes)
1072 {
1073 return m_pECB->WriteClient(m_pECB->ConnID, pvBuffer, pdwBytes, HSE_IO_ASYNC | HSE_IO_NODELAY);
1074 }
1075 return FALSE;
1076 }
1077
1078 // Call this function to synchronously read information from the body of the web client's HTTP request into the buffer supplied by the caller.
1079 // Returns TRUE on success, and FALSE on failure. Call GetLastError to get extended error information.
1080 // Equivalent to EXTENSION_CONTROL_BLOCK::ReadClient.
1081 __checkReturn BOOL ReadClient(__out_ecount_part(*pdwSize,*pdwSize) void *pvBuffer, __inout DWORD *pdwSize)
1082 {
1083 ATLENSURE(m_pECB);
1084 ATLASSERT(pvBuffer);
1085 ATLASSERT(pdwSize);
1086
1087 if (pvBuffer && pdwSize)
1088 {
1089 return m_pECB->ReadClient(m_pECB->ConnID, pvBuffer, pdwSize);
1090 }
1091 return FALSE;
1092 }
1093
1094 // Call this function to asynchronously read information from the body of the web client's HTTP request into the buffer supplied by the caller.
1095 // Returns TRUE on success, and FALSE on failure. Call GetLastError to get extended error information.
1096 // Equivalent to the HSE_REQ_ASYNC_READ_CLIENT server support function.
1097 __checkReturn BOOL AsyncReadClient(__out_bcount_part(*pdwSize,*pdwSize) void *pvBuffer, __inout DWORD *pdwSize)
1098 {
1099 // To call this function successfully someone has to have already
1100 // called RequestIOCompletion specifying the callback function
1101 // to be used for IO completion.
1102 ATLENSURE(m_pECB);
1103 ATLASSERT(pvBuffer);
1104 ATLASSERT(pdwSize);
1105
1106 if (pvBuffer && pdwSize)
1107 {
1108 DWORD dwFlag = HSE_IO_ASYNC;
1109 return m_pECB->ServerSupportFunction(m_pECB->ConnID,
1110 HSE_REQ_ASYNC_READ_CLIENT, pvBuffer, pdwSize,
1111 &dwFlag);
1112 }
1113 return FALSE;
1114 }
1115
1116 // Call this function to redirect the client to the specified URL.
1117 // The client receives a 302 (Found) HTTP status code.
1118 // Returns TRUE on success, and FALSE on failure.
1119 // Equivalent to the HSE_REQ_SEND_URL_REDIRECT_RESP server support function.
1120 __checkReturn BOOL SendRedirectResponse(__in LPCSTR pszRedirectUrl)
1121 {
1122 ATLENSURE(m_pECB);
1123 ATLENSURE(pszRedirectUrl);
1124
1125 if (pszRedirectUrl)
1126 {
1127 DWORD dwSize = (DWORD) strlen(pszRedirectUrl);
1128 return m_pECB->ServerSupportFunction(m_pECB->ConnID,
1129 HSE_REQ_SEND_URL_REDIRECT_RESP,
1130 (void *) pszRedirectUrl, &dwSize, NULL);
1131 }
1132 return FALSE;
1133 }
1134
1135 // Call this function to retrieve a handle to the impersonation token for this request.
1136 // An impersonation token represents a user context. You can use the handle in calls to ImpersonateLoggedOnUser or SetThreadToken.
1137 // Do not call CloseHandle on the handle.
1138 // Returns TRUE on success, and FALSE on failure.
1139 // Equivalent to the HSE_REQ_GET_IMPERSONATION_TOKEN server support function.
1140 __checkReturn BOOL GetImpersonationToken(__out HANDLE * pToken)
1141 {
1142 ATLENSURE(m_pECB);
1143 if (pToken)
1144 {
1145 return m_pECB->ServerSupportFunction(m_pECB->ConnID,
1146 HSE_REQ_GET_IMPERSONATION_TOKEN, pToken,
1147 NULL, NULL);
1148 }
1149 return FALSE;
1150 }
1151
1152 // Call this function to send an HTTP response header to the client including the HTTP status, server version, message time, and MIME version.
1153 // Returns TRUE on success, and FALSE on failure.
1154 // Equivalent to the HSE_REQ_SEND_RESPONSE_HEADER_EX server support function.
1155 __checkReturn BOOL SendResponseHeader(
1156 __in LPCSTR pszHeader = "Content-Type: text/html\r\n\r\n",
1157 __in LPCSTR pszStatusCode = "200 OK",
1158 __in BOOL fKeepConn=FALSE)
1159 {
1160 ATLENSURE(m_pECB);
1161
1162 if (m_bHeadersHaveBeenSent)
1163 return TRUE;
1164
1165 HSE_SEND_HEADER_EX_INFO hex;
1166 hex.pszStatus = pszStatusCode;
1167 hex.pszHeader = pszHeader;
1168 hex.cchStatus = (DWORD)(pszStatusCode ? strlen(pszStatusCode) : 0);
1169 hex.cchHeader = (DWORD)(pszHeader ? strlen(pszHeader) : 0);
1170 hex.fKeepConn = fKeepConn;
1171
1172 m_bHeadersHaveBeenSent = true;
1173
1174 return m_pECB->ServerSupportFunction(m_pECB->ConnID,
1175 HSE_REQ_SEND_RESPONSE_HEADER_EX,
1176 &hex, NULL, NULL);
1177 }
1178
1179 // Call this function to terminate the session for the current request.
1180 // Returns TRUE on success, and FALSE on failure.
1181 // Equivalent to the HSE_REQ_DONE_WITH_SESSION server support function.
1182 __checkReturn BOOL DoneWithSession(__in DWORD dwHttpStatusCode)
1183 {
1184 ATLENSURE(m_pECB);
1185
1186 m_pECB->dwHttpStatusCode = dwHttpStatusCode;
1187
1188 DWORD dwStatusCode = (dwHttpStatusCode >= 400) ? HSE_STATUS_ERROR : HSE_STATUS_SUCCESS;
1189
1190 return m_pECB->ServerSupportFunction(m_pECB->ConnID,
1191 HSE_REQ_DONE_WITH_SESSION, &dwStatusCode, NULL, NULL);
1192 }
1193
1194 // Call this function to set a special callback function that will be used for handling the completion of asynchronous I/O operations.
1195 // Returns TRUE on success, and FALSE on failure.
1196 // Equivalent to the HSE_REQ_IO_COMPLETION server support function.
1197 __checkReturn BOOL RequestIOCompletion(__in PFN_HSE_IO_COMPLETION pfn, DWORD *pdwContext)
1198 {
1199 ATLENSURE(m_pECB);
1200 ATLASSERT(pfn);
1201
1202 if (pfn)
1203 {
1204 return m_pECB->ServerSupportFunction(m_pECB->ConnID,
1205 HSE_REQ_IO_COMPLETION, pfn, NULL, pdwContext);
1206 }
1207 return FALSE;
1208 }
1209
1210 // Call this function to transmit a file asynchronously to the client.
1211 // Returns TRUE on success, and FALSE on failure.
1212 // Equivalent to the HSE_REQ_TRANSMIT_FILE server support function.
1213 BOOL TransmitFile(
1214 __in HANDLE hFile,
1215 __in_opt PFN_HSE_IO_COMPLETION pfn,
1216 void *pContext,
1217 __in LPCSTR szStatusCode,
1218 __in DWORD dwBytesToWrite,
1219 __in DWORD dwOffset,
1220 __in_bcount_opt(dwHeadLen) void *pvHead,
1221 __in DWORD dwHeadLen,
1222 __in_bcount_opt(dwTailLen) void *pvTail,
1223 __in DWORD dwTailLen,
1224 __in DWORD dwFlags)
1225 {
1226 ATLENSURE(m_pECB);
1227
1228 HSE_TF_INFO tf;
1229 tf.hFile = hFile;
1230 tf.BytesToWrite = dwBytesToWrite;
1231 tf.Offset = dwOffset;
1232 tf.pContext = pContext;
1233 tf.pfnHseIO = pfn;
1234 tf.pHead = pvHead;
1235 tf.HeadLength = dwHeadLen;
1236 tf.pTail = pvTail;
1237 tf.TailLength = dwTailLen;
1238 tf.pszStatusCode = szStatusCode;
1239 tf.dwFlags = dwFlags;
1240 return m_pECB->ServerSupportFunction(m_pECB->ConnID,
1241 HSE_REQ_TRANSMIT_FILE, &tf, NULL, NULL);
1242 }
1243
1244 // Appends the string szMessage to the web server log for the current
1245 // request.
1246 // Returns TRUE on success, FALSE on failure.
1247 // Equivalent to the HSE_APPEND_LOG_PARAMETER server support function.
1248 BOOL AppendToLog(__in LPCSTR szMessage, __in_opt DWORD *pdwLen)
1249 {
1250 DWORD dwLen = 0;
1251 if (!pdwLen)
1252 {
1253 if(!szMessage)
1254 {
1255 return FALSE;
1256 }
1257 dwLen = (DWORD)strlen(szMessage);
1258 }
1259 else
1260 {
1261 dwLen = *pdwLen;
1262 }
1263
1264 return m_pECB->ServerSupportFunction(m_pECB->ConnID,
1265 HSE_APPEND_LOG_PARAMETER, (void *)szMessage,
1266 &dwLen, NULL);
1267 }
1268
1269 // Maps a logical Url Path to a physical path
1270 // Returns TRUE on success, FALSE on failure.
1271 // Equivalent to the HSE_REQ_MAP_URL_TO_PATH_EX server support function.
1272 // you can pass 0 for dwLen if szLogicalPath is null terminated
1273 BOOL MapUrlToPathEx(__in_bcount(dwLen) LPCSTR szLogicalPath, __in DWORD dwLen, __out HSE_URL_MAPEX_INFO *pumInfo)
1274 {
1275 ATLENSURE(m_pECB!=NULL);
1276 if (dwLen == 0)
1277 dwLen = (DWORD) strlen(szLogicalPath);
1278 return m_pECB->ServerSupportFunction(m_pECB->ConnID, HSE_REQ_MAP_URL_TO_PATH_EX, (void *) szLogicalPath,
1279 &dwLen, (DWORD *) pumInfo);
1280 }
1281
1282 protected:
1283 // The pointer to the extension control block provided by IIS.
1284 EXTENSION_CONTROL_BLOCK *m_pECB;
1285 bool m_bHeadersHaveBeenSent;
1286
1287 // The translated script path
1288 CFixedStringT<CStringA, MAX_PATH> m_strScriptPathTranslated;
1289
1290 }; // class CServerContext
1291
1292 class CPageCachePeer
1293 {
1294 public:
1295
1296 struct PeerInfo
1297 {
1298 CStringA strHeader;
1299 CStringA strStatus;
1300 };
1301
1302 static BOOL Add(__inout PeerInfo * pDest, __in PeerInfo * pSrc) throw()
1303 {
1304 _ATLTRY
1305 {
1306 PeerInfo *pIn = (PeerInfo *)pSrc;
1307 pDest->strHeader = pIn->strHeader;
1308 pDest->strStatus = pIn->strStatus;
1309 return TRUE;
1310 }
1311 _ATLCATCHALL()
1312 {
1313 return FALSE;
1314 }
1315 }
1316
1317 static BOOL Remove(const PeerInfo * /*pDest*/) throw()
1318 {
1319 return TRUE;
1320 }
1321 };
1322
1323
1324 class CCacheServerContext :
1325 public CComObjectRootEx<CComMultiThreadModel>,
1326 public CWrappedServerContext,
1327 public IPageCacheControl
1328 {
1329 private:
1330
1331 CAtlTemporaryFile m_cacheFile;
1332 CComPtr<IFileCache> m_spCache;
1333 char m_szFullUrl[ATL_URL_MAX_URL_LENGTH + 1];
1334 FILETIME m_ftExpiration;
1335 BOOL m_bIsCached;
1336 CPageCachePeer::PeerInfo m_Headers;
1337
1338 public:
1339
1340 BEGIN_COM_MAP(CCacheServerContext)
1341 COM_INTERFACE_ENTRY(IHttpServerContext)
1342 COM_INTERFACE_ENTRY(IPageCacheControl)
1343 END_COM_MAP()
1344
1345 CCacheServerContext() throw()
1346 {
1347 }
1348 virtual ~CCacheServerContext() throw()
1349 {
1350 }
1351
1352 BOOL Initialize(__in IHttpServerContext *pParent, __in IFileCache *pCache) throw()
1353 {
1354 ATLASSERT(pParent);
1355 ATLASSERT(pCache);
1356
1357 if (pParent == NULL || pCache == NULL)
1358 return FALSE;
1359
1360 m_spParent = pParent;
1361 m_spCache = pCache;
1362
1363 if (FAILED(m_cacheFile.Create()))
1364 return FALSE;
1365
1366 LPCSTR szPathInfo = pParent->GetPathInfo();
1367 LPCSTR szQueryString = pParent->GetQueryString();
1368 if ( szPathInfo == NULL || szQueryString == NULL)
1369 return FALSE;
1370
1371 LPSTR szTo = m_szFullUrl;
1372 int nSize = 0;
1373 while (*szPathInfo && nSize < ATL_URL_MAX_URL_LENGTH)
1374 {
1375 *szTo++ = *szPathInfo++;
1376 nSize++;
1377 }
1378 if (nSize >= ATL_URL_MAX_URL_LENGTH)
1379 {
1380 return FALSE;
1381 }
1382 *szTo++ = '?';
1383 nSize++;
1384 while (*szQueryString && nSize < ATL_URL_MAX_URL_LENGTH)
1385 {
1386 *szTo++ = *szQueryString++;
1387 nSize++;
1388 }
1389 if (nSize >= ATL_URL_MAX_URL_LENGTH)
1390 {
1391 return FALSE;
1392 }
1393 *szTo = '\0';
1394
1395 memset(&m_ftExpiration, 0x00, sizeof(FILETIME));
1396 m_bIsCached = TRUE;
1397
1398 return TRUE;
1399 }
1400
1401 // IPageCacheControl methods
1402 HRESULT GetExpiration(__out FILETIME *pftExpiration) throw()
1403 {
1404 ATLASSERT(pftExpiration);
1405 if (!pftExpiration)
1406 return E_INVALIDARG;
1407
1408 *pftExpiration = m_ftExpiration;
1409
1410 return S_OK;
1411 }
1412
1413 HRESULT SetExpiration(__in FILETIME ftExpiration) throw()
1414 {
1415 m_ftExpiration = ftExpiration;
1416
1417 return S_OK;
1418 }
1419
1420 __checkReturn BOOL IsCached() throw()
1421 {
1422 return m_bIsCached;
1423 }
1424
1425 BOOL Cache(__in BOOL bCache) throw()
1426 {
1427 BOOL bRet = m_bIsCached;
1428 m_bIsCached = bCache;
1429 return bRet;
1430 }
1431
1432 __checkReturn BOOL WriteClient(__in_bcount(*pdwBytes) void *pvBuffer, __inout DWORD *pdwBytes)
1433 {
1434 ATLENSURE(pvBuffer);
1435 ATLENSURE(pdwBytes);
1436
1437 if (S_OK != m_cacheFile.Write(pvBuffer, *pdwBytes))
1438 return FALSE;
1439 ATLENSURE(m_spParent);
1440 return m_spParent->WriteClient(pvBuffer, pdwBytes);
1441 }
1442
1443 __checkReturn BOOL DoneWithSession(__in DWORD dwHttpStatusCode)
1444 {
1445 ATLENSURE(m_spParent);
1446
1447 _ATLTRY
1448 {
1449 if (m_bIsCached)
1450 {
1451 CT2CA strFileName(m_cacheFile.TempFileName());
1452 m_cacheFile.HandsOff();
1453 m_spCache->AddFile(m_szFullUrl, strFileName, &m_ftExpiration, &m_Headers, NULL);
1454 }
1455 else
1456 m_cacheFile.Close();
1457 }
1458 _ATLCATCHALL()
1459 {
1460 m_cacheFile.Close();
1461 }
1462
1463 return m_spParent->DoneWithSession(dwHttpStatusCode);
1464 }
1465
1466 __checkReturn BOOL GetImpersonationToken(__out HANDLE * pToken)
1467 {
1468 ATLTRACE(atlTraceISAPI, 0, _T("Getting impersonation token for cached page")
1469 _T(" -- Caching a page that requires special privileges to build is a possible security problem. ")
1470 _T("Future hits may get a cached page without going through the security checks done during the page creation process"));
1471 ATLENSURE(m_spParent);
1472 ATLASSERT(pToken);
1473 return m_spParent->GetImpersonationToken(pToken);
1474 }
1475
1476 __checkReturn BOOL AppendToLog(__in LPCSTR szMessage, __in_opt DWORD* pdwLen)
1477 {
1478 ATLTRACE(atlTraceISAPI, 0, _T("Logging on cached page -- future hits will not log"));
1479 ATLENSURE(m_spParent);
1480 return m_spParent->AppendToLog(szMessage, pdwLen);
1481 }
1482
1483 __checkReturn BOOL SendResponseHeader(
1484 __in LPCSTR pszHeader = "Content-Type: text/html\r\n\r\n",
1485 __in LPCSTR pszStatusCode = "200 OK",
1486 __in BOOL fKeepConn=FALSE)
1487 {
1488 ATLENSURE(m_spParent);
1489
1490 m_Headers.strHeader = pszHeader;
1491 m_Headers.strStatus = pszStatusCode;
1492
1493 return m_spParent->SendResponseHeader(pszHeader, pszStatusCode, fKeepConn);
1494 }
1495
1496 // The methods below this point are actions that should not be performed on cached
1497 // pages, as they will not behave correctly.
1498 __checkReturn BOOL AsyncWriteClient(void * /*pvBuffer*/, DWORD * /*pdwBytes*/)
1499 {
1500 // Asynchronous calls will not work
1501 ATLASSERT(FALSE);
1502 return FALSE;
1503 }
1504
1505 __checkReturn BOOL ReadClient(void * /*pvBuffer*/, DWORD * /*pdwSize*/)
1506 {
1507 // Nobody should be reading from this client if the page is being cached
1508 // Also, only GET's are cached anyway
1509 ATLASSERT(FALSE);
1510 return FALSE;
1511 }
1512
1513 __checkReturn BOOL AsyncReadClient(void * /*pvBuffer*/, DWORD * /*pdwSize*/)
1514 {
1515 ATLASSERT(FALSE);
1516 return FALSE;
1517 }
1518
1519 __checkReturn BOOL SendRedirectResponse(LPCSTR /*pszRedirectUrl*/)
1520 {
1521 ATLASSERT(FALSE);
1522 return FALSE;
1523 }
1524
1525
1526 __checkReturn BOOL RequestIOCompletion(PFN_HSE_IO_COMPLETION /*pfn*/, DWORD * /*pdwContext*/)
1527 {
1528 ATLASSERT(FALSE);
1529 return FALSE;
1530 }
1531
1532 __checkReturn BOOL TransmitFile(
1533 HANDLE /*hFile*/,
1534 PFN_HSE_IO_COMPLETION /*pfn*/,
1535 void * /*pContext*/,
1536 LPCSTR /*szStatusCode*/,
1537 DWORD /*dwBytesToWrite*/,
1538 DWORD /*dwOffset*/,
1539 void * /*pvHead*/,
1540 DWORD /*dwHeadLen*/,
1541 void * /*pvTail*/,
1542 DWORD /*dwTailLen*/,
1543 DWORD /*dwFlags*/)
1544 {
1545 ATLASSERT(FALSE);
1546 return FALSE;
1547 }
1548 };
1549
1550
1551 // This class represents a collection of validation failures.
1552 // Use this class in combination with CValidateObject to validate
1553 // forms, cookies, or query strings and build up a collection of
1554 // failures. If appropriate, use the information in the collection
1555 // to return detailed responses to the client to help them correct the failures.
1556
1557
1558 class CValidateContext
1559 {
1560 public:
1561 enum { ATL_EMPTY_PARAMS_ARE_FAILURES = 0x00000001 };
1562
1563 CValidateContext(__in DWORD dwFlags=0) throw()
1564 {
1565 m_bFailures = false;
1566 m_dwFlags = dwFlags;
1567 }
1568
1569 bool SetResultAt(__in LPCSTR szName, __in DWORD type)
1570 {
1571 _ATLTRY
1572 {
1573 if (!VALIDATION_SUCCEEDED(type) ||
1574 (type == VALIDATION_S_EMPTY && (m_dwFlags & ATL_EMPTY_PARAMS_ARE_FAILURES)))
1575 m_bFailures = true;
1576
1577 return TRUE == m_results.SetAt(szName,type);
1578
1579 }
1580 _ATLCATCHALL()
1581 {
1582 }
1583
1584 return false;
1585 }
1586
1587 // Call this function to add a validation result to the collection managed by this object.
1588 // Each result is identified by a name and the type of result that occurred.
1589 // The result codes are the VALIDATION_ codes defined at the top of this file.
1590 // The bOnlyFailure parameter below is used to only allow failure results to
1591 // be added to the list of failures. The reason you'd want to do this is that
1592 // success codes should be the common case in validation routines so you can
1593 // use bOnlyFailures to limit the number of allocations by this class's base
1594 // map for mapping success results if you don't care about iterating successes.
1595
1596 bool AddResult(__in LPCSTR szName, __in DWORD type, __in bool bOnlyFailures = true) throw()
1597 {
1598 _ATLTRY
1599 {
1600 if (!VALIDATION_SUCCEEDED(type) ||
1601 (type == VALIDATION_S_EMPTY && (m_dwFlags & ATL_EMPTY_PARAMS_ARE_FAILURES)))
1602 m_bFailures = true;
1603
1604 if (!bOnlyFailures)
1605 return TRUE == m_results.Add(szName, type); // add everything
1606
1607 else if (bOnlyFailures &&
1608 (!VALIDATION_SUCCEEDED(type) ||
1609 (type == VALIDATION_S_EMPTY && (m_dwFlags & ATL_EMPTY_PARAMS_ARE_FAILURES))))
1610 return TRUE == m_results.Add(szName, type); // only add failures
1611 }
1612 _ATLCATCHALL()
1613 {
1614 }
1615
1616 return false;
1617 }
1618
1619 // Returns true if there are no validation failures in the collection,
1620 // returns false otherwise.
1621 __checkReturn bool ParamsOK() throw()
1622 {
1623 return !m_bFailures;
1624 }
1625
1626 // Returns the number of validation results in the collection.
1627 __checkReturn int GetResultCount() throw()
1628 {
1629 return m_results.GetSize();
1630 }
1631
1632 // Call this function to retrieve the name and type of a
1633 // validation result based on its index in the collection.
1634 // Returns true on success, false on failure.
1635 //
1636 // i The index of a result managed by this collection.
1637 //
1638 // strName On success, the name of the result with index i.
1639 //
1640 // type On success, the type of the result with index i.
1641 __checkReturn bool GetResultAt(__in int i, __out CStringA& strName, __out DWORD& type) throw()
1642 {
1643 if ( i >= 0 && i < m_results.GetSize())
1644 {
1645 _ATLTRY
1646 {
1647 strName = m_results.GetKeyAt(i);
1648 type = m_results.GetValueAt(i);
1649 }
1650 _ATLCATCHALL()
1651 {
1652 return false;
1653 }
1654 return true;
1655 }
1656 return false;
1657 }
1658
1659 DWORD m_dwFlags;
1660 protected:
1661 CSimpleMap<CStringA, DWORD> m_results;
1662 bool m_bFailures;
1663 }; // CValidateContext
1664
1665
1666
1667 class CAtlValidator
1668 {
1669 public:
1670 template <class T, class TCompType>
1671 static DWORD Validate(
1672 __in T value,
1673 __in TCompType nMinValue,
1674 __in TCompType nMaxValue) throw()
1675 {
1676 DWORD dwRet = VALIDATION_S_OK;
1677 if (value < static_cast<T>(nMinValue))
1678 dwRet = VALIDATION_E_LENGTHMIN;
1679 else if (value > static_cast<T>(nMaxValue))
1680 dwRet = VALIDATION_E_LENGTHMAX;
1681 return dwRet;
1682 }
1683
1684 static DWORD Validate( __in LPCSTR pszValue, __in int nMinChars, __in int nMaxChars) throw()
1685 {
1686 DWORD dwRet = VALIDATION_S_OK;
1687 if(!pszValue)
1688 {
1689 return VALIDATION_E_FAIL;
1690 }
1691 int nChars = (int) strlen(pszValue);
1692 if (nChars < nMinChars)
1693 dwRet = VALIDATION_E_LENGTHMIN;
1694 else if (nChars > nMaxChars)
1695 dwRet = VALIDATION_E_LENGTHMAX;
1696 return dwRet;
1697 }
1698 static DWORD Validate( __in double dblValue, __in double dblMinValue, __in double dblMaxValue) throw()
1699 {
1700 DWORD dwRet = VALIDATION_S_OK;
1701 if ( dblValue < (dblMinValue - ATL_EPSILON) )
1702 dwRet = VALIDATION_E_LENGTHMIN;
1703 else if ( dblValue > (dblMaxValue + ATL_EPSILON) )
1704 dwRet = VALIDATION_E_LENGTHMAX;
1705 return dwRet;
1706 }
1707 };
1708
1709 // This class provides functions for retrieving and validating named values.
1710 //
1711 // The named values are expected to be provided in string form by the class used as
1712 // the template parameter. CValidateObject provides the means of
1713 // retrieving these values converted to data types chosen by you. You can validate the values
1714 // by specifying a range for numeric values or by specifying a minimum and maximum length
1715 // for string values.
1716 //
1717 // Call one of the Exchange overloads to retrieve a named value converted to your chosen data type.
1718 // Call one of the Validate overloads to retrieve a named value converted to your chosen data type
1719 // and validated against a minimum and maximum value or length supplied by you.
1720 //
1721 // To add validation functionality to the class TLookupClass, derive that class from CValidateObject<TLookupClass>
1722 // and provide a Lookup function that takes a name as a string and returns the corresponding value
1723 // also as a string:
1724 // LPCSTR Lookup(LPCSTR szName);
1725 template <class TLookupClass, class TValidator = CAtlValidator>
1726 class CValidateObject
1727 {
1728 public:
1729 // Exchange Routines
1730
1731 // Call this function to retrieve a named value converted to your chosen data type.
1732 // Returns one of the following validation status codes:
1733 // VALIDATION_S_OK The named value was found and could be converted successfully
1734 // VALIDATION_S_EMPTY The name was present, but the value was empty
1735 // VALIDATION_E_PARAMNOTFOUND The named value was not found
1736 // VALIDATION_E_INVALIDPARAM The name was present, but the value could not be converted to the requested data type
1737 // VALIDATION_E_FAIL An unspecified error occurred
1738 // Pass a pointer to a validation context object if you want to add
1739 // failures to the collection managed by that object.
1740 template <class T>
1741 ATL_NOINLINE __checkReturn DWORD Exchange(
1742 __in LPCSTR szParam,
1743 __out T* pValue,
1744 __inout_opt CValidateContext *pContext = NULL) const throw()
1745 {
1746 DWORD dwRet = VALIDATION_E_PARAMNOTFOUND;
1747 if (pValue)
1748 {
1749 _ATLTRY
1750 {
1751 const TLookupClass *pT = static_cast<const TLookupClass*>(this);
1752 LPCSTR szValue = pT->Lookup(szParam);
1753 if (szValue)
1754 {
1755 if (*szValue=='\0')
1756 dwRet = VALIDATION_S_EMPTY;
1757 else
1758 {
1759 dwRet = ConvertNumber(szValue, pValue);
1760 }
1761 }
1762 }
1763 _ATLCATCHALL()
1764 {
1765 return VALIDATION_E_FAIL;
1766 }
1767 }
1768 else
1769 dwRet = VALIDATION_E_FAIL; // invalid input
1770
1771 if (pContext)
1772 pContext->AddResult(szParam, dwRet);
1773 return dwRet;
1774 }
1775
1776 template<>
1777 ATL_NOINLINE __checkReturn DWORD Exchange(
1778 __in LPCSTR szParam,
1779 __out_opt CString* pstrValue,
1780 __in_opt CValidateContext *pContext) const throw()
1781 {
1782 _ATLTRY
1783 {
1784 LPCSTR pszValue = NULL;
1785 DWORD dwRet = VALIDATION_E_PARAMNOTFOUND;
1786 if (pstrValue)
1787 {
1788 dwRet = Exchange(szParam, &pszValue, pContext);
1789 if (VALIDATION_SUCCEEDED(dwRet) && pstrValue != NULL)
1790 *pstrValue = CA2T(pszValue);
1791 }
1792 else
1793 {
1794 dwRet = VALIDATION_E_FAIL; // invalid input
1795 if (pContext)
1796 pContext->AddResult(szParam, dwRet);
1797 }
1798
1799 return dwRet;
1800 }
1801 _ATLCATCHALL()
1802 {
1803 return VALIDATION_E_FAIL;
1804 }
1805 }
1806
1807 template<>
1808 ATL_NOINLINE __checkReturn DWORD Exchange(
1809 __in LPCSTR szParam,
1810 __deref_out_opt LPCSTR* ppszValue,
1811 __inout_opt CValidateContext *pContext) const throw()
1812 {
1813 DWORD dwRet = VALIDATION_E_PARAMNOTFOUND;
1814 if (ppszValue)
1815 {
1816 _ATLTRY
1817 {
1818 *ppszValue = NULL;
1819 const TLookupClass *pT = static_cast<const TLookupClass*>(this);
1820 LPCSTR szValue = pT->Lookup(szParam);
1821 if (szValue)
1822 {
1823 if (*szValue=='\0')
1824 dwRet = VALIDATION_S_EMPTY;
1825 else
1826 {
1827 *ppszValue = szValue;
1828 dwRet = VALIDATION_S_OK;
1829 }
1830 }
1831 }
1832 _ATLCATCHALL()
1833 {
1834 return VALIDATION_E_FAIL;
1835 }
1836 }
1837 else
1838 dwRet = VALIDATION_E_FAIL; // invalid input
1839
1840 if (pContext)
1841 pContext->AddResult(szParam, dwRet);
1842 return dwRet;
1843 }
1844
1845 template<>
1846 ATL_NOINLINE __checkReturn DWORD Exchange(
1847 __in LPCSTR szParam,
1848 __out GUID* pValue,
1849 __inout_opt CValidateContext *pContext) const throw()
1850 {
1851 DWORD dwRet = VALIDATION_E_PARAMNOTFOUND;
1852 if (pValue)
1853 {
1854 _ATLTRY
1855 {
1856 const TLookupClass *pT = static_cast<const TLookupClass*>(this);
1857 LPCSTR szValue = pT->Lookup(szParam);
1858 if (szValue)
1859 {
1860 if (*szValue=='\0')
1861 dwRet = VALIDATION_S_EMPTY;
1862 else
1863 {
1864 if (S_OK != CLSIDFromString(CA2W(szValue), pValue))
1865 {
1866 dwRet = VALIDATION_E_INVALIDPARAM;
1867 }
1868 else
1869 dwRet = VALIDATION_S_OK;
1870 }
1871 }
1872 }
1873 _ATLCATCHALL()
1874 {
1875 return VALIDATION_E_FAIL;
1876 }
1877 }
1878 else
1879 dwRet = VALIDATION_E_FAIL; // invalid input
1880
1881 if (pContext)
1882 pContext->AddResult(szParam, dwRet);
1883 return dwRet;
1884 }
1885
1886 template<>
1887 ATL_NOINLINE __checkReturn DWORD Exchange(
1888 __in LPCSTR szParam,
1889 __out bool* pbValue,
1890 __inout_opt CValidateContext *pContext) const throw()
1891 {
1892 DWORD dwRet = VALIDATION_S_OK;
1893 if (pbValue)
1894 {
1895 _ATLTRY
1896 {
1897 const TLookupClass *pT = static_cast<const TLookupClass*>(this);
1898 LPCSTR szValue = pT->Lookup(szParam);
1899 *pbValue = false;
1900 if (szValue)
1901 {
1902 if (*szValue != '\0')
1903 *pbValue = true;
1904 }
1905 }
1906 _ATLCATCHALL()
1907 {
1908 return VALIDATION_E_FAIL;
1909 }
1910 }
1911 else
1912 dwRet = VALIDATION_E_FAIL; // invalid input
1913
1914 if (pContext)
1915 pContext->AddResult(szParam, dwRet);
1916
1917 return dwRet;
1918 }
1919
1920 __checkReturn DWORD ConvertNumber(__in LPCSTR szVal, __out ULONGLONG *pnVal) const throw()
1921 {
1922 if (!szVal)
1923 return VALIDATION_E_FAIL;
1924
1925 ATLASSERT(pnVal);
1926 if (!pnVal)
1927 return VALIDATION_E_FAIL;
1928 char *pEnd = NULL;
1929 ULONGLONG n = 0;
1930 errno_t errnoValue = AtlStrToNum(&n, szVal, &pEnd, 10);
1931 if (pEnd == szVal || errnoValue == ERANGE)
1932 {
1933 return VALIDATION_E_INVALIDPARAM;
1934 }
1935 *pnVal = n;
1936 return VALIDATION_S_OK;
1937 }
1938
1939 __checkReturn DWORD ConvertNumber(__in LPCSTR szVal, __out LONGLONG *pnVal) const throw()
1940 {
1941 if (!szVal)
1942 return VALIDATION_E_FAIL;
1943
1944 ATLASSERT(pnVal);
1945 if (!pnVal)
1946 return VALIDATION_E_FAIL;
1947 char *pEnd = NULL;
1948 LONGLONG n = 0;
1949 errno_t errnoValue = AtlStrToNum(&n, szVal, &pEnd, 10);
1950 if (pEnd == szVal || errnoValue == ERANGE)
1951 {
1952 return VALIDATION_E_INVALIDPARAM;
1953 }
1954 *pnVal = n;
1955 return VALIDATION_S_OK;
1956 }
1957
1958 __checkReturn DWORD ConvertNumber(__in LPCSTR szVal, __out double *pdblVal) const throw()
1959 {
1960 if (!szVal)
1961 return VALIDATION_E_FAIL;
1962
1963 ATLASSERT(pdblVal);
1964 if (!pdblVal)
1965 return VALIDATION_E_FAIL;
1966 char *pEnd = NULL;
1967 double d = 0.0;
1968 errno_t errnoValue = AtlStrToNum(&d, szVal, &pEnd);
1969 if (pEnd == szVal || errnoValue == ERANGE)
1970 {
1971 return VALIDATION_E_INVALIDPARAM;
1972 }
1973 *pdblVal = d;
1974 return VALIDATION_S_OK;
1975 }
1976
1977 __checkReturn DWORD ConvertNumber(__in LPCSTR szVal, __out int *pnVal) const throw()
1978 {
1979 return ConvertNumber(szVal, (long*)pnVal);
1980 }
1981
1982 __checkReturn DWORD ConvertNumber(__in LPCSTR szVal, __out unsigned int *pnVal) const throw()
1983 {
1984 return ConvertNumber(szVal, (unsigned long*)pnVal);
1985 }
1986
1987 __checkReturn DWORD ConvertNumber(__in LPCSTR szVal, __out long *pnVal) const throw()
1988 {
1989 if (!szVal)
1990 return VALIDATION_E_FAIL;
1991
1992 ATLASSERT(pnVal);
1993 if (!pnVal)
1994 return VALIDATION_E_FAIL;
1995 char *pEnd = NULL;
1996 long n = 0;
1997 errno_t errnoValue = AtlStrToNum(&n, szVal, &pEnd, 10);
1998 if (pEnd == szVal || errnoValue == ERANGE)
1999 {
2000 return VALIDATION_E_INVALIDPARAM;
2001 }
2002 *pnVal = n;
2003 return VALIDATION_S_OK;
2004 }
2005
2006 __checkReturn DWORD ConvertNumber(__in LPCSTR szVal, __out unsigned long *pnVal) const throw()
2007 {
2008 if (!szVal)
2009 return VALIDATION_E_FAIL;
2010
2011 ATLASSERT(pnVal);
2012 if (!pnVal)
2013 return VALIDATION_E_FAIL;
2014 char *pEnd = NULL;
2015 unsigned long n = 0;
2016 errno_t errnoValue = AtlStrToNum(&n, szVal, &pEnd, 10);
2017 if (pEnd == szVal || errnoValue == ERANGE)
2018 {
2019 return VALIDATION_E_INVALIDPARAM;
2020 }
2021 *pnVal = n;
2022 return VALIDATION_S_OK;
2023 }
2024
2025 __checkReturn DWORD ConvertNumber(__in LPCSTR szVal, __out short *pnVal) const throw()
2026 {
2027 if (!szVal)
2028 return VALIDATION_E_FAIL;
2029
2030 ATLASSERT(pnVal);
2031 if (!pnVal)
2032 return VALIDATION_E_FAIL;
2033 long nVal = 0;
2034 DWORD dwRet = ConvertNumber(szVal, &nVal);
2035 if (dwRet == VALIDATION_S_OK)
2036 {
2037 // clamp to the size of a short
2038 if(nVal <= SHRT_MAX &&
2039 nVal >= SHRT_MIN)
2040 {
2041 *pnVal = (short)nVal;
2042 }
2043 else
2044 {
2045 dwRet = VALIDATION_E_INVALIDPARAM;
2046 }
2047 }
2048 return dwRet;
2049 };
2050
2051 __checkReturn DWORD ConvertNumber(__in LPCSTR szVal, __out unsigned short *pnVal) const throw()
2052 {
2053 if (!szVal)
2054 return VALIDATION_E_FAIL;
2055
2056 ATLASSERT(pnVal);
2057 if (!pnVal)
2058 return VALIDATION_E_FAIL;
2059 unsigned long nVal = 0;
2060 DWORD dwRet = ConvertNumber(szVal, &nVal);
2061 if (dwRet == VALIDATION_S_OK)
2062 {
2063 // clamp to the size of a short
2064 if(nVal <= USHRT_MAX &&
2065 nVal >= 0)
2066 {
2067 *pnVal = (unsigned short)nVal;
2068 }
2069 else
2070 {
2071 dwRet = VALIDATION_E_INVALIDPARAM;
2072 }
2073 }
2074 return dwRet;
2075 };
2076
2077 // Call this function to retrieve a named value converted to your chosen data type
2078 // and validated against a minimum and maximum value or length supplied by you.
2079 //
2080 // Returns one of the following validation status codes:
2081 // VALIDATION_S_OK The named value was found and could be converted successfully
2082 // VALIDATION_S_EMPTY The name was present, but the value was empty
2083 // VALIDATION_E_PARAMNOTFOUND The named value was not found
2084 // VALIDATION_E_INVALIDPARAM The name was present, but the value could not be converted to the requested data type
2085 // VALIDATION_E_LENGTHMIN The name was present and could be converted to the requested data type, but the value was too small
2086 // VALIDATION_E_LENGTHMAX The name was present and could be converted to the requested data type, but the value was too large
2087 // VALIDATION_E_FAIL An unspecified error occurred
2088 //
2089 // Validate can be used to convert and validate name-value pairs
2090 // such as those associated with HTTP requests (query string, form fields, or cookie values).
2091 // The numeric specializations validate the minimum and maximum value.
2092 // The string specializations validate the minimum and maximum length.
2093 //
2094 // Pass a pointer to a validation context object if you want to add
2095 // failures to the collection managed by that object.
2096 //
2097 // Note that you can validate the value of a parameter without
2098 // storing its value by passing NULL for the second parameter. However
2099 // if you pass NULL for the second parameter, make sure you cast the NULL to a
2100 // type so that the compiler will call the correct specialization of Validate.
2101 template <class T, class TCompType>
2102 ATL_NOINLINE __checkReturn DWORD Validate(
2103 __in LPCSTR Param,
2104 __out_opt T *pValue,
2105 __in TCompType nMinValue,
2106 __in TCompType nMaxValue,
2107 __inout_opt CValidateContext *pContext = NULL) const throw()
2108 {
2109 T value;
2110 DWORD dwRet = Exchange(Param, &value, pContext);
2111 if ( dwRet == VALIDATION_S_OK )
2112 {
2113 if (pValue)
2114 *pValue = value;
2115 dwRet = TValidator::Validate(value, nMinValue, nMaxValue);
2116 if (pContext && dwRet != VALIDATION_S_OK)
2117 pContext->AddResult(Param, dwRet);
2118 }
2119 else if (dwRet == VALIDATION_S_EMPTY &&
2120 !IsNullByType(nMinValue))
2121 {
2122 dwRet = VALIDATION_E_LENGTHMIN;
2123 if (pContext)
2124 {
2125 pContext->SetResultAt(Param, VALIDATION_E_LENGTHMIN);
2126 }
2127 }
2128
2129 return dwRet;
2130 }
2131
2132 // Specialization for strings. Comparison is for number of characters.
2133 template<>
2134 ATL_NOINLINE __checkReturn DWORD Validate(
2135 __in LPCSTR Param,
2136 __deref_opt_out LPCSTR* ppszValue,
2137 __in int nMinChars,
2138 __in int nMaxChars,
2139 __inout_opt CValidateContext *pContext) const throw()
2140 {
2141 LPCSTR pszValue = NULL;
2142 DWORD dwRet = Exchange(Param, &pszValue, pContext);
2143 if (dwRet == VALIDATION_S_OK )
2144 {
2145 if (ppszValue)
2146 *ppszValue = pszValue;
2147 dwRet = TValidator::Validate(pszValue, nMinChars, nMaxChars);
2148 if (pContext && dwRet != VALIDATION_S_OK)
2149 pContext->AddResult(Param, dwRet);
2150 }
2151 else if (dwRet == VALIDATION_S_EMPTY &&
2152 nMinChars > 0)
2153 {
2154 dwRet = VALIDATION_E_LENGTHMIN;
2155 if (pContext)
2156 {
2157 pContext->SetResultAt(Param, VALIDATION_E_LENGTHMIN);
2158 }
2159 }
2160
2161
2162 return dwRet;
2163 }
2164
2165 // Specialization for CString so caller doesn't have to cast CString
2166 template<>
2167 ATL_NOINLINE __checkReturn DWORD Validate(
2168 __in LPCSTR Param,
2169 __out_opt CString* pstrValue,
2170 __in int nMinChars,
2171 __in int nMaxChars,
2172 __inout_opt CValidateContext *pContext) const throw()
2173 {
2174 _ATLTRY
2175 {
2176 LPCSTR szValue;
2177 DWORD dwRet = Validate(Param, &szValue, nMinChars, nMaxChars, pContext);
2178 if (pstrValue && dwRet == VALIDATION_S_OK )
2179 *pstrValue = szValue;
2180 return dwRet;
2181 }
2182 _ATLCATCHALL()
2183 {
2184 return VALIDATION_E_FAIL;
2185 }
2186 }
2187
2188 // Specialization for doubles, uses a different comparison.
2189 template<>
2190 ATL_NOINLINE __checkReturn DWORD Validate(
2191 __in LPCSTR Param,
2192 __out_opt double* pdblValue,
2193 __in double dblMinValue,
2194 __in double dblMaxValue,
2195 __inout_opt CValidateContext *pContext) const throw()
2196 {
2197 double dblValue;
2198 DWORD dwRet = Exchange(Param, &dblValue, pContext);
2199 if (dwRet == VALIDATION_S_OK)
2200 {
2201 if (pdblValue)
2202 *pdblValue = dblValue;
2203 dwRet = TValidator::Validate(dblValue, dblMinValue, dblMaxValue);
2204 if (pContext && dwRet != VALIDATION_S_OK)
2205 pContext->AddResult(Param, dwRet);
2206 }
2207 else if (dwRet == VALIDATION_S_EMPTY &&
2208 (dblMinValue < -ATL_EPSILON ||
2209 dblMinValue > ATL_EPSILON))
2210 {
2211 dwRet = VALIDATION_E_LENGTHMIN;
2212 if (pContext)
2213 {
2214 pContext->SetResultAt(Param, VALIDATION_E_LENGTHMIN);
2215 }
2216 }
2217 return dwRet;
2218 }
2219 };
2220
2221 // Cookies provide a way for a server to store a small amount of data on a client
2222 // and have that data returned to it on each request the client makes.
2223 // Use this class to represent a cookie to be sent from the server to a client
2224 // or to represent a cookie that has been returned by a client to the originating server.
2225 //
2226 // At the HTTP level, a cookie is an application-defined name-value pair
2227 // plus some standard attribute-value pairs that describe the way in which the user agent (web browser)
2228 // should interact with the cookie. The HTTP format of a cookie is described in RFC 2109.
2229 //
2230 // The CCookie class provides methods to set and get the application-defined name and value
2231 // as well as methods for the standard attributes. In addition, CCookie provides an abstraction
2232 // on top of the application-defined value that allows it to be treated as a collection of name-value
2233 // pairs if that model makes sense to you. Cookies with a single value are known as single-valued cookies.
2234 // Cookies whose value consists of name-value pairs are known as multi-valued cookies or dictionary cookies.
2235 //
2236 // You can set the name of a cookie by calling SetName or using the appropriate constructor.
2237 // The name of a cookie can be 0 or more characters.
2238 //
2239 // You can set the value of a cookie by calling SetValue or using the appropriate constructor.
2240 // If the cookie has a value set, it is a single-valued cookie and attempts to add a name-value pair will fail.
2241 // You can remove the value of a cookie by calling SetValue(NULL).
2242 //
2243 // You can add a name-value pair to a cookie by calling AddValue.
2244 // If the cookie has any name-value pairs, it is a multi-valued cookie and attempts to set the primary value will fail.
2245 // You can remove all the name-value pairs of a cookie by calling RemoveAllValues.
2246 //
2247 // Class CCookie follows the same rules for creating cookies as ASP does.
2248 class CCookie :
2249 public CValidateObject<CCookie>
2250 {
2251 typedef CAtlMap<CStringA, CStringA, CStringElementTraits<CStringA>,
2252 CStringElementTraits<CStringA> > mapType;
2253
2254 const static DWORD ATLS_MAX_HTTP_DATE = 64;
2255
2256 public:
2257 // Constructs a named cookie.
2258 CCookie(__in LPCSTR szName) throw(...)
2259 {
2260 ATLENSURE(SetName(szName));
2261 }
2262
2263 // Constructs a single-valued cookie.
2264 CCookie(__in LPCSTR szName, __in_opt LPCSTR szValue) throw(...)
2265 {
2266 ATLENSURE(SetName(szName));
2267 ATLENSURE(SetValue(szValue));
2268 }
2269
2270 CCookie(__in const CCookie& thatCookie) throw(...)
2271 {
2272 Copy(thatCookie);
2273 }
2274
2275 CCookie& operator=(__in const CCookie& thatCookie) throw(...)
2276 {
2277 if(this!=&thatCookie)
2278 {
2279 return Copy(thatCookie);
2280 }
2281 return *this;
2282 }
2283
2284 CCookie() throw()
2285 {
2286
2287 }
2288
2289 __checkReturn BOOL IsEmpty() const throw()
2290 {
2291 return m_strName.IsEmpty();
2292 }
2293
2294 // Call this function to set the name of this cookie.
2295 // Returns TRUE on success, FALSE on failure.
2296 // The name of a cookie cannot contain whitespace, semicolons or commas.
2297 // The name should not begin with a dollar sign ($) since such names are reserved for future use.
2298 __checkReturn BOOL SetName(__in LPCSTR szName) throw()
2299 {
2300 _ATLTRY
2301 {
2302 if (szName && *szName)
2303 {
2304 m_strName = szName;
2305 return TRUE;
2306 }
2307 }
2308 _ATLCATCHALL()
2309 {
2310 }
2311 return FALSE;
2312 }
2313
2314 // Call this function to retrieve the name of this cookie.
2315 // Returns TRUE on success, FALSE on failure.
2316 __checkReturn BOOL GetName(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) const throw()
2317 {
2318 return CopyCString(m_strName, szBuff, pdwSize);
2319 }
2320
2321 // Call this function to retrieve the name of this cookie.
2322 // Returns TRUE on success, FALSE on failure.
2323 __checkReturn BOOL GetName(__out CStringA &strName) const throw()
2324 {
2325 _ATLTRY
2326 {
2327 strName = m_strName;
2328 return TRUE;
2329 }
2330 _ATLCATCHALL()
2331 {
2332 }
2333 return FALSE;
2334 }
2335
2336 // Call this function to set the value of this cookie.
2337 // Returns TRUE on success, FALSE on failure.
2338 // Will fail if the cookie is multi-valued.
2339 // Pass NULL to remove the cookie's value.
2340 __checkReturn BOOL SetValue(__in_opt LPCSTR szValue) throw()
2341 {
2342 _ATLTRY
2343 {
2344 if (m_Values.GetCount())
2345 return FALSE; //already dictionary values in the cookie
2346
2347 if (!szValue)
2348 m_strValue.Empty();
2349 else
2350 m_strValue = szValue;
2351
2352 return TRUE;
2353 }
2354 _ATLCATCHALL()
2355 {
2356 }
2357 return FALSE;
2358 }
2359
2360 // Call this function to retrieve the value of this cookie.
2361 // Returns TRUE on success, FALSE on failure.
2362 // Returns TRUE if there is no value or the value is of zero length.
2363 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
2364 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
2365 __checkReturn BOOL GetValue(__out_ecount(*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) const throw()
2366 {
2367 return CopyCString(m_strValue, szBuff, pdwSize);
2368 }
2369
2370 // Call this function to retrieve the value of this cookie.
2371 // Returns TRUE on success, FALSE on failure.
2372 __checkReturn BOOL GetValue(__out CStringA &strValue) const throw()
2373 {
2374 _ATLTRY
2375 {
2376 strValue = m_strValue;
2377 return TRUE;
2378 }
2379 _ATLCATCHALL()
2380 {
2381 }
2382 return FALSE;
2383 }
2384
2385 // Call this function to add a name-value pair to the cookie.
2386 // Returns TRUE on success, FALSE on failure.
2387 // Will fail if the cookie is single-valued.
2388 // If the named value is already present in the cookie, calling this function
2389 // will modify the current value, otherwise a new name-value pair is added to the cookie.
2390 // Call RemoveValue or RemoveAllValues to remove the name-value pairs
2391 // added by this function.
2392 __checkReturn BOOL AddValue(__in LPCSTR szName, __in_opt LPCSTR szValue) throw()
2393 {
2394 if (m_strValue.GetLength())
2395 return FALSE;
2396 _ATLTRY
2397 {
2398 return m_Values.SetAt(szName, szValue) != NULL;
2399 }
2400 _ATLCATCHALL()
2401 {
2402 }
2403 return FALSE;
2404 }
2405
2406 // Call this function to modify a name-value pair associated with the cookie.
2407 // Returns TRUE on success, FALSE on failure.
2408 // Will fail if the cookie is single-valued.
2409 // This function just calls AddValue so the name-value pair will be added if not already present.
2410 // Use this function instead of AddValue to document the intentions of your call.
2411 __checkReturn BOOL ModifyValue(__in LPCSTR szName, __in LPCSTR szValue) throw()
2412 {
2413 return AddValue(szName, szValue);
2414 }
2415
2416 // Call this function to remove a name-value pair from the collection managed by this cookie.
2417 // Returns TRUE on success, FALSE on failure.
2418 __checkReturn BOOL RemoveValue(__in LPCSTR szName) throw()
2419 {
2420 return m_Values.RemoveKey(szName);
2421 }
2422
2423 // Call this function to remove all the name-value pairs from the collection managed by this cookie.
2424 void RemoveAllValues() throw()
2425 {
2426 m_Values.RemoveAll();
2427 }
2428
2429 // Call this function to add an attribute-value pair to the collection of attributes for this cookie.
2430 // Returns TRUE on success, FALSE on failure.
2431 // This function is equivalent to calling ModifyAttribute.
2432 // Both functions will add the attribute if not already present or
2433 // change its value if it has already been applied to the cookie.
2434 __checkReturn BOOL AddAttribute(__in LPCSTR szName, __in LPCSTR szValue) throw()
2435 {
2436 if (!szName || !*szName || !szValue)
2437 return FALSE;
2438
2439 _ATLTRY
2440 {
2441 return (m_Attributes.SetAt(szName, szValue) != NULL);
2442 }
2443 _ATLCATCHALL()
2444 {
2445 }
2446 return FALSE;
2447
2448 }
2449
2450 // Call this function to modify an attribute-value pair associated with the cookie.
2451 // Returns TRUE on success, FALSE on failure.
2452 // This function is equivalent to calling AddAttribute.
2453 // Both functions will add the attribute if not already present or
2454 // change its value if it has already been applied to the cookie.
2455 __checkReturn BOOL ModifyAttribute(__in LPCSTR szName, __in LPCSTR szValue) throw()
2456 {
2457 return AddAttribute(szName, szValue);
2458 }
2459
2460 // Call this function to remove an attribute-value pair from the collection of attributes managed by this cookie.
2461 // Returns TRUE on success, FALSE on failure.
2462 __checkReturn BOOL RemoveAttribute(__in LPCSTR szName) throw()
2463 {
2464 return m_Attributes.RemoveKey(szName);
2465 }
2466
2467 // Call this function to remove all the attribute-value pairs from the collection of attributes managed by this cookie.
2468 void RemoveAllAttributes() throw()
2469 {
2470 m_Attributes.RemoveAll();
2471 }
2472
2473
2474 // Call this function to set the Comment attribute of the cookie.
2475 // Returns TRUE on success, FALSE on failure.
2476 // The Comment attribute allows a web server to document its
2477 // intended use of a cookie. This information may be displayed
2478 // by supporting browsers so that the user of the web site can
2479 // decide whether to initiate or continue a session with this cookie.
2480 // This attribute is optional.
2481 // Version 1 attribute.
2482 __checkReturn BOOL SetComment(__in LPCSTR szComment) throw()
2483 {
2484 BOOL bRet = SetVersion(1);
2485 if (bRet)
2486 bRet = AddAttribute("comment", szComment);
2487 return bRet;
2488 }
2489
2490 // Call this function to set the CommentUrl attribute of the cookie.
2491 // Returns TRUE on success, FALSE on failure.
2492 // The CommentUrl attribute allows a web server to document its intended
2493 // use of a cookie via a URL that the user of the web site can navigate to.
2494 // The URL specified here should not send further cookies to the client to
2495 // avoid frustrating the user.
2496 // This attribute is optional.
2497 // Version 1 attribute.
2498 __checkReturn BOOL SetCommentUrl(__in LPCSTR szUrl) throw()
2499 {
2500 BOOL bRet = SetVersion(1);
2501 if (bRet)
2502 bRet = AddAttribute("commenturl", szUrl);
2503 return bRet;
2504 }
2505
2506 // Call this function to add or remove the Discard attribute of the cookie.
2507 // Returns TRUE on success, FALSE on failure.
2508 // The Discard attribute does not have a value.
2509 // Call SetDiscard(TRUE) to add the Discard attribute
2510 // or SetDiscard(FALSE) to remove the Discard attribute.
2511 // Setting the Discard attribute tells a web browser that it should
2512 // discard this cookie when the browser exits regardless of the
2513 // value of the Max-Age attribute.
2514 // This attribute is optional.
2515 // When omitted, the default behavior is that the Max-Age attribute
2516 // controls the lifetime of the cookie.
2517 // Version 1 attribute.
2518 __checkReturn BOOL SetDiscard(__in BOOL bDiscard) throw()
2519 {
2520 BOOL bRet = FALSE;
2521 LPCSTR szKey = "Discard";
2522 bRet = SetVersion(1);
2523 if (bRet)
2524 {
2525 if (bDiscard == 0)
2526 {
2527 bRet = m_Attributes.RemoveKey(szKey);
2528 }
2529 else
2530 {
2531 _ATLTRY
2532 {
2533 bRet = m_Attributes.SetAt(szKey, " ") != 0;
2534 }
2535 _ATLCATCHALL()
2536 {
2537 bRet = FALSE;
2538 }
2539 }
2540 }
2541 return bRet;
2542 }
2543
2544 // Call this function to set the Domain attribute of the cookie.
2545 // Returns TRUE on success, FALSE on failure.
2546 // The Domain attribute is used to indicate the domain to which the current
2547 // cookie applies. Browsers should only send cookies back to the relevant domains.
2548 // This attribute is optional.
2549 // When omitted, the default behavior is for
2550 // browsers to use the full domain of the server originating the cookie. You can
2551 // set this attribute value explicitly if you want to share cookies among several servers.
2552 // Version 0 & Version 1 attribute.
2553 __checkReturn BOOL SetDomain(__in LPCSTR szDomain) throw()
2554 {
2555 BOOL bRet = SetVersion(1);
2556 if (bRet)
2557 bRet = AddAttribute("domain", szDomain);
2558 return bRet;
2559 }
2560
2561 // Call this function to set the Max-Age attribute of the cookie.
2562 // Returns TRUE on success, FALSE on failure.
2563 // The value of the Max-Age attribute is a lifetime in seconds for the cookie.
2564 // When the time has expired, compliant browsers will discard this cookie
2565 // (if they haven't already done so as a result of the Discard attribute).
2566 // If Max-Age is set to zero, the browser discards the cookie immediately.
2567 // This attribute is the Version 1 replacement for the Expires attribute.
2568 // This attribute is optional.
2569 // When omitted, the default behavior is for browsers to discard cookies
2570 // when the user closes the browser.
2571 // Version 1 attribute.
2572 __checkReturn BOOL SetMaxAge(__in UINT nMaxAge) throw()
2573 {
2574 BOOL bRet = FALSE;
2575 bRet = SetVersion(1);
2576 if (bRet)
2577 {
2578 CHAR buff[20];
2579 if (0 == _itoa_s(nMaxAge, buff, _countof(buff), 10))
2580 {
2581 bRet = AddAttribute("max-age", buff);
2582 }
2583 }
2584 return bRet;
2585 }
2586
2587 // Call this function to set the Path attribute of the cookie.
2588 // Returns TRUE on success, FALSE on failure.
2589 // The Path attribute specifies the subset of URLs to which this cookie applies.
2590 // Only URLs that contain that path are allowed to read or modify the cookie.
2591 // This attribute is optional.
2592 // When omitted the default behavior is for browsers to treat the path of a cookie
2593 // as the path of the request URL that generated the Set-Cookie response, up to,
2594 // but not including, the right-most /.
2595 // Version 0 & Version 1 attribute.
2596 __checkReturn BOOL SetPath(__in LPCSTR szPath) throw()
2597 {
2598 BOOL bRet = SetVersion(1);
2599 if (bRet)
2600 bRet = AddAttribute("path", szPath);
2601 return bRet;
2602 }
2603
2604 // Call this function to set the Port attribute of the cookie.
2605 // Returns TRUE on success, FALSE on failure.
2606 // The Port attribute specifies the port to which this cookie applies.
2607 // Only URLs accessed via that port are allowed to read or modify the cookie.
2608 // This attribute is optional.
2609 // When omitted the default behavior is for browsers to return the cookie via any port.
2610 // Version 1 attribute.
2611 __checkReturn BOOL SetPort(__in LPCSTR szPort) throw()
2612 {
2613 BOOL bRet = SetVersion(1);
2614 if (bRet)
2615 bRet = AddAttribute("port", szPort);
2616 return bRet;
2617 }
2618
2619 // Call this function to add or remove the Secure attribute of the cookie.
2620 // Returns TRUE on success, FALSE on failure.
2621 // The Secure attribute does not have a value.
2622 // Call SetSecure(TRUE) to add the Secure attribute
2623 // or SetSecure(FALSE) to remove the Secure attribute.
2624 // Setting the Secure attribute tells a browser that it should
2625 // transmit the cookie to the web server only via secure means such as HTTPS.
2626 // This attribute is optional.
2627 // When omitted, the default behavior is that the cookie
2628 // will be sent via unsecured protocols.
2629 // Version 0 & Version 1 attribute.
2630 __checkReturn BOOL SetSecure(__in BOOL bSecure) throw()
2631 {
2632 BOOL bRet = FALSE;
2633 LPCSTR szKey = "secure";
2634 bRet = SetVersion(1);
2635 if (bRet)
2636 {
2637 if (bSecure == 0)
2638 {
2639 bRet = m_Attributes.RemoveKey(szKey);
2640 }
2641 else
2642 {
2643 _ATLTRY
2644 {
2645 bRet = m_Attributes.SetAt(szKey, " ") != 0;
2646 }
2647 _ATLCATCHALL()
2648 {
2649 bRet = FALSE;
2650 }
2651 }
2652 }
2653 return bRet;
2654 }
2655
2656 // Call this function to set the Version attribute of the cookie.
2657 // Returns TRUE on success, FALSE on failure.
2658 // This attribute is required for Version 1 cookies by RFC 2109 and must have a value of 1.
2659 // However, you do not need to call SetVersion explicitly from your own code unless you need to
2660 // force RFC 2109 compliance. CCookie will automatically set this attribute whenever
2661 // you use a Version 1 attribute in your cookie.
2662 // Version 1 attribute.
2663 __checkReturn BOOL SetVersion(__in UINT nVersion) throw()
2664 {
2665 BOOL bRet = FALSE;
2666 CHAR buff[20];
2667 if (0 == _itoa_s(nVersion, buff, _countof(buff), 10))
2668 {
2669 bRet = AddAttribute("version", buff);
2670 }
2671 return bRet;
2672 }
2673
2674 // Call this function to set the Expires attribute of the cookie.
2675 // Returns TRUE on success, FALSE on failure.
2676 // The Expires attribute specifies an absolute date and time at which this cookie
2677 // should be discarded by web browsers. Pass a SYSTEMTIME holding a Greenwich Mean Time (GMT)
2678 // value or a string in the following format:
2679 // Wdy, DD-Mon-YY HH:MM:SS GMT
2680 // This attribute is optional.
2681 // When omitted, the default behavior is for browsers to discard cookies
2682 // when the user closes the browser.
2683 // This attribute has been superceded in Version 1 by the Max-Age attribute,
2684 // but you should continue to use this attribute for Version 0 clients.
2685 // Version 0 attribute.
2686 __checkReturn BOOL SetExpires(__in LPCSTR szExpires) throw()
2687 {
2688 return AddAttribute("expires", szExpires);
2689 }
2690
2691 __checkReturn BOOL SetExpires(__in const SYSTEMTIME &st) throw()
2692 {
2693 _ATLTRY
2694 {
2695 CFixedStringT<CStringA, ATLS_MAX_HTTP_DATE> strTime;
2696 SystemTimeToHttpDate(st, strTime);
2697 return SetExpires(strTime);
2698 }
2699 _ATLCATCHALL()
2700 {
2701 }
2702 return FALSE;
2703 }
2704
2705 // Call this function to look up the value of a name-value pair applied to this cookie.
2706 // Returns the requested value if present or NULL if the name was not found.
2707 __checkReturn LPCSTR Lookup(__in_opt LPCSTR szName=NULL) const throw()
2708 {
2709 if (IsEmpty())
2710 return NULL;
2711
2712 if (m_strValue.GetLength())
2713 {
2714 ATLASSERT(szName == NULL);
2715 return m_strValue;
2716 }
2717
2718 if (m_Values.GetCount())
2719 {
2720 ATLENSURE_RETURN_VAL(szName, NULL);
2721 const mapType::CPair *pPair = NULL;
2722 ATLTRY(pPair = m_Values.Lookup(szName));
2723 if (pPair)
2724 return (LPCSTR)pPair->m_value;
2725 }
2726
2727 return NULL;
2728 }
2729
2730 // Call this function to clear the cookie of all content
2731 // including name, value, name-value pairs, and attributes.
2732 void Empty() throw()
2733 {
2734 m_strName.Empty();
2735 m_strValue.Empty();
2736 m_Attributes.RemoveAll();
2737 m_Values.RemoveAll();
2738 }
2739
2740 // Call this function to create a CCookie from a buffer.
2741 // The passed in buffer contains a cookie header retrieved
2742 // from the HTTP_COOKIE request variable
2743 bool ParseValue(__in const char *pstart)
2744 {
2745 ATLASSERT(pstart);
2746 if (!pstart || *pstart == '\0')
2747 return false;
2748
2749 // could be just a value or could be an array of name=value pairs
2750 LPCSTR pEnd = pstart;
2751 LPCSTR pStart = pstart;
2752 CStringA name, value;
2753
2754 while (*pEnd != '\0')
2755 {
2756 while (*pEnd && *pEnd != '=' && *pEnd != '&')
2757 pEnd++;
2758
2759 if (*pEnd == '\0' || *pEnd == '&')
2760 {
2761 if (pEnd > pStart)
2762 CopyToCString(value, pStart, pEnd);
2763 SetValue(value);
2764 if (*pEnd == '&')
2765 {
2766 pEnd++;
2767 pStart = pEnd;
2768 continue;
2769 }
2770 return true; // we're done;
2771 }
2772 else if (*pEnd == '=' )
2773 {
2774 // we have name=value
2775 if (pEnd > pStart)
2776 {
2777 CopyToCString(name, pStart, pEnd);
2778 }
2779 else
2780 {
2781 pEnd++;
2782 pStart = pEnd;
2783 break;
2784 }
2785
2786 // skip '=' and go for value
2787 pEnd++;
2788 pStart = pEnd;
2789 while (*pEnd && *pEnd != '&' && *pEnd != '=')
2790 pEnd++;
2791 if (pEnd > pStart)
2792 CopyToCString(value, pStart, pEnd);
2793
2794 ATLENSURE(AddValue(name, value));
2795
2796 if (*pEnd != '\0')
2797 pEnd++;
2798 pStart = pEnd;
2799
2800 }
2801 }
2802
2803 return true;
2804 }
2805
2806 // Call this function to render this cookie
2807 // into a buffer. Returns TRUE on success, FALSE on failure.
2808 // On entry, pdwLen should point to a DWORD that indicates
2809 // the size of the buffer in bytes. On exit, the DWORD contains
2810 // the number of bytes transferred or available to be transferred
2811 // into the buffer (including the nul-terminating byte). On
2812 // success, the buffer will contain the correct HTTP
2813 // representation of the current cookie suitable for sending to
2814 // a client as the body of a Set-Cookie header.
2815 __success(return==true) ATL_NOINLINE __checkReturn BOOL Render(__out_ecount_part_opt(*pdwLen,*pdwLen) LPSTR szCookieBuffer, __inout DWORD *pdwLen) const throw()
2816 {
2817 if (!pdwLen)
2818 return FALSE;
2819 CStringA strCookie;
2820 CStringA name, value;
2821 DWORD dwLenBuff = *pdwLen;
2822 *pdwLen = 0;
2823
2824 // A cookie must have a name!
2825 if (!m_strName.GetLength())
2826 {
2827 *pdwLen = 0;
2828 return FALSE;
2829 }
2830 _ATLTRY
2831 {
2832 strCookie = m_strName;
2833 int nValSize = (int) m_Values.GetCount();
2834 if (nValSize)
2835 {
2836 strCookie += '=';
2837 POSITION pos = m_Values.GetStartPosition();
2838 for (int i=0; pos; i++)
2839 {
2840 m_Values.GetNextAssoc(pos, name, value);
2841 strCookie += name;
2842 if (value.GetLength())
2843 {
2844 strCookie += '=';
2845 strCookie += value;
2846 }
2847 if (i <= nValSize-2)
2848 strCookie += '&';
2849 }
2850 }
2851 else
2852 {
2853 strCookie += '=';
2854 if (m_strValue.GetLength())
2855 strCookie += m_strValue;
2856 }
2857
2858 CStringA strAttributes;
2859 if (!RenderAttributes(strAttributes))
2860 return FALSE;
2861 if (strAttributes.GetLength() > 0)
2862 {
2863 strCookie += "; ";
2864 strCookie += strAttributes;
2865 }
2866
2867 DWORD dwLenCookie = strCookie.GetLength() + 1;
2868 *pdwLen = dwLenCookie;
2869 if (!szCookieBuffer)
2870 return TRUE; // caller just wanted the length
2871
2872 // see if buffer is big enough
2873 if (dwLenCookie > dwLenBuff)
2874 return FALSE; //buffer wasn't big enough
2875
2876 // copy the buffer
2877 Checked::strcpy_s(szCookieBuffer, *pdwLen, strCookie);
2878 }
2879 _ATLCATCHALL()
2880 {
2881 return FALSE;
2882 }
2883 return TRUE;
2884 }
2885
2886 POSITION GetFirstAttributePos() const throw()
2887 {
2888 return m_Attributes.GetStartPosition();
2889 }
2890
2891 const CStringA& GetNextAttributeName(__inout POSITION& pos) const throw()
2892 {
2893 return m_Attributes.GetNextKey(pos);
2894 }
2895
2896 const CStringA& GetAttributeValueAt(__in POSITION pos) const throw()
2897 {
2898 return m_Attributes.GetValueAt(pos);
2899 }
2900
2901 BOOL GetNextAttrAssoc(__inout POSITION& pos, __out CStringA& key,
2902 __out CStringA& val) const throw()
2903 {
2904 _ATLTRY
2905 {
2906 m_Attributes.GetNextAssoc(pos, key, val);
2907 }
2908 _ATLCATCHALL()
2909 {
2910 return FALSE;
2911 }
2912 return TRUE;
2913 }
2914
2915 POSITION GetFirstValuePos() const throw()
2916 {
2917 return m_Values.GetStartPosition();
2918 }
2919
2920 const CStringA& GetNextValueName(__inout POSITION& pos) const throw()
2921 {
2922 return m_Values.GetNextKey(pos);
2923 }
2924
2925 const CStringA& GetValueAt(__in POSITION pos) const throw()
2926 {
2927 return m_Values.GetValueAt(pos);
2928 }
2929
2930 BOOL GetNextValueAssoc(__inout POSITION& pos, __out CStringA& key,
2931 __out CStringA& val) const throw()
2932 {
2933 _ATLTRY
2934 {
2935 m_Values.GetNextAssoc(pos, key, val);
2936 }
2937 _ATLCATCHALL()
2938 {
2939 return FALSE;
2940 }
2941 return TRUE;
2942 }
2943
2944 protected:
2945 // Implementation
2946 BOOL RenderAttributes(__out CStringA& strAttributes) const throw()
2947 {
2948 _ATLTRY
2949 {
2950 strAttributes.Empty();
2951
2952 POSITION pos = m_Attributes.GetStartPosition();
2953 CStringA key, val;
2954 for (int i=0; pos; i++)
2955 {
2956 if (i)
2957 strAttributes += ";";
2958 m_Attributes.GetNextAssoc(pos, key, val);
2959 strAttributes += key;
2960 strAttributes += '=';
2961 strAttributes += val;
2962 }
2963 }
2964 _ATLCATCHALL()
2965 {
2966 return FALSE;
2967 }
2968 return TRUE;
2969 }
2970 private:
2971 CCookie& Copy(__in const CCookie& thatCookie) throw(...)
2972 {
2973 m_strName = thatCookie.m_strName;
2974 m_strValue = thatCookie.m_strValue;
2975 POSITION pos = NULL;
2976 CStringA strName, strValue;
2977 if (!thatCookie.m_Attributes.IsEmpty())
2978 {
2979 pos = thatCookie.m_Attributes.GetStartPosition();
2980 while (pos)
2981 {
2982 thatCookie.m_Attributes.GetNextAssoc(pos, strName, strValue);
2983 m_Attributes.SetAt(strName, strValue);
2984 }
2985 }
2986 if (!thatCookie.m_Values.IsEmpty())
2987 {
2988 strName.Empty();
2989 strValue.Empty();
2990 pos = thatCookie.m_Values.GetStartPosition();
2991 while (pos)
2992 {
2993 thatCookie.m_Values.GetNextAssoc(pos, strName, strValue);
2994 m_Values.SetAt(strName, strValue);
2995 }
2996 }
2997 return *this;
2998 }
2999
3000 // Call this function to copy a substring to a CString reference and ensure nul-termination.
3001 void CopyToCString(__out CStringA& string, __in_ecount(pEnd-pStart) LPCSTR pStart, __in LPCSTR pEnd) throw( ... )
3002 {
3003 ATLENSURE( pStart != NULL );
3004 ATLENSURE( pEnd != NULL );
3005
3006 string.SetString(pStart, (int)(pEnd-pStart));
3007 string.Trim();
3008 }
3009
3010
3011 public:
3012 // These are implementation only, use at your own risk!
3013 // Map of attribute-value pairs applied to this cookie.
3014 mapType m_Attributes;
3015
3016 // Map of name-value pairs applied to this cookie.
3017 mapType m_Values;
3018
3019 // The name of this cookie.
3020 CStringA m_strName;
3021
3022 // The value of this cookie.
3023 CStringA m_strValue;
3024
3025 }; // class CCookie
3026
3027 class CSessionCookie : public CCookie
3028 {
3029 public:
3030 CSessionCookie() throw(...)
3031 {
3032 if (!SetName(SESSION_COOKIE_NAME) ||
3033 !SetPath("/"))
3034 AtlThrow(E_OUTOFMEMORY);
3035 }
3036
3037 CSessionCookie(LPCSTR szSessionID) throw(...)
3038 {
3039 if (!SetName(SESSION_COOKIE_NAME) ||
3040 !SetPath("/") ||
3041 !SetSessionID(szSessionID) )
3042 AtlThrow(E_OUTOFMEMORY);
3043 }
3044
3045 BOOL SetSessionID(LPCSTR szSessionID) throw()
3046 {
3047 ATLASSERT(szSessionID && szSessionID[0]);
3048 return SetValue(szSessionID);
3049 }
3050 }; // class CSessionCookie
3051
3052 template<>
3053 class CElementTraits< CCookie > :
3054 public CElementTraitsBase< CCookie >
3055 {
3056 public:
3057 typedef const CCookie& INARGTYPE;
3058 typedef CCookie& OUTARGTYPE;
3059
3060 static ULONG Hash( __in INARGTYPE cookie )
3061 {
3062 return CStringElementTraits<CStringA>::Hash( cookie.m_strName );
3063 }
3064
3065 static bool CompareElements( __in INARGTYPE cookie1, __in INARGTYPE cookie2 )
3066 {
3067 return( cookie1.m_strName == cookie2.m_strName );
3068 }
3069
3070 static int CompareElementsOrdered( __in INARGTYPE cookie1, __in INARGTYPE cookie2 )
3071 {
3072 return( cookie1.m_strName.Compare( cookie2.m_strName ) );
3073 }
3074 };
3075
3076
3077 ///////////////////////////////////////////////////////////////////////////////
3078 // Request and response classes and support functions
3079
3080
3081 // This class is a wrapper for CAtlMap that allows maps to be chained.
3082 // It simply adds a bool that tells whether or not a map shares values
3083 template <typename K, typename V, typename KTraits=CElementTraits<K>, typename VTraits=CElementTraits<V> >
3084 class CHttpMap
3085 {
3086 private:
3087
3088 #ifdef ATL_HTTP_PARAM_MULTIMAP
3089 typedef CRBMultiMap<K, V, KTraits, VTraits> MAPTYPE;
3090 #else
3091 typedef CAtlMap<K, V, KTraits, VTraits> MAPTYPE;
3092 #endif // ATL_HTTP_PARAM_MULTIMAP
3093
3094 public:
3095
3096 typedef typename KTraits::INARGTYPE KINARGTYPE;
3097 typedef typename KTraits::OUTARGTYPE KOUTARGTYPE;
3098 typedef typename VTraits::INARGTYPE VINARGTYPE;
3099 typedef typename VTraits::OUTARGTYPE VOUTARGTYPE;
3100
3101 typedef typename MAPTYPE::CPair CPair;
3102
3103 private:
3104
3105 bool m_bShared;
3106
3107 MAPTYPE m_map;
3108
3109 public:
3110
3111 CHttpMap() throw()
3112 : m_bShared(false)
3113 {
3114 }
3115
3116 virtual ~CHttpMap()
3117 {
3118 }
3119
3120 inline bool IsShared() const throw()
3121 {
3122 return m_bShared;
3123 }
3124
3125 inline void SetShared(__in bool bShared) throw()
3126 {
3127 m_bShared = bShared;
3128 }
3129
3130 //
3131 // exposed lookup and iteration functionality
3132 //
3133
3134 inline size_t GetCount() const throw()
3135 {
3136 return m_map.GetCount();
3137 }
3138
3139 inline bool IsEmpty() const throw()
3140 {
3141 return m_map.IsEmpty();
3142 }
3143
3144 inline POSITION GetStartPosition() const throw()
3145 {
3146 #ifdef ATL_HTTP_PARAM_MULTIMAP
3147 return m_map.GetHeadPosition();
3148 #else
3149 return m_map.GetStartPosition();
3150 #endif // ATL_HTTP_PARAM_MULTIMAP
3151 }
3152
3153 // Lookup wrappers
3154 bool Lookup( __in KINARGTYPE key, __out VOUTARGTYPE value ) const throw()
3155 {
3156 _ATLTRY
3157 {
3158 #ifdef ATL_HTTP_PARAM_MULTIMAP
3159 CPair *p = Lookup(key);
3160 if (p != NULL)
3161 {
3162 value = p->m_value;
3163 return true;
3164 }
3165 return false;
3166 #else
3167 return m_map.Lookup(key, value);
3168 #endif // ATL_HTTP_PARAM_MULTIMAP
3169 }
3170 _ATLCATCHALL()
3171 {
3172 return false;
3173 }
3174 }
3175
3176 const CPair* Lookup( __in KINARGTYPE key ) const throw()
3177 {
3178 #ifdef ATL_HTTP_PARAM_MULTIMAP
3179 POSITION pos = m_map.FindFirstWithKey(key);
3180 if (pos != NULL)
3181 {
3182 return m_map.GetAt(pos);
3183 }
3184 return NULL;
3185 #else
3186 return m_map.Lookup(key);
3187 #endif // ATL_HTTP_PARAM_MULTIMAP
3188 }
3189
3190 CPair* Lookup( __in KINARGTYPE key ) throw()
3191 {
3192 #ifdef ATL_HTTP_PARAM_MULTIMAP
3193 POSITION pos = m_map.FindFirstWithKey(key);
3194 if (pos != NULL)
3195 {
3196 return m_map.GetAt(pos);
3197 }
3198 return NULL;
3199 #else
3200 return m_map.Lookup(key);
3201 #endif // ATL_HTTP_PARAM_MULTIMAP
3202 }
3203
3204 // iteration wrappers
3205 void GetNextAssoc( __inout POSITION& pos, __out KOUTARGTYPE key, __out VOUTARGTYPE value ) const throw(...)
3206 {
3207 m_map.GetNextAssoc(pos, key, value);
3208 }
3209
3210 const CPair* GetNext( __inout POSITION& pos ) const throw()
3211 {
3212 return m_map.GetNext(pos);
3213 }
3214
3215 CPair* GetNext( __inout POSITION& pos ) throw()
3216 {
3217 return m_map.GetNext(pos);
3218 }
3219
3220 const K& GetNextKey( __inout POSITION& pos ) const throw()
3221 {
3222 return m_map.GetNextKey(pos);
3223 }
3224
3225 const V& GetNextValue( __inout POSITION& pos ) const throw()
3226 {
3227 return m_map.GetNextValue(pos);
3228 }
3229
3230 V& GetNextValue( __inout POSITION& pos ) throw()
3231 {
3232 return m_map.GetNextValue(pos);
3233 }
3234
3235 void GetAt( __in POSITION pos, __out KOUTARGTYPE key, __out VOUTARGTYPE value ) const throw(...)
3236 {
3237 return m_map.GetAt(pos, key, value);
3238 }
3239
3240 CPair* GetAt( __in POSITION pos ) throw()
3241 {
3242 return m_map.GetAt(pos);
3243 }
3244
3245 const CPair* GetAt( __in POSITION pos ) const throw()
3246 {
3247 return m_map.GetAt(pos);
3248 }
3249
3250 const K& GetKeyAt( __in POSITION pos ) const throw()
3251 {
3252 return m_map.GetKeyAt(pos);
3253 }
3254
3255 const V& GetValueAt( __in POSITION pos ) const throw()
3256 {
3257 return m_map.GetValueAt(pos);
3258 }
3259
3260 V& GetValueAt( __in POSITION pos ) throw()
3261 {
3262 return m_map.GetValueAt(pos);
3263 }
3264
3265 // modification wrappers
3266 POSITION SetAt( __in KINARGTYPE key, __in_opt VINARGTYPE value ) throw(...)
3267 {
3268 #ifdef ATL_HTTP_PARAM_MULTIMAP
3269 return m_map.Insert(key, value);
3270 #else
3271 return m_map.SetAt(key, value);
3272 #endif // ATL_HTTP_PARAM_MULTIMAP
3273 }
3274
3275 bool RemoveKey( __in KINARGTYPE key ) throw()
3276 {
3277 #ifdef ATL_HTTP_PARAM_MULTIMAP
3278 return (m_map.RemoveKey(key) != 0);
3279 #else
3280 return m_map.RemoveKey(key);
3281 #endif // ATL_HTTP_PARAM_MULTIMAP
3282 }
3283
3284 virtual void RemoveAll()
3285 {
3286 m_map.RemoveAll();
3287 }
3288 };
3289
3290 // This class is a wrapper for CHttpMap that assumes it's values are pointers that
3291 // should be deleted on RemoveAll
3292 template <typename K, typename V, typename KTraits=CElementTraits<K>, typename VTraits=CElementTraits<V> >
3293 class CHttpPtrMap : public CHttpMap<K, V, KTraits, VTraits>
3294 {
3295 public:
3296 typedef CHttpMap<K, V, KTraits, VTraits> Base;
3297
3298 void RemoveAll()
3299 {
3300 if (!IsShared())
3301 {
3302 POSITION pos = GetStartPosition();
3303 while (pos)
3304 {
3305 GetNextValue(pos)->Free();
3306 }
3307 }
3308 Base::RemoveAll();
3309 }
3310
3311 ~CHttpPtrMap()
3312 {
3313 RemoveAll();
3314 }
3315 };
3316
3317 // This class represents a collection of request parameters - the name-value pairs
3318 // found, for example, in a query string or in the data provided when a form is submitted to the server.
3319 // Call Parse to build the collection from a string of URL-encoded data.
3320 // Use the standard collection methods of the CHttpMap base class to retrieve the
3321 // decoded names and values.
3322 // Use the methods of the CValidateObject base class to validate the parameters.
3323 class CHttpRequestParams :
3324 #if (defined(ATL_HTTP_PARAM_MAP_CASEINSENSITIVE))
3325 public CHttpMap<CStringA, CStringA, CStringElementTraitsI<CStringA>, CStringElementTraitsI<CStringA> >,
3326 #else
3327 public CHttpMap<CStringA, CStringA, CStringElementTraits<CStringA>, CStringElementTraits<CStringA> >,
3328 #endif
3329 public CValidateObject<CHttpRequestParams>
3330 {
3331 public:
3332 #if (defined(ATL_HTTP_PARAM_MAP_CASEINSENSITIVE))
3333 typedef CHttpMap<CStringA, CStringA, CStringElementTraitsI<CStringA>, CStringElementTraitsI<CStringA> > BaseMap;
3334 #else
3335 typedef CHttpMap<CStringA, CStringA, CStringElementTraits<CStringA>, CStringElementTraits<CStringA> > BaseMap;
3336 #endif
3337
3338 LPCSTR Lookup(__in LPCSTR szName) const throw()
3339 {
3340 _ATLTRY
3341 {
3342 if (!szName)
3343 return NULL;
3344
3345 const CPair *p = BaseMap::Lookup(szName);
3346 if (p)
3347 {
3348 return p->m_value;
3349 }
3350 }
3351 _ATLCATCHALL()
3352 {
3353 }
3354 return NULL;
3355 }
3356
3357 // Call this function to build a collection of name-value pairs from a string of URL-encoded data.
3358 // Returns TRUE on success, FALSE on failure.
3359 // URL-encoded data:
3360 // Each name-value pair is separated from the next by an ampersand (&)
3361 // Each name is separated from its corresponding value by an equals signs (=)
3362 // The end of the data to be parsed is indicated by a nul character (\0) or a pound symbol (#)
3363 // A plus sign (+) in the input will be decoded as a space
3364 // A percent sign (%) in the input signifies the start of an escaped octet.
3365 // The next two digits represent the hexadecimal code of the character.
3366 // For example, %21 is the escaped encoding for the US-ASCII exclamation mark and will be decoded as !.
3367 // Common sources of URL-encoded data are query strings and the bodies of POST requests with content type of application/x-www-form-urlencoded.
3368 //
3369 // Parse and Render are complementary operations.
3370 // Parse creates a collection from a string.
3371 // Render creates a string from a collection.
3372 ATL_NOINLINE __checkReturn BOOL Parse(__inout LPSTR szQueryString) throw()
3373 {
3374 while (szQueryString && *szQueryString)
3375 {
3376 LPSTR szUrlCurrent = szQueryString;
3377 LPSTR szName = szUrlCurrent;
3378 LPSTR szPropValue;
3379
3380 while (*szQueryString)
3381 {
3382 if (*szQueryString == '=')
3383 {
3384 szQueryString++;
3385 break;
3386 }
3387 if (*szQueryString == '&')
3388 {
3389 break;
3390 }
3391 if (*szQueryString == '+')
3392 *szUrlCurrent = ' ';
3393 else if (*szQueryString == '%')
3394 {
3395 // if there is a % without two characters
3396 // at the end of the url we skip it
3397 if (*(szQueryString+1) && *(szQueryString+2))
3398 {
3399 short nFirstDigit = AtlHexValue(szQueryString[1]);
3400 short nSecondDigit = AtlHexValue(szQueryString[2]);
3401
3402 if( nFirstDigit < 0 || nSecondDigit < 0 )
3403 {
3404 break;
3405 }
3406 *szUrlCurrent = static_cast<CHAR>(16*nFirstDigit+nSecondDigit);
3407 szQueryString += 2;
3408 }
3409 else
3410 *szUrlCurrent = '\0';
3411 }
3412 else
3413 *szUrlCurrent = *szQueryString;
3414
3415 szQueryString++;
3416 szUrlCurrent++;
3417 }
3418
3419 if (*szUrlCurrent == '&')
3420 {
3421 *szUrlCurrent++ = '\0';
3422 szQueryString++;
3423 szPropValue = "";
3424 }
3425 else
3426 {
3427 if (*szUrlCurrent)
3428 *szUrlCurrent++ = '\0';
3429
3430 // we have the property name
3431 szPropValue = szUrlCurrent;
3432 while (*szQueryString && *szQueryString != '#')
3433 {
3434 if (*szQueryString == '&')
3435 {
3436 szQueryString++;
3437 break;
3438 }
3439 if (*szQueryString == '+')
3440 *szUrlCurrent = ' ';
3441 else if (*szQueryString == '%')
3442 {
3443 // if there is a % without two characters
3444 // at the end of the url we skip it
3445 if (*(szQueryString+1) && *(szQueryString+2))
3446 {
3447 short nFirstDigit = AtlHexValue(szQueryString[1]);
3448 short nSecondDigit = AtlHexValue(szQueryString[2]);
3449
3450 if( nFirstDigit < 0 || nSecondDigit < 0 )
3451 {
3452 break;
3453 }
3454 *szUrlCurrent = static_cast<CHAR>(16*nFirstDigit+nSecondDigit);
3455 szQueryString += 2;
3456 }
3457 else
3458 *szUrlCurrent = '\0';
3459 }
3460 else
3461 *szUrlCurrent = *szQueryString;
3462 szQueryString++;
3463 szUrlCurrent++;
3464 }
3465 // we have the value
3466 *szUrlCurrent = '\0';
3467 szUrlCurrent++;
3468 }
3469
3470 _ATLTRY
3471 {
3472 SetAt(szName, szPropValue);
3473 }
3474 _ATLCATCHALL()
3475 {
3476 return FALSE;
3477 }
3478 }
3479 return TRUE;
3480 }
3481
3482 // Call this function to render the map of names and values into a buffer as a URL-encoded string.
3483 // Returns TRUE on success, FALSE on failure.
3484 // On entry, pdwLen should point to a DWORD that indicates the size of the buffer in bytes.
3485 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
3486 // On success, the buffer will contain the correct URL-encoded representation of the current object
3487 // suitable for sending to a server as a query string or in the body of a form.
3488 // URL-encoding:
3489 // Each name-value pair is separated from the next by an ampersand (&)
3490 // Each name is separated from its corresponding value by an equals signs (=)
3491 // A space is encoded as a plus sign (+).
3492 // Other unsafe characters (as determined by AtlIsUnsafeUrlChar) are encoded as escaped octets.
3493 // An escaped octet is a percent sign (%) followed by two digits representing the hexadecimal code of the character.
3494 //
3495 // Parse and Render are complementary operations.
3496 // Parse creates a collection from a string.
3497 // Render creates a string from a collection.
3498 ATL_NOINLINE __checkReturn BOOL Render(__out_ecount(pdwLen) LPSTR szParameters, __inout LPDWORD pdwLen)
3499 {
3500 ATLENSURE(szParameters);
3501 ATLENSURE(pdwLen);
3502 _ATLTRY
3503 {
3504 if (GetCount() == 0)
3505 {
3506 *szParameters = '\0';
3507 *pdwLen = 0;
3508 return TRUE;
3509 }
3510
3511 CStringA strParams;
3512 POSITION pos = GetStartPosition();
3513 while (pos != NULL)
3514 {
3515 LPCSTR szBuf = GetKeyAt(pos);
3516 EscapeToCString(strParams, szBuf);
3517 szBuf = GetValueAt(pos);
3518 if (*szBuf)
3519 {
3520 strParams+= '=';
3521 EscapeToCString(strParams, szBuf);
3522 }
3523 strParams+= '&';
3524 GetNext(pos);
3525 }
3526
3527 DWORD dwLen = strParams.GetLength();
3528 strParams.Delete(dwLen-1);
3529 BOOL bRet = TRUE;
3530 if (dwLen > *pdwLen)
3531 {
3532 bRet = FALSE;
3533 }
3534 else
3535 {
3536 dwLen--;
3537 Checked::memcpy_s(szParameters, *pdwLen, static_cast<LPCSTR>(strParams), dwLen);
3538 szParameters[dwLen] = '\0';
3539 }
3540
3541 *pdwLen = dwLen;
3542 return bRet;
3543 }
3544 _ATLCATCHALL()
3545 {
3546 return FALSE;
3547 }
3548 }
3549
3550 }; // class CHttpRequestParams
3551
3552 #ifndef MAX_TOKEN_LENGTH
3553 #define MAX_TOKEN_LENGTH (MAX_PATH)
3554 #endif
3555
3556 // This class represents the information about a file that has been uploaded to the web server.
3557 class CHttpRequestFile : public IHttpFile
3558 {
3559 private:
3560
3561 // The name of the form field used to upload the file.
3562 CHAR m_szParamName[MAX_TOKEN_LENGTH];
3563
3564 // The original file name of the uploaded file as set by the client.
3565 CHAR m_szFileName[MAX_PATH];
3566
3567 // The original path and file name of the uploaded file as set by the client.
3568 CHAR m_szFullFileName[MAX_PATH];
3569
3570 // The MIME type of the uploaded file.
3571 CHAR m_szContentType[MAX_TOKEN_LENGTH];
3572
3573 // The name of the uploaded file on the server.
3574 CHAR m_szTempFileName[MAX_PATH];
3575
3576 // The size of the file in bytes.
3577 ULONGLONG m_nFileSize;
3578
3579 public:
3580
3581 CHttpRequestFile() throw()
3582 {
3583 *m_szParamName = '\0';
3584 *m_szFileName = '\0';
3585 *m_szFullFileName = '\0';
3586 *m_szContentType = '\0';
3587 m_nFileSize = 0;
3588 }
3589
3590 __checkReturn BOOL Initialize(
3591 __in_opt LPCSTR pParamName,
3592 __in LPCSTR pFileName,
3593 __in_opt LPCSTR pTempFileName,
3594 __in_opt LPCSTR pContentType,
3595 __in const ULONGLONG &nFileSize)
3596 {
3597 ATLENSURE( pFileName != NULL );
3598
3599 if (!SafeStringCopy(m_szFullFileName, pFileName))
3600 {
3601 // path too long
3602 return FALSE;
3603 }
3604
3605 if (pParamName && *pParamName)
3606 {
3607 if (!SafeStringCopy(m_szParamName, pParamName))
3608 {
3609 // string too long
3610 return FALSE;
3611 }
3612 }
3613
3614 if (pTempFileName && *pTempFileName)
3615 {
3616 if (!SafeStringCopy(m_szTempFileName, pTempFileName))
3617 {
3618 // path too long
3619 return FALSE;
3620 }
3621 }
3622
3623 if (pContentType && *pContentType)
3624 {
3625 if (!SafeStringCopy(m_szContentType, pContentType))
3626 {
3627 // string too long
3628 return FALSE;
3629 }
3630 }
3631
3632 // Set m_szFileName to be the file name without the path.
3633 // This is likely to be the most meaningful part of the
3634 // original file name once the file reaches the server.
3635
3636 LPSTR szTmp = m_szFullFileName;
3637 LPSTR szFile = m_szFileName;
3638 LPSTR pszLastCharFileBuf=m_szFileName + _countof(m_szFileName) - 1;
3639 while (*szTmp)
3640 {
3641 if (*szTmp == '\\')
3642 {
3643 szFile = m_szFileName;
3644 }
3645 else
3646 {
3647 if (szFile > pszLastCharFileBuf)
3648 {
3649 return FALSE;
3650 }
3651 *szFile++ = *szTmp;
3652 }
3653 szTmp++;
3654 }
3655 if (szFile > pszLastCharFileBuf)
3656 {
3657 return FALSE;
3658 }
3659 *szFile = 0;
3660
3661 m_nFileSize = nFileSize;
3662 return TRUE;
3663 }
3664
3665
3666 //=======================================
3667 // IHttpFile interface
3668 //=======================================
3669 __checkReturn LPCSTR GetParamName()
3670 {
3671 return m_szParamName;
3672 }
3673
3674 __checkReturn LPCSTR GetFileName()
3675 {
3676 return m_szFileName;
3677 }
3678
3679 __checkReturn LPCSTR GetFullFileName()
3680 {
3681 return m_szFullFileName;
3682 }
3683
3684 __checkReturn LPCSTR GetContentType()
3685 {
3686 return m_szContentType;
3687 }
3688
3689 __checkReturn LPCSTR GetTempFileName()
3690 {
3691 return m_szTempFileName;
3692 }
3693
3694 __checkReturn ULONGLONG GetFileSize()
3695 {
3696 return m_nFileSize;
3697 }
3698
3699 void Free()
3700 {
3701 delete this;
3702 }
3703
3704 }; // class CHttpRequestFile
3705
3706
3707 // utility function to ReadData from a ServerContext
3708 ATL_NOINLINE inline
3709 __checkReturn BOOL ReadClientData(__inout IHttpServerContext *pServerContext, __out_ecount_part(*pdwLen,*pdwLen) LPSTR pbDest, __inout LPDWORD pdwLen, __in DWORD dwBytesRead)
3710 {
3711 ATLENSURE(pServerContext != NULL);
3712 ATLENSURE(pdwLen != NULL);
3713 ATLENSURE(pbDest != NULL);
3714
3715 _ATLTRY
3716 {
3717 DWORD dwToRead = *pdwLen;
3718 DWORD dwAvailableBytes = pServerContext->GetAvailableBytes();
3719 DWORD dwRead(0);
3720
3721 // Read from available data first
3722 if (dwBytesRead < dwAvailableBytes)
3723 {
3724 LPBYTE pbAvailableData = pServerContext->GetAvailableData();
3725 pbAvailableData+= dwBytesRead;
3726 DWORD dwAvailableToRead = __min(dwToRead, dwAvailableBytes-dwBytesRead);
3727 Checked::memcpy_s(pbDest, *pdwLen, pbAvailableData, dwAvailableToRead);
3728 dwBytesRead+= dwAvailableToRead;
3729 dwToRead-= dwAvailableToRead;
3730 pbDest+= dwAvailableToRead;
3731 dwRead+= dwAvailableToRead;
3732 }
3733
3734 DWORD dwTotalBytes = pServerContext->GetTotalBytes();
3735
3736 // If there is still more to read after the available data is exhausted
3737 if (dwToRead && dwBytesRead < dwTotalBytes)
3738 {
3739 DWORD dwClientBytesToRead = __min(pServerContext->GetTotalBytes()-dwBytesRead, dwToRead);
3740 DWORD dwClientBytesRead = 0;
3741
3742 // keep on reading until we've read the amount requested
3743 do
3744 {
3745 dwClientBytesRead = dwClientBytesToRead;
3746 if (!pServerContext->ReadClient(pbDest, &dwClientBytesRead))
3747 {
3748 return FALSE;
3749 }
3750 dwClientBytesToRead-= dwClientBytesRead;
3751 dwRead+= dwClientBytesRead;
3752 pbDest+= dwClientBytesRead;
3753
3754 } while (dwClientBytesToRead != 0 && dwClientBytesRead != 0);
3755
3756
3757 }
3758
3759 *pdwLen = dwRead;
3760 }
3761 _ATLCATCHALL()
3762 {
3763 return FALSE;
3764 }
3765
3766 return TRUE;
3767 }
3768
3769 #ifndef MAX_MIME_BOUNDARY_LEN
3770 #define MAX_MIME_BOUNDARY_LEN 128
3771 #endif
3772
3773 enum ATL_FORM_FLAGS
3774 {
3775 ATL_FORM_FLAG_NONE = 0,
3776 ATL_FORM_FLAG_IGNORE_FILES = 1,
3777 ATL_FORM_FLAG_REFUSE_FILES = 2,
3778 ATL_FORM_FLAG_IGNORE_EMPTY_FILES = 4,
3779 ATL_FORM_FLAG_IGNORE_EMPTY_FIELDS = 8,
3780 };
3781
3782 // Use this class to read multipart/form-data from the associated server context
3783 // and generate files as necessary from the data in the body of the request.
3784 class CMultiPartFormParser
3785 {
3786 protected:
3787
3788 LPSTR m_pCurrent;
3789 LPSTR m_pEnd;
3790 LPSTR m_pStart;
3791 CHAR m_szBoundary[MAX_MIME_BOUNDARY_LEN+2];
3792 DWORD m_dwBoundaryLen;
3793 BOOL m_bFinished;
3794 CComPtr<IHttpServerContext> m_spServerContext;
3795
3796 public:
3797
3798 typedef CHttpMap<CStringA, IHttpFile*, CStringElementTraits<CStringA> > FILEMAPTYPE;
3799
3800 CMultiPartFormParser(__in IHttpServerContext* pServerContext) throw() :
3801 m_pCurrent(NULL),
3802 m_pEnd(NULL),
3803 m_pStart(NULL),
3804 m_dwBoundaryLen(0),
3805 m_bFinished(FALSE),
3806 m_spServerContext(pServerContext)
3807 {
3808 *m_szBoundary = '\0';
3809 }
3810
3811 ~CMultiPartFormParser() throw()
3812 {
3813 _ATLTRY
3814 {
3815 // free memory if necessary
3816 if (m_spServerContext->GetTotalBytes() > m_spServerContext->GetAvailableBytes())
3817 {
3818 free(m_pStart);
3819 }
3820 }
3821 _ATLCATCHALL()
3822 {
3823 }
3824 }
3825
3826 // Call this function to read multipart/form-data from the current HTTP request,
3827 // allowing files to be uploaded to the web server.
3828 //
3829 // Returns TRUE on success, FALSE on failure.
3830 //
3831 // Forms can be sent to a web server using one of two encodings: application/x-www-form-urlencoded or multipart/form-data.
3832 // In addition to the simple name-value pairs typically associated with
3833 // application/x-www-form-urlencoded form data, multipart/form-data (as
3834 // described in RFC 2388) can also contain files to be uploaded
3835 // to the web server.
3836 //
3837 // This function will generate a physical file for each file contained in the multipart/form-data request body.
3838 // The generated files are stored in the server's temporary directory as returned by the
3839 // GetTempPath API and are named using the GetTempFileName API.
3840 // The information about each file can be obtained from the elements of the Files array.
3841 // You can retrieve the original name of the file on the client, the name of the generated file on the server,
3842 // the MIME content type of the uploaded file, the name of the form field associated with that file, and the size in
3843 // bytes of the file. All this information is exposed by the CHttpRequestFile objects in the array.
3844 //
3845 // In addition to generating files and populating the Files array with information about them,
3846 // this function also populates the pQueryParams array with the names and values of the other form fields
3847 // contained in the current request. The file fields are also added to this array. The value of these fields
3848 // is the full name of the generated file on the server.
3849 //
3850 // Note that files can be generated even if this function returns FALSE unless you specify either the
3851 // ATL_FORM_FLAG_IGNORE_FILES or the ATL_FORM_FLAG_REFUSE_FILES flag. If you don't specify one of these
3852 // flags, you should always check the Files array for generated files and delete any that are no longer
3853 // needed to prevent your web server from running out of disk space.
3854 //
3855 // dwFlags can be a combination of one or more of the following values:
3856 // ATL_FORM_FLAG_NONE Default behavior.
3857 // ATL_FORM_FLAG_IGNORE_FILES Any attempt to upload files is ignored.
3858 // ATL_FORM_FLAG_REFUSE_FILES Any attempt to upload files is treated as a failure. The function will return FALSE.
3859 // ATL_FORM_FLAG_IGNORE_EMPTY_FILES Files with a size of zero bytes are ignored.
3860 // ATL_FORM_FLAG_IGNORE_EMPTY_FIELDS Fields with no content are ignored.
3861 ATL_NOINLINE BOOL GetMultiPartData(
3862 __inout FILEMAPTYPE& Files,
3863 __inout CHttpRequestParams* pQueryParams,
3864 __in DWORD dwFlags=ATL_FORM_FLAG_NONE) throw()
3865 {
3866 _ATLTRY
3867 {
3868 if (!InitializeParser())
3869 {
3870 return FALSE;
3871 }
3872
3873 //Get to the first boundary
3874 if (!ReadUntilBoundary())
3875 {
3876 return FALSE;
3877 }
3878
3879 CStringA strParamName;
3880 CStringA strFileName;
3881 CStringA strContentType;
3882 CStringA strData;
3883 BOOL bFound;
3884
3885 while (!m_bFinished)
3886 {
3887 // look for "name" field
3888 if (!GetMimeData(strParamName, "name=", sizeof("name=")-1, &bFound, TRUE) || !bFound)
3889 {
3890 ATLTRACE(atlTraceISAPI, 0, _T("Malformed Form-Data"));
3891 return FALSE;
3892 }
3893
3894 // see if it's a file
3895 if (!GetMimeData(strFileName, "filename=", sizeof("filename=")-1, &bFound, TRUE))
3896 {
3897 ATLTRACE(atlTraceISAPI, 0, _T("Malformed Form-Data"));
3898 return FALSE;
3899 }
3900
3901 if (bFound)
3902 {
3903 if (dwFlags & ATL_FORM_FLAG_REFUSE_FILES)
3904 {
3905 return FALSE;
3906 }
3907
3908 if (!strFileName.GetLength())
3909 {
3910 if(!ReadUntilBoundary())
3911 {
3912 return FALSE;
3913 }
3914 continue;
3915 }
3916
3917 if (!GetMimeData(strContentType, "Content-Type:", sizeof("Content-Type:")-1, &bFound, TRUE))
3918 {
3919 ATLTRACE(atlTraceISAPI, 0, _T("Malformed Form-Data"));
3920 return FALSE;
3921 }
3922
3923 // move to the actual uploaded data
3924 if (!MoveToData())
3925 {
3926 ATLTRACE(atlTraceISAPI, 0, _T("Malformed Form-Data"));
3927 return FALSE;
3928 }
3929
3930 // if the user doesn't want files, don't save the file
3931 if (dwFlags & ATL_FORM_FLAG_IGNORE_FILES)
3932 {
3933 if (!ReadUntilBoundary(NULL, NULL))
3934 {
3935 return FALSE;
3936 }
3937 continue;
3938 }
3939
3940 CAtlTemporaryFile ctf;
3941 HRESULT hr = ctf.Create();
3942 if (hr != S_OK)
3943 return FALSE;
3944
3945 if (!ReadUntilBoundary(NULL, &ctf))
3946 {
3947 ctf.Close();
3948 return FALSE;
3949 }
3950 ULONGLONG nFileSize = 0;
3951 if (ctf.GetSize(nFileSize) != S_OK)
3952 return FALSE;
3953
3954 if ((dwFlags & ATL_FORM_FLAG_IGNORE_EMPTY_FILES) && nFileSize == 0)
3955 {
3956 ctf.Close();
3957 continue;
3958 }
3959
3960 CAutoPtr<CHttpRequestFile> spFile;
3961
3962 CT2AEX<MAX_PATH+1> szTempFileNameA(ctf.TempFileName());
3963
3964 ATLTRY(spFile.Attach(new CHttpRequestFile()));
3965 if (!spFile)
3966 {
3967 return FALSE;
3968 }
3969
3970 if (!spFile->Initialize(strParamName, strFileName, szTempFileNameA, strContentType, nFileSize))
3971 {
3972 // one of the strings was too long
3973 return FALSE;
3974 }
3975
3976 if (!Files.SetAt(szTempFileNameA, spFile))
3977 {
3978 return FALSE;
3979 }
3980
3981 spFile.Detach();
3982
3983 if (!pQueryParams || !pQueryParams->SetAt(strParamName, szTempFileNameA))
3984 {
3985 return FALSE;
3986 }
3987
3988 ctf.HandsOff();
3989
3990 continue;
3991 }
3992
3993 // move to the actual uploaded data
3994 if (!MoveToData())
3995 {
3996 ATLTRACE(atlTraceISAPI, 0, _T("Malformed Form-Data"));
3997 return FALSE;
3998 }
3999
4000 if (!ReadUntilBoundary(&strData))
4001 {
4002 return FALSE;
4003 }
4004
4005 if ((dwFlags & ATL_FORM_FLAG_IGNORE_EMPTY_FIELDS) && strData.GetLength() == 0)
4006 continue;
4007
4008 if (!pQueryParams || !pQueryParams->SetAt(strParamName, strData))
4009 {
4010 return FALSE;
4011 }
4012
4013 }
4014
4015 return TRUE;
4016 }
4017 _ATLCATCHALL()
4018 {
4019 return FALSE;
4020 }
4021 }
4022
4023 private:
4024
4025 // implementation
4026
4027 // case insensitive substring search -- does not handle multibyte characters (unlike tolower)
4028 // allows searching up to a maximum point in a string
4029 inline char AtlCharLower(__in char ch) throw()
4030 {
4031 if (ch > 64 && ch < 91)
4032 {
4033 return ch+32;
4034 }
4035
4036 return ch;
4037 }
4038
4039 inline __checkReturn char * _stristr (__in const char * str1, __in const char * str2)
4040 {
4041 ATLENSURE(str1!=NULL);
4042 ATLENSURE(str2!=NULL);
4043 char *cp = (char *) str1;
4044 char *s1, *s2;
4045
4046 if ( !*str2 )
4047 return((char *)str1);
4048
4049 while (*cp)
4050 {
4051 s1 = cp;
4052 s2 = (char *) str2;
4053
4054 while ( *s1 && *s2 && !(AtlCharLower(*s1)-AtlCharLower(*s2)) )
4055 {
4056 s1++, s2++;
4057 }
4058
4059 if (!*s2)
4060 {
4061 return(cp);
4062 }
4063
4064 cp++;
4065 }
4066
4067 return(NULL);
4068 }
4069
4070
4071 inline __checkReturn char * _stristrex (__in const char * str1, __in const char * str2, __in const char * str1End)
4072 {
4073 ATLENSURE(str1!=NULL);
4074 ATLENSURE(str2!=NULL);
4075 char *cp = (char *) str1;
4076 char *s1, *s2;
4077
4078 if ( !*str2 )
4079 return((char *)str1);
4080
4081 while (cp != str1End)
4082 {
4083 s1 = cp;
4084 s2 = (char *) str2;
4085
4086 while ( s1 != str1End && *s2 && !(AtlCharLower(*s1)-AtlCharLower(*s2)) )
4087 {
4088 s1++, s2++;
4089 }
4090
4091 if (!*s2)
4092 {
4093 return (cp);
4094 }
4095
4096 if (s1 == str1End)
4097 {
4098 return (NULL);
4099 }
4100
4101 cp++;
4102 }
4103
4104 return(NULL);
4105 }
4106
4107 inline __checkReturn char * _strstrex (__in const char * str1, __in const char * str2, __in const char * str1End)
4108 {
4109 ATLENSURE(str1!=NULL);
4110 ATLENSURE(str2!=NULL);
4111 char *cp = (char *) str1;
4112 char *s1, *s2;
4113
4114 if ( !*str2 )
4115 return((char *)str1);
4116
4117 while (cp != str1End)
4118 {
4119 s1 = cp;
4120 s2 = (char *) str2;
4121
4122 while ( s1 != str1End && *s2 && !((*s1)-(*s2)) )
4123 {
4124 s1++, s2++;
4125 }
4126
4127 if (!*s2)
4128 {
4129 return (cp);
4130 }
4131
4132 if (s1 == str1End)
4133 {
4134 return (NULL);
4135 }
4136
4137 cp++;
4138 }
4139
4140 return(NULL);
4141 }
4142
4143 ATL_NOINLINE __checkReturn BOOL InitializeParser() throw()
4144 {
4145 ATLASSUME( m_spServerContext != NULL );
4146
4147 _ATLTRY
4148 {
4149 DWORD dwBytesTotal = m_spServerContext->GetTotalBytes();
4150
4151 // if greater than bytes available, allocate necessary space
4152 if (dwBytesTotal > m_spServerContext->GetAvailableBytes())
4153 {
4154 m_pStart = (LPSTR) malloc(dwBytesTotal);
4155 if (!m_pStart)
4156 {
4157 return FALSE;
4158 }
4159 m_pCurrent = m_pStart;
4160 DWORD dwLen = dwBytesTotal;
4161 if (!ReadClientData(m_spServerContext, m_pStart, &dwLen, 0) || dwLen != dwBytesTotal)
4162 {
4163 return FALSE;
4164 }
4165 }
4166 else
4167 {
4168 m_pStart = (LPSTR) m_spServerContext->GetAvailableData();
4169 }
4170
4171 m_pCurrent = m_pStart;
4172 m_pEnd = m_pCurrent + dwBytesTotal;
4173
4174 //get the boundary
4175 LPCSTR pszContentType = m_spServerContext->GetContentType();
4176 ATLASSERT(pszContentType != NULL);
4177
4178 LPCSTR pszTmp = _stristr(pszContentType, "boundary=");
4179 if (!pszTmp)
4180 {
4181 ATLTRACE(atlTraceISAPI, 0, _T("Malformed Form-Data"));
4182 return FALSE;
4183 }
4184
4185 pszTmp += sizeof("boundary=")-1;
4186 BOOL bInQuote = FALSE;
4187 if (*pszTmp == '\"')
4188 {
4189 bInQuote = TRUE;
4190 pszTmp++;
4191 }
4192
4193 LPSTR pszMimeBoundary = m_szBoundary;
4194 *pszMimeBoundary++ = '-';
4195 *pszMimeBoundary++ = '-';
4196 m_dwBoundaryLen = 2;
4197 while (*pszTmp && (bInQuote || IsStandardBoundaryChar(*pszTmp)))
4198 {
4199 if (m_dwBoundaryLen >= MAX_MIME_BOUNDARY_LEN)
4200 {
4201 ATLTRACE(atlTraceISAPI, 0, _T("Malformed MIME boundary"));
4202 return FALSE;
4203 }
4204
4205 if (*pszTmp == '\r' || *pszTmp == '\n')
4206 {
4207 if (bInQuote)
4208 {
4209 pszTmp++;
4210 continue;
4211 }
4212 break;
4213 }
4214 if (bInQuote && *pszTmp == '"')
4215 {
4216 break;
4217 }
4218
4219 *pszMimeBoundary++ = *pszTmp++;
4220 m_dwBoundaryLen++;
4221 }
4222
4223 *pszMimeBoundary = '\0';
4224 }
4225 _ATLCATCHALL()
4226 {
4227 return FALSE;
4228 }
4229
4230 return TRUE;
4231 }
4232
4233 inline __checkReturn BOOL MoveToData() throw()
4234 {
4235 LPSTR szEnd = _strstrex(m_pCurrent, "\r\n\r\n", m_pEnd);
4236 if (!szEnd)
4237 {
4238 return FALSE;
4239 }
4240
4241 m_pCurrent = szEnd+4;
4242 if (m_pCurrent >= m_pEnd)
4243 {
4244 return FALSE;
4245 }
4246
4247 return TRUE;
4248 }
4249
4250 inline __checkReturn BOOL GetMimeData(__inout CStringA &str, __in_ecount(dwFieldLen) LPCSTR szField, __in DWORD dwFieldLen, __out LPBOOL pbFound, __in BOOL bIgnoreCase = FALSE) throw()
4251 {
4252 _ATLTRY
4253 {
4254 ATLASSERT( szField != NULL );
4255 ATLENSURE( pbFound != NULL );
4256
4257 *pbFound = FALSE;
4258
4259 LPSTR szEnd = _strstrex(m_pCurrent, "\r\n\r\n", m_pEnd);
4260 if (!szEnd)
4261 {
4262 return FALSE;
4263 }
4264
4265 LPSTR szDataStart = NULL;
4266
4267 if (!bIgnoreCase)
4268 {
4269 szDataStart = _strstrex(m_pCurrent, szField, szEnd);
4270 }
4271 else
4272 {
4273 szDataStart = _stristrex(m_pCurrent, szField, szEnd);
4274 }
4275
4276 if (szDataStart)
4277 {
4278 szDataStart+= dwFieldLen;
4279 if (szDataStart >= m_pEnd)
4280 {
4281 return FALSE;
4282 }
4283
4284 BOOL bInQuote = FALSE;
4285 if (*szDataStart == '\"')
4286 {
4287 bInQuote = TRUE;
4288 szDataStart++;
4289 }
4290
4291 LPSTR szDataEnd = szDataStart;
4292 while (!bInQuote && (szDataEnd < m_pEnd) && (*szDataEnd == ' ' || *szDataEnd == '\t'))
4293 {
4294 szDataEnd++;
4295 }
4296
4297 if (szDataEnd >= m_pEnd)
4298 {
4299 return FALSE;
4300 }
4301
4302 while (szDataEnd < m_pEnd)
4303 {
4304 if (!IsValidTokenChar(*szDataEnd))
4305 {
4306 if (*szDataEnd == '\"' || !bInQuote)
4307 {
4308 break;
4309 }
4310 }
4311 szDataEnd++;
4312 }
4313
4314 if (szDataEnd >= m_pEnd)
4315 {
4316 return FALSE;
4317 }
4318
4319 str.SetString(szDataStart, (int)(szDataEnd-szDataStart));
4320 *pbFound = TRUE;
4321 }
4322
4323 return TRUE;
4324 }
4325 _ATLCATCHALL()
4326 {
4327 return FALSE;
4328 }
4329 }
4330
4331 ATL_NOINLINE __checkReturn BOOL ReadUntilBoundary(__inout_opt CStringA* pStrData=NULL, __inout_opt CAtlTemporaryFile* pCtf=NULL) throw()
4332 {
4333 _ATLTRY
4334 {
4335 LPSTR szBoundaryStart = m_pCurrent;
4336 LPSTR szBoundaryEnd = NULL;
4337
4338 do
4339 {
4340 szBoundaryStart = _strstrex(szBoundaryStart, m_szBoundary, m_pEnd);
4341 if (szBoundaryStart)
4342 {
4343 if ((szBoundaryStart-m_pStart) >= 2)
4344 {
4345 if (*(szBoundaryStart-1) != 0x0a || *(szBoundaryStart-2) != 0x0d)
4346 {
4347 szBoundaryStart++;
4348 continue;
4349 }
4350 }
4351 szBoundaryEnd = szBoundaryStart+m_dwBoundaryLen;
4352 if (szBoundaryEnd+2 >= m_pEnd)
4353 {
4354 return FALSE;
4355 }
4356 if (szBoundaryEnd[0] == '\r' && szBoundaryEnd[1] == '\n')
4357 {
4358 break;
4359 }
4360 if (szBoundaryEnd[0] == '-' && szBoundaryEnd[1] == '-')
4361 {
4362 m_bFinished = TRUE;
4363 break;
4364 }
4365 szBoundaryStart++;
4366 }
4367 } while (szBoundaryStart && szBoundaryStart < m_pEnd);
4368
4369 if (!szBoundaryStart || szBoundaryStart >= m_pEnd)
4370 {
4371 return FALSE;
4372 }
4373
4374 if ((szBoundaryStart-m_pStart) >= 2)
4375 {
4376 szBoundaryStart-= 2;
4377 }
4378 if (pStrData)
4379 {
4380 pStrData->SetString(m_pCurrent, (int)(szBoundaryStart-m_pCurrent));
4381 }
4382 if (pCtf)
4383 {
4384 if (FAILED(pCtf->Write(m_pCurrent, (DWORD)(szBoundaryStart-m_pCurrent))))
4385 {
4386 return FALSE;
4387 }
4388 }
4389
4390 if (!m_bFinished)
4391 {
4392 m_pCurrent = szBoundaryEnd+2;
4393 if (m_pCurrent >= m_pEnd)
4394 {
4395 return FALSE;
4396 }
4397 }
4398
4399 return TRUE;
4400 }
4401 _ATLCATCHALL()
4402 {
4403 return FALSE;
4404 }
4405 }
4406
4407 static inline __checkReturn BOOL IsStandardBoundaryChar(__in CHAR ch) throw()
4408 {
4409 if ( (ch >= 'A' && ch <= 'Z') ||
4410 (ch >= 'a' && ch <= 'z') ||
4411 (ch >= '0' && ch <= '9') ||
4412 (ch == '\'') ||
4413 (ch == '+') ||
4414 (ch == '_') ||
4415 (ch == '-') ||
4416 (ch == '=') ||
4417 (ch == '?') )
4418 {
4419 return TRUE;
4420 }
4421
4422 return FALSE;
4423 }
4424
4425 inline __checkReturn BOOL IsValidTokenChar(__in CHAR ch) throw()
4426 {
4427 return ( (ch != 0) && (ch != 0xd) && (ch != 0xa) && (ch != ' ') && (ch != '\"') );
4428 }
4429
4430 private:
4431 // Prevents copying.
4432 CMultiPartFormParser(__in const CMultiPartFormParser& /*that*/) throw()
4433 {
4434 ATLASSERT(FALSE);
4435 }
4436
4437 const CMultiPartFormParser& operator=(__in const CMultiPartFormParser& /*that*/) throw()
4438 {
4439 ATLASSERT(FALSE);
4440 return (*this);
4441 }
4442 }; // class CMultiPartFormParser
4443
4444
4445 // 48K max form size
4446 #ifndef DEFAULT_MAX_FORM_SIZE
4447 #define DEFAULT_MAX_FORM_SIZE 49152
4448 #endif
4449
4450 // This class provides access to the information contained in an HTTP request submitted to a web server.
4451 //
4452 // CHttpRequest provides access to the query string parameters, form fields, cookies, and files
4453 // that make up an HTTP request, as well as many other important properties of the request.
4454 class CHttpRequest : public IHttpRequestLookup
4455 {
4456 protected:
4457 // Implementation: Array used to map an HTTP request method (for example, "GET" or "POST")
4458 // from a string to a numeric constant from the HTTP_METHOD enum (HTTP_METHOD_GET or HTTP_METHOD_HEAD).
4459 static const char* const m_szMethodStrings[];
4460
4461 // Implementation: The server context.
4462 CComPtr<IHttpServerContext> m_spServerContext;
4463
4464 // Implementation: The number of bytes read from the body of the request.
4465 DWORD m_dwBytesRead;
4466
4467 // Implementation: TRUE if the request method was POST and the encoding was
4468 // multipart/form-data, FALSE otherwise.
4469 BOOL m_bMultiPart;
4470
4471 CCookie m_EmptyCookie;
4472
4473 // Implementation: Constructor function used to reinitialize all data members.
4474 void Construct() throw()
4475 {
4476 m_spServerContext.Release();
4477 m_bMultiPart = FALSE;
4478 m_dwBytesRead = 0;
4479 if (m_pFormVars != &m_QueryParams)
4480 delete m_pFormVars;
4481
4482 m_pFormVars = NULL;
4483 m_pFormVars = &m_QueryParams;
4484 m_QueryParams.RemoveAll();
4485 m_QueryParams.SetShared(false);
4486
4487 ClearFilesAndCookies();
4488 }
4489
4490 void ClearFilesAndCookies() throw()
4491 {
4492 m_Files.RemoveAll();
4493 m_Files.SetShared(false);
4494 m_requestCookies.RemoveAll();
4495 m_requestCookies.SetShared(false);
4496 }
4497
4498 public:
4499
4500 // Implementation: The collection of query parameters (name-value pairs) obtained from the query string.
4501 CHttpRequestParams m_QueryParams;
4502
4503 // Implementation: The collection of form fields (name-value pairs).
4504 // The elements of this collection are obtained from the query string for a GET request,
4505 // or from the body of the request for a POST request.
4506 CHttpRequestParams *m_pFormVars;
4507
4508 // The array of CHttpRequestFiles obtained from the current request.
4509 // See CHttpRequest::Initialize and CMultiPartFormParser::GetMultiPartData for more information.
4510 typedef CHttpPtrMap<CStringA, IHttpFile*, CStringElementTraits<CStringA> > FileMap;
4511 FileMap m_Files;
4512
4513 // Implementation: The array of cookies obtained from the current request.
4514 typedef CHttpMap<CStringA, CCookie, CStringElementTraits<CStringA> > CookieMap;
4515 CookieMap m_requestCookies;
4516
4517 // Numeric constants for the HTTP request methods (such as GET and POST).
4518 enum HTTP_METHOD
4519 {
4520 HTTP_METHOD_UNKNOWN=-1,
4521 HTTP_METHOD_GET,
4522 HTTP_METHOD_POST,
4523 HTTP_METHOD_HEAD,
4524 HTTP_METHOD_DELETE,
4525 HTTP_METHOD_LINK,
4526 HTTP_METHOD_UNLINK,
4527 HTTP_METHOD_DEBUG // Debugging support for VS7
4528 };
4529
4530 // The collection of query parameters (name-value pairs) obtained from the query string.
4531 // A read-only property.
4532 __declspec(property(get=GetQueryParams)) const CHttpRequestParams& QueryParams;
4533
4534 // Returns a reference to the collection of query parameters(name-value pairs)
4535 // obtained from the query string.
4536 const CHttpRequestParams& GetQueryParams() const throw()
4537 {
4538 return m_QueryParams;
4539 }
4540
4541 // The collection of form fields (name-value pairs).
4542 // The elements of this collection are obtained from the query string for a GET request,
4543 // or from the body of the request for a POST request.
4544 // A read-only property.
4545 __declspec(property(get=GetFormVars)) const CHttpRequestParams& FormVars;
4546
4547 // Returns a reference to the collection of form fields (name-value pairs)
4548 // obtained from the query string for a GET request,
4549 // or from the body of the request for a POST request.
4550 const CHttpRequestParams& GetFormVars() const throw()
4551 {
4552 return *m_pFormVars;
4553 }
4554
4555 CHttpRequest() throw()
4556 {
4557 m_bMultiPart = FALSE;
4558 m_dwBytesRead = 0;
4559 m_pFormVars = &m_QueryParams;
4560 }
4561
4562 virtual ~CHttpRequest() throw()
4563 {
4564 DeleteFiles();
4565
4566 if (m_pFormVars != &m_QueryParams)
4567 {
4568 delete m_pFormVars;
4569 m_pFormVars = NULL;
4570 }
4571 }
4572
4573 // Constructs and initializes the object.
4574 CHttpRequest(
4575 __in IHttpServerContext *pServerContext,
4576 __in DWORD dwMaxFormSize=DEFAULT_MAX_FORM_SIZE,
4577 __in DWORD dwFlags=ATL_FORM_FLAG_NONE) throw(...)
4578 :m_pFormVars(NULL)
4579 {
4580 Construct();
4581 if (!Initialize(pServerContext, dwMaxFormSize, dwFlags))
4582 AtlThrow(E_FAIL);
4583 }
4584
4585 CHttpRequest(__in IHttpRequestLookup *pRequestLookup) throw(...)
4586 :m_pFormVars(NULL)
4587 {
4588 if (!Initialize(pRequestLookup)) // Calls Construct for you
4589 AtlThrow(E_FAIL);
4590 }
4591
4592 //=========================================================================================
4593 // BEGIN IHttpRequestLoookup interface
4594 //=========================================================================================
4595 __success(return != NULL) __checkReturn POSITION GetFirstQueryParam(__deref_out LPCSTR *ppszName, __deref_out LPCSTR *ppszValue)
4596 {
4597 POSITION pos = m_QueryParams.GetStartPosition();
4598 if (pos != NULL)
4599 {
4600 ATLENSURE(ppszName != NULL);
4601 ATLENSURE(ppszValue != NULL);
4602 *ppszName = m_QueryParams.GetKeyAt(pos);
4603 *ppszValue = m_QueryParams.GetValueAt(pos);
4604 }
4605
4606 return pos;
4607 }
4608
4609 __success(return != NULL) __checkReturn POSITION GetNextQueryParam(__in POSITION pos, __deref_out LPCSTR *ppszName, __deref_out LPCSTR *ppszValue)
4610 {
4611 ATLENSURE(pos != NULL);
4612
4613
4614 POSITION posNext(pos);
4615 m_QueryParams.GetNext(posNext);
4616 if (posNext != NULL)
4617 {
4618 ATLENSURE(ppszName != NULL);
4619 ATLENSURE(ppszValue != NULL);
4620 *ppszName = m_QueryParams.GetKeyAt(posNext);
4621 *ppszValue = m_QueryParams.GetValueAt(posNext);
4622 }
4623
4624 return posNext;
4625 }
4626
4627 __success(return != NULL) __checkReturn POSITION GetFirstFormVar(__deref_out LPCSTR *ppszName, __deref_out LPCSTR *ppszValue)
4628 {
4629 // if no form vars and just pointing to the query params,
4630 // then return NULL
4631 if (m_pFormVars == &m_QueryParams)
4632 return NULL;
4633
4634 POSITION pos = m_pFormVars->GetStartPosition();
4635 if (pos != NULL)
4636 {
4637 ATLENSURE(ppszName != NULL);
4638 ATLENSURE(ppszValue != NULL);
4639 *ppszName = m_pFormVars->GetKeyAt(pos);
4640 *ppszValue = m_pFormVars->GetValueAt(pos);
4641 }
4642
4643 return pos;
4644 }
4645
4646 __success(return != NULL) __checkReturn POSITION GetNextFormVar(__in POSITION pos, __deref_out LPCSTR *ppszName, __deref_out LPCSTR *ppszValue)
4647 {
4648 ATLASSERT(pos != NULL);
4649 ATLASSERT(ppszName != NULL);
4650 ATLASSERT(ppszValue != NULL);
4651
4652 POSITION posNext(pos);
4653 m_pFormVars->GetNext(posNext);
4654 if (posNext != NULL)
4655 {
4656 *ppszName = m_pFormVars->GetKeyAt(posNext);
4657 *ppszValue = m_pFormVars->GetValueAt(posNext);
4658 }
4659
4660 return posNext;
4661 }
4662
4663 POSITION GetFirstFile(__in LPCSTR *ppszName, __deref_out IHttpFile **ppFile)
4664 {
4665 ATLASSERT(ppszName != NULL);
4666 ATLASSERT(ppFile != NULL);
4667
4668 POSITION pos = m_Files.GetStartPosition();
4669 if (pos != NULL)
4670 {
4671 *ppszName = m_Files.GetKeyAt(pos);
4672 *ppFile = m_Files.GetValueAt(pos);
4673 }
4674
4675 return pos;
4676 }
4677
4678 __success(return != NULL) __checkReturn POSITION GetNextFile(__in POSITION pos, __deref_out LPCSTR *ppszName, __deref_out IHttpFile **ppFile)
4679 {
4680 ATLASSERT(pos != NULL);
4681 ATLASSERT(ppszName != NULL);
4682 ATLASSERT(ppFile != NULL);
4683
4684 m_Files.GetNext(pos);
4685 if (pos != NULL)
4686 {
4687 *ppszName = m_Files.GetKeyAt(pos);
4688 *ppFile = m_Files.GetValueAt(pos);
4689 }
4690
4691 return pos;
4692 }
4693
4694 // Returns a pointer to the IHttpServerContext interface for the current request.
4695 HRESULT GetServerContext(__deref_out_opt IHttpServerContext ** ppOut)
4696 {
4697 return m_spServerContext.CopyTo(ppOut);
4698 }
4699 //=========================================================================================
4700 // END IHttpRequestLookup interface
4701 //=========================================================================================
4702
4703 __success(return != NULL) __checkReturn POSITION GetFirstCookie(__deref_out LPCSTR *ppszName, __deref_out const CCookie **ppCookie) throw()
4704 {
4705 ATLASSERT(ppszName != NULL);
4706 ATLASSERT(ppCookie != NULL);
4707 POSITION pos = NULL;
4708 if (GetRequestCookies())
4709 {
4710 pos = m_requestCookies.GetStartPosition();
4711 if (pos != NULL)
4712 {
4713 *ppszName = m_requestCookies.GetKeyAt(pos);
4714 *ppCookie = &(m_requestCookies.GetValueAt(pos));
4715 }
4716 }
4717 return pos;
4718 }
4719
4720 __success(return != NULL) __checkReturn POSITION GetNextCookie(__in POSITION pos, __deref_out LPCSTR *ppszName, __deref_out const CCookie **ppCookie) throw()
4721 {
4722 ATLASSERT(pos != NULL);
4723 ATLASSERT(ppszName != NULL);
4724 ATLASSERT(ppCookie != NULL);
4725
4726 POSITION posNext(pos);
4727 m_requestCookies.GetNext(posNext);
4728 if (posNext != NULL)
4729 {
4730 *ppszName = m_requestCookies.GetKeyAt(posNext);
4731 *ppCookie = &(m_requestCookies.GetValueAt(posNext));
4732 }
4733 return posNext;
4734 }
4735
4736 void SetServerContext(__in IHttpServerContext *pServerContext) throw()
4737 {
4738 m_spServerContext = pServerContext;
4739 }
4740
4741 BOOL Initialize(__in IHttpRequestLookup *pRequestLookup) throw()
4742 {
4743 _ATLTRY
4744 {
4745 ATLASSERT(pRequestLookup != NULL);
4746 // if there's no pRequestLookup, just return
4747 if (!pRequestLookup)
4748 return TRUE;
4749
4750 Construct();
4751 HRESULT hr = pRequestLookup->GetServerContext(&m_spServerContext);
4752 if (FAILED(hr))
4753 return FALSE;
4754
4755 LPCSTR szName(NULL);
4756 LPCSTR szValue(NULL);
4757
4758 // Initialize query params from the IHttpRequestLookup*
4759 POSITION pos(pRequestLookup->GetFirstQueryParam(&szName, &szValue));
4760 while (pos != NULL)
4761 {
4762 m_QueryParams.SetAt(szName, szValue);
4763 pos = pRequestLookup->GetNextQueryParam(pos, &szName, &szValue);
4764 }
4765 m_QueryParams.SetShared(true);
4766
4767 // Initialize the form vars from the IHttpRequestLookup*
4768 pos = pRequestLookup->GetFirstFormVar(&szName, &szValue);
4769 if (pos)
4770 {
4771 m_pFormVars = NULL;
4772 ATLTRY(m_pFormVars = new CHttpRequestParams);
4773 if (!m_pFormVars)
4774 return FALSE;
4775
4776 while (pos != NULL)
4777 {
4778 m_pFormVars->SetAt(szName, szValue);
4779 pos = pRequestLookup->GetNextFormVar(pos, &szName, &szValue);
4780 }
4781 m_pFormVars->SetShared(true);
4782 }
4783 else
4784 {
4785 m_pFormVars = &m_QueryParams;
4786 }
4787
4788 // Initialize the files from the IHttpRequestLookup*
4789 IHttpFile *pFile(NULL);
4790 pos = pRequestLookup->GetFirstFile(&szName, &pFile);
4791 while (pos != NULL)
4792 {
4793 m_Files.SetAt(szName, pFile);
4794 pos = pRequestLookup->GetNextFile(pos, &szName, &pFile);
4795 }
4796 m_Files.SetShared(true);
4797
4798 // Initialzie the cookies form the IHttpRequestLookup*
4799 BOOL bRet = FALSE;
4800 CStringA strCookies;
4801 bRet = GetCookies(strCookies);
4802 if (bRet)
4803 {
4804 bRet = Parse(strCookies);
4805 }
4806 m_requestCookies.SetShared(false);
4807 return bRet;
4808 } // _ATLTRY
4809 _ATLCATCHALL()
4810 {
4811 }
4812 return FALSE;
4813 }
4814
4815 // Call this function to initialize the object with information about the current request.
4816 //
4817 // Returns TRUE on success, FALSE on failure.
4818 //
4819 // Call Initialize directly or via the appropriate constructor before using the methods and
4820 // properties of the request object.
4821 //
4822 // Initialize does the following:
4823 //
4824 // Parses and decodes the query string into a collection of name-value pairs.
4825 // This collection is accessible via the GetQueryParams method or the QueryParams property.
4826 //
4827 // Sets m_bMultiPart to TRUE if the request is a POST request with multipart/form-data encoding.
4828 //
4829 // Parses the body of a POST request if the size of the request data is less than or equal to dwMaxFormSize.
4830 // The body of the request will consist of simple form fields and may also contain files if the request is encoded as multipart/form-data.
4831 // In that case, the dwFlags parameter is passed to CMultiPartFormParser::GetMultiPartData to control the creation of the files.
4832 // The collection of form fields is accessible via the GetFormVars method or the FormVars property.
4833 // The collection of files is accessible via the m_Files member.
4834 //
4835 // Note that Initialize does not parse the cookies associated with a request.
4836 // Cookies are not processed until an attempt is made to access a cookie in the collection.
4837 BOOL Initialize(
4838 __in IHttpServerContext *pServerContext,
4839 __in DWORD dwMaxFormSize=DEFAULT_MAX_FORM_SIZE,
4840 __in DWORD dwFlags=ATL_FORM_FLAG_NONE) throw()
4841 {
4842 _ATLTRY
4843 {
4844 ATLASSERT(pServerContext != NULL);
4845 if (!pServerContext)
4846 {
4847 return FALSE;
4848 }
4849
4850 m_spServerContext = pServerContext;
4851
4852 HTTP_METHOD httpMethod = GetMethod();
4853 LPCSTR pszQueryString = GetQueryString();
4854 if (pszQueryString && *pszQueryString)
4855 {
4856 // Parse the query string.
4857 CHAR szQueryString[ATL_URL_MAX_URL_LENGTH];
4858 if (!SafeStringCopy(szQueryString, pszQueryString))
4859 {
4860 return FALSE;
4861 }
4862
4863 if (!m_QueryParams.Parse(szQueryString))
4864 {
4865 return FALSE;
4866 }
4867 }
4868
4869 if (m_QueryParams.IsShared())
4870 {
4871 return TRUE;
4872 }
4873
4874 // If this is a GET request, the collection of form fields
4875 // is the same as the collection of query parameters.
4876 if (httpMethod == HTTP_METHOD_GET)
4877 {
4878 m_pFormVars = &m_QueryParams;
4879 return TRUE;
4880 }
4881 else if (httpMethod == HTTP_METHOD_POST)
4882 {
4883 LPCSTR szContentType = GetContentType();
4884 if (!szContentType)
4885 return FALSE;
4886
4887 // Don't parse the form data if the size is bigger than the maximum specified.
4888 if (m_spServerContext->GetTotalBytes() > dwMaxFormSize)
4889 {
4890 if (strncmp(szContentType, "multipart/form-data", 19) == 0)
4891 m_bMultiPart = TRUE;
4892
4893 m_dwBytesRead = 0;
4894
4895 return TRUE;
4896 }
4897
4898 // If POSTed data is urlencoded, call InitFromPost.
4899 if (strncmp(szContentType, "application/x-www-form-urlencoded", 33) == 0 && !m_pFormVars->IsShared())
4900 return InitFromPost();
4901
4902 // If POSTed data is encoded as multipart/form-data, use CMultiPartFormParser.
4903 if (strncmp(szContentType, "multipart/form-data", 19) == 0 && !m_pFormVars->IsShared())
4904 {
4905 if (m_pFormVars != &m_QueryParams)
4906 delete m_pFormVars;
4907 m_pFormVars = NULL;
4908
4909 CMultiPartFormParser FormParser(m_spServerContext);
4910 ATLTRY(m_pFormVars = new CHttpRequestParams);
4911 if (!m_pFormVars)
4912 return FALSE;
4913
4914 BOOL bRet = FormParser.GetMultiPartData(m_Files, m_pFormVars, dwFlags);
4915 return bRet;
4916 }
4917
4918 // else initialize m_dwBytesRead for ReadData
4919 m_dwBytesRead = 0;
4920 }
4921
4922 return TRUE;
4923 }
4924 _ATLCATCHALL()
4925 {
4926 }
4927 return FALSE;
4928
4929 }
4930
4931 // Implementation: Call this function to initialize the collection of form fields
4932 // from the body of an application/x-www-form-urlencoded POST request.
4933 ATL_NOINLINE BOOL InitFromPost() throw()
4934 {
4935 _ATLTRY
4936 {
4937 ATLASSUME(m_spServerContext != NULL);
4938
4939 // create our m_pFormVars
4940 if (m_pFormVars == NULL || m_pFormVars == &m_QueryParams)
4941 {
4942 ATLTRY(m_pFormVars = new CHttpRequestParams);
4943 if (m_pFormVars == NULL)
4944 {
4945 return FALSE;
4946 }
4947 }
4948
4949 // read the form data into a buffer
4950 DWORD dwBytesTotal = m_spServerContext->GetTotalBytes();
4951 CAutoVectorPtr<CHAR> szBuff;
4952 if ((dwBytesTotal+1 < dwBytesTotal) || (dwBytesTotal < 0))
4953 {
4954 return FALSE;
4955 }
4956 if (!szBuff.Allocate(dwBytesTotal+1))
4957 {
4958 return FALSE;
4959 }
4960 // first copy the available
4961 BOOL bRet = ReadClientData(m_spServerContext, szBuff, &dwBytesTotal, 0);
4962 if (bRet)
4963 {
4964 szBuff[dwBytesTotal] = '\0';
4965 bRet = m_pFormVars->Parse(szBuff);
4966 }
4967
4968 return bRet;
4969 }
4970 _ATLCATCHALL()
4971 {
4972 }
4973 return FALSE;
4974 }
4975
4976 // Call this function to remove the files listed in m_Files from the web server's hard disk.
4977 // Returns the number of files deleted.
4978 int DeleteFiles() throw()
4979 {
4980 int nDeleted = 0;
4981 POSITION pos = m_Files.GetStartPosition();
4982 while (pos != NULL)
4983 {
4984 LPCSTR szTempFile = m_Files.GetKeyAt(pos);
4985 if (szTempFile && DeleteFileA(szTempFile))
4986 {
4987 nDeleted++;
4988 }
4989 m_Files.GetNext(pos);
4990 }
4991
4992 return nDeleted;
4993 }
4994
4995 // Read a specified amount of data into pbDest and return the bytes read in pdwLen.
4996 // Returns TRUE on success, FALSE on failure.
4997 BOOL ReadData(__out_ecount_part(*pdwLen,*pdwLen) LPSTR pDest, __inout LPDWORD pdwLen)
4998 {
4999 ATLENSURE(pDest);
5000 ATLENSURE(pdwLen);
5001
5002 BOOL bRet = ReadClientData(m_spServerContext, pDest, pdwLen, m_dwBytesRead);
5003 if (bRet)
5004 m_dwBytesRead+= *pdwLen;
5005 return bRet;
5006 }
5007
5008 // Returns the number of bytes available in the request buffer accessible via GetAvailableData.
5009 // If GetAvailableBytes returns the same value as GetTotalBytes, the request buffer contains the whole request.
5010 // Otherwise, the remaining data should be read from the client using ReadData.
5011 // Equivalent to EXTENSION_CONTROL_BLOCK::cbAvailable.
5012 __checkReturn DWORD GetAvailableBytes() throw(...)
5013 {
5014 ATLENSURE(m_spServerContext);
5015 return m_spServerContext->GetAvailableBytes();
5016 }
5017
5018 // Returns the total number of bytes to be received from the client.
5019 // If this value is 0xffffffff, then there are four gigabytes or more of available data.
5020 // In this case, ReadData should be called until no more data is returned.
5021 // Equivalent to the CONTENT_LENGTH server variable or EXTENSION_CONTROL_BLOCK::cbTotalBytes.
5022 __checkReturn DWORD GetTotalBytes() throw(...)
5023 {
5024 ATLENSURE(m_spServerContext);
5025 return m_spServerContext->GetTotalBytes();
5026 }
5027
5028 // Returns a pointer to the request buffer containing the data sent by the client.
5029 // The size of the buffer can be determined by calling GetAvailableBytes.
5030 // Equivalent to EXTENSION_CONTROL_BLOCK::lpbData
5031 __checkReturn LPBYTE GetAvailableData() throw(...)
5032 {
5033 ATLENSURE(m_spServerContext);
5034 return m_spServerContext->GetAvailableData();
5035 }
5036
5037
5038 // Returns a nul-terminated string that contains the query information.
5039 // This is the part of the URL that appears after the question mark (?).
5040 // Equivalent to the QUERY_STRING server variable or EXTENSION_CONTROL_BLOCK::lpszQueryString.
5041 __checkReturn LPCSTR GetQueryString() throw(...)
5042 {
5043 ATLENSURE(m_spServerContext);
5044 return m_spServerContext->GetQueryString();
5045 }
5046
5047 // Returns a nul-terminated string that contains the HTTP method of the current request.
5048 // Examples of common HTTP methods include "GET" and "POST".
5049 // Equivalent to the REQUEST_METHOD server variable or EXTENSION_CONTROL_BLOCK::lpszMethod.
5050 __checkReturn LPCSTR GetMethodString() throw(...)
5051 {
5052 ATLENSURE(m_spServerContext);
5053 return m_spServerContext->GetRequestMethod();
5054 }
5055
5056 // Returns an HTTP_METHOD enum value corresponding to the HTTP method of the current request.
5057 // Returns HTTP_METHOD_UNKNOWN if the request method is not one of the following methods:
5058 // GET
5059 // POST
5060 // HEAD
5061 // DELETE
5062 // LINK
5063 // UNLINK
5064 __checkReturn HTTP_METHOD GetMethod() throw(...)
5065 {
5066 LPCSTR szMethod = GetMethodString();
5067 if (!szMethod)
5068 return HTTP_METHOD_UNKNOWN;
5069 for (int i=0; m_szMethodStrings[i]; i++)
5070 {
5071 if (strcmp(szMethod, m_szMethodStrings[i]) == 0)
5072 return (HTTP_METHOD) i;
5073 }
5074 return HTTP_METHOD_UNKNOWN;
5075 }
5076
5077 // Returns a nul-terminated string that contains the content type of the data sent by the client.
5078 // Equivalent to the CONTENT_TYPE server variable or EXTENSION_CONTROL_BLOCK::lpszContentType.
5079 __checkReturn LPCSTR GetContentType() throw(...)
5080 {
5081 ATLENSURE(m_spServerContext);
5082 return m_spServerContext->GetContentType();
5083 }
5084
5085
5086 // Call this function to retrieve a nul-terminated string containing the value of the "AUTH_USER" server variable.
5087 //
5088 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5089 //
5090 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5091 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5092 __checkReturn BOOL GetAuthUserName(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) throw(...)
5093 {
5094 ATLENSURE(m_spServerContext);
5095 return m_spServerContext->GetServerVariable("AUTH_USER", szBuff, pdwSize);
5096 }
5097
5098 // Call this function to retrieve a nul-terminated string containing the value of the "APPL_PHYSICAL_PATH" server variable.
5099 //
5100 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5101 //
5102 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5103 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5104 __checkReturn BOOL GetPhysicalPath(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) throw(...)
5105 {
5106 ATLENSURE(m_spServerContext);
5107 return m_spServerContext->GetServerVariable("APPL_PHYSICAL_PATH", szBuff, pdwSize);
5108 }
5109
5110 // Call this function to retrieve a nul-terminated string containing the value of the "AUTH_PASSWORD" server variable.
5111 //
5112 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5113 //
5114 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5115 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5116 __checkReturn BOOL GetAuthUserPassword(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) throw(...)
5117 {
5118 ATLENSURE(m_spServerContext);
5119 return m_spServerContext->GetServerVariable("AUTH_PASSWORD", szBuff, pdwSize);
5120 }
5121
5122 // Call this function to retrieve a nul-terminated string containing the value of the "URL" server variable.
5123 //
5124 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5125 //
5126 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5127 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5128 __checkReturn BOOL GetUrl(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, DWORD *pdwSize) throw(...)
5129 {
5130 ATLENSURE(m_spServerContext);
5131 return m_spServerContext->GetServerVariable("URL", szBuff, pdwSize);
5132 }
5133
5134 // Call this function to retrieve a nul-terminated string containing the value of the "REMOTE_HOST" server variable.
5135 //
5136 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5137 //
5138 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5139 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5140 __checkReturn BOOL GetUserHostName(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) throw(...)
5141 {
5142 ATLENSURE(m_spServerContext);
5143 return m_spServerContext->GetServerVariable("REMOTE_HOST", szBuff, pdwSize);
5144 }
5145
5146 // Call this function to retrieve a nul-terminated string containing the value of the "REMOTE_ADDR" server variable.
5147 //
5148 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5149 //
5150 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5151 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5152 __checkReturn BOOL GetUserHostAddress(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) throw(...)
5153 {
5154 ATLENSURE(m_spServerContext);
5155 return m_spServerContext->GetServerVariable("REMOTE_ADDR", szBuff, pdwSize);
5156 }
5157
5158 // Call this function to retrieve a nul-terminated string containing the physical path of the script.
5159 //
5160 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5161 //
5162 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5163 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5164 // The script path is the same as GetPathTranslated up to the first .srf or .dll.
5165 // For example, if GetPathTranslated returns "c:\inetpub\vcisapi\hello.srf\goodmorning",
5166 // then this function returns "c:\inetpub\vcisapi\hello.srf".
5167 __checkReturn LPCSTR GetScriptPathTranslated() throw(...)
5168 {
5169 ATLENSURE(m_spServerContext);
5170 return m_spServerContext->GetScriptPathTranslated();
5171 }
5172
5173 // Returns a nul-terminated string that contains the physical path of the requested resource on the local server.
5174 // Equivalent to the PATH_TRANSLATED server variable or EXTENSION_CONTROL_BLOCK::lpszPathTranslated.
5175 __checkReturn LPCSTR GetPathTranslated() throw(...)
5176 {
5177 ATLENSURE(m_spServerContext);
5178 return m_spServerContext->GetPathTranslated();
5179 }
5180
5181 // Returns a nul-terminated string that contains the path of the current request.
5182 // This is the part of the URL that appears after the server name, but before the query string.
5183 // Equivalent to the PATH_INFO server variable or EXTENSION_CONTROL_BLOCK::lpszPathInfo.
5184 __checkReturn LPCSTR GetPathInfo() throw(...)
5185 {
5186 ATLENSURE(m_spServerContext);
5187 return m_spServerContext->GetPathInfo();
5188 }
5189
5190 // Call this function to determine whether the current request was authenticated.
5191 __checkReturn BOOL GetAuthenticated() throw(...)
5192 {
5193 // We assume that if we get an authentication type from IIS,
5194 // then the user has been authenticated.
5195 CStringA strAuthType;
5196 if (GetAuthenticationType(strAuthType) &&
5197 strAuthType.GetLength() > 0)
5198 return TRUE;
5199
5200 return FALSE;
5201 }
5202
5203 // Call this function to retrieve a nul-terminated string containing the value of the "AUTH_TYPE" server variable.
5204 //
5205 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5206 //
5207 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5208 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5209 __checkReturn BOOL GetAuthenticationType(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) throw(...)
5210 {
5211 ATLENSURE(m_spServerContext);
5212 return m_spServerContext->GetServerVariable("AUTH_TYPE", szBuff, pdwSize);
5213 }
5214
5215 // Call this function to retrieve a nul-terminated string containing the value of the "REMOTE_USER" server variable.
5216 //
5217 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5218 //
5219 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5220 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5221 __checkReturn BOOL GetUserName(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, DWORD __inout *pdwSize) throw(...)
5222 {
5223 ATLENSURE(m_spServerContext);
5224 return m_spServerContext->GetServerVariable("REMOTE_USER", szBuff, pdwSize);
5225 }
5226
5227 // Call this function to retrieve a nul-terminated string containing the value of the "HTTP_USER_AGENT" server variable.
5228 //
5229 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5230 //
5231 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5232 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5233 __checkReturn BOOL GetUserAgent(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) throw(...)
5234 {
5235 ATLENSURE(m_spServerContext);
5236 return m_spServerContext->GetServerVariable("HTTP_USER_AGENT", szBuff, pdwSize);
5237 }
5238
5239 // Call this function to retrieve a nul-terminated string containing the value of the "HTTP_ACCEPT_LANGUAGE" server variable.
5240 //
5241 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5242 //
5243 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5244 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5245 __checkReturn BOOL GetUserLanguages(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) throw(...)
5246 {
5247 ATLENSURE(m_spServerContext);
5248 return m_spServerContext->GetServerVariable("HTTP_ACCEPT_LANGUAGE", szBuff, pdwSize);
5249 }
5250
5251 // Call this function to retrieve a nul-terminated string containing the value of the "HTTP_ACCEPT" server variable.
5252 //
5253 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5254 //
5255 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5256 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5257 __checkReturn BOOL GetAcceptTypes(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) throw(...)
5258 {
5259 ATLENSURE(m_spServerContext);
5260 return m_spServerContext->GetServerVariable("HTTP_ACCEPT", szBuff, pdwSize);
5261 }
5262
5263 // Call this function to retrieve a nul-terminated string containing the value of the "HTTP_ACCEPT_ENCODING" server variable.
5264 //
5265 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5266 //
5267 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5268 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5269 __checkReturn BOOL GetAcceptEncodings(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) throw(...)
5270 {
5271 ATLENSURE(m_spServerContext);
5272 return m_spServerContext->GetServerVariable("HTTP_ACCEPT_ENCODING", szBuff, pdwSize);
5273 }
5274
5275
5276 // Call this function to retrieve a nul-terminated string containing the value of the "HTTP_REFERER" server variable.
5277 //
5278 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5279 //
5280 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5281 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5282 __checkReturn BOOL GetUrlReferer(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) throw(...)
5283 {
5284 ATLENSURE(m_spServerContext);
5285 return m_spServerContext->GetServerVariable("HTTP_REFERER", szBuff, pdwSize);
5286 }
5287
5288 // Call this function to retrieve a nul-terminated string containing the value of the "SCRIPT_NAME" server variable.
5289 //
5290 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5291 //
5292 // On entry, pdwSize should point to a DWORD that indicates the size of the buffer in bytes.
5293 // On exit, the DWORD contains the number of bytes transferred or available to be transferred into the buffer (including the nul-terminating byte).
5294 __checkReturn BOOL GetScriptName(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuff, __inout DWORD *pdwSize) throw(...)
5295 {
5296 ATLENSURE(m_spServerContext);
5297 return m_spServerContext->GetServerVariable("SCRIPT_NAME", szBuff, pdwSize);
5298 }
5299
5300 // Fills a buffer with the contents of the HTTP_COOKIE headers sent
5301 // from the browser.
5302 __checkReturn BOOL GetCookies(__out_ecount_part(*pdwSize,*pdwSize) LPSTR szBuf, __inout LPDWORD pdwSize) const throw(...)
5303 {
5304 ATLASSERT(szBuf != NULL);
5305
5306 CStringA strCookie;
5307 if (GetCookies(strCookie))
5308 {
5309 ATLENSURE(pdwSize != NULL);
5310 if (pdwSize && *pdwSize > (DWORD)strCookie.GetLength())
5311 {
5312 Checked::strcpy_s(szBuf, *pdwSize, strCookie);
5313 *pdwSize = strCookie.GetLength();
5314 return true;
5315 }
5316 }
5317 return false;
5318 }
5319
5320 // Fills a CStringA with the contents of the HTTP_COOKIE headers sent
5321 // from the browser.
5322 __checkReturn BOOL GetCookies(__inout CStringA& strBuff) const throw()
5323 {
5324 return GetServerVariable("HTTP_COOKIE", strBuff);
5325 }
5326
5327 // Call this function to retrieve a reference to the specified cookie.
5328 // Returns a CCookie reference to the specified cookie or a
5329 // reference to an empty cookie if the name can not be found.
5330 ATL_NOINLINE const CCookie& Cookies(__in LPCSTR szName) throw(...)
5331 {
5332 if (GetRequestCookies())
5333 {
5334 // p->m_value is a const CCookie&
5335 CookieMap::CPair *p = NULL;
5336 ATLTRY(p = m_requestCookies.Lookup(szName));
5337 if (p)
5338 {
5339 return p->m_value;
5340 }
5341 }
5342 m_EmptyCookie.Empty(); // make sure it is cleared.
5343 return m_EmptyCookie;
5344 }
5345
5346
5347 // Call this function to retrieve the session cookie.
5348 const CCookie& GetSessionCookie() throw(...)
5349 {
5350 return Cookies(SESSION_COOKIE_NAME);
5351 }
5352
5353 // Call this function to retrieve the value of the requested server variable in a CStringA object.
5354 // Returns TRUE on success, and FALSE on failure. Call GetLastError to get extended error information.
5355 // Equivalent to EXTENSION_CONTROL_BLOCK::GetServerVariable.
5356 BOOL GetServerVariable(__in LPCSTR szVariable, __out CStringA &str) const
5357 {
5358 ATLENSURE(m_spServerContext);
5359
5360 DWORD dwSize = 0;
5361 BOOL bRet = FALSE;
5362 _ATLTRY
5363 {
5364 m_spServerContext->GetServerVariable(szVariable, NULL, &dwSize);
5365 bRet = m_spServerContext->GetServerVariable(szVariable, str.GetBuffer(dwSize), &dwSize);
5366 if (dwSize > 0)
5367 dwSize--;
5368 str.ReleaseBuffer(dwSize);
5369 }
5370 _ATLCATCHALL()
5371 {
5372 bRet = FALSE;
5373 }
5374 return bRet;
5375 }
5376
5377 // Call this function to retrieve the value of the "APPL_PHYSICAL_PATH" server variable.
5378 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5379 __checkReturn BOOL GetPhysicalPath(__out CStringA &str) throw()
5380 {
5381 return GetServerVariable("APPL_PHYSICAL_PATH", str);
5382 }
5383
5384 // Call this function to retrieve the value of the "REMOTE_HOST" server variable.
5385 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5386 __checkReturn BOOL GetUserHostName(__out CStringA &str) throw()
5387 {
5388 return GetServerVariable("REMOTE_HOST", str);
5389 }
5390
5391 // Call this function to retrieve the value of the "REMOTE_ADDR" server variable.
5392 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5393 __checkReturn BOOL GetUserHostAddress(__out CStringA &str) throw()
5394 {
5395 return GetServerVariable("REMOTE_ADDR", str);
5396 }
5397
5398 // Call this function to retrieve the value of the "AUTH_TYPE" server variable.
5399 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5400 __checkReturn BOOL GetAuthenticationType(__out CStringA &str) throw()
5401 {
5402 return GetServerVariable("AUTH_TYPE", str);
5403 }
5404
5405 // Call this function to retrieve the value of the "REMOTE_USER" server variable.
5406 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5407 __checkReturn BOOL GetUserName(__out CStringA &str) throw()
5408 {
5409 return GetServerVariable("REMOTE_USER", str);
5410 }
5411
5412 // Call this function to retrieve the value of the "HTTP_USER_AGENT" server variable.
5413 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5414 __checkReturn BOOL GetUserAgent(__out CStringA &str) throw()
5415 {
5416 return GetServerVariable("HTTP_USER_AGENT", str);
5417 }
5418
5419 // Call this function to retrieve the value of the "HTTP_ACCEPT_LANGUAGE" server variable.
5420 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5421 __checkReturn BOOL GetUserLanguages(__out CStringA &str) throw()
5422 {
5423 return GetServerVariable("HTTP_ACCEPT_LANGUAGE", str);
5424 }
5425
5426 // Call this function to retrieve the value of the "AUTH_USER" server variable.
5427 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5428 __checkReturn BOOL GetAuthUserName(__out CStringA &str) throw()
5429 {
5430 return GetServerVariable("AUTH_USER", str);
5431 }
5432
5433 // Call this function to retrieve the value of the "AUTH_PASSWORD" server variable.
5434 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5435 __checkReturn BOOL GetAuthUserPassword(__out CStringA &str) throw()
5436 {
5437 return GetServerVariable("AUTH_PASSWORD", str);
5438 }
5439
5440 // Call this function to retrieve the value of the "URL" server variable.
5441 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5442 __checkReturn BOOL GetUrl(__out CStringA &str) throw()
5443 {
5444 return GetServerVariable("URL", str);
5445 }
5446
5447 // Call this function to retrieve the value of the "HTTP_ACCEPT" server variable.
5448 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5449 __checkReturn BOOL GetAcceptTypes(__out CStringA &str) throw()
5450 {
5451 return GetServerVariable("HTTP_ACCEPT", str);
5452 }
5453
5454 // Call this function to retrieve the value of the "HTTP_ACCEPT_ENCODING" server variable.
5455 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5456 __checkReturn BOOL GetAcceptEncodings(__out CStringA& str) throw()
5457 {
5458 return GetServerVariable("HTTP_ACCEPT_ENCODING", str);
5459 }
5460
5461 // Call this function to retrieve the value of the "HTTP_REFERER" server variable.
5462 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5463 __checkReturn BOOL GetUrlReferer(__out CStringA &str) throw()
5464 {
5465 return GetServerVariable("HTTP_REFERER", str);
5466 }
5467
5468 // Call this function to retrieve the value of the "SCRIPT_NAME" server variable.
5469 // Returns TRUE on success, FALSE on failure. Call GetLastError to get extended error information.
5470 __checkReturn BOOL GetScriptName(__out CStringA &str) throw()
5471 {
5472 return GetServerVariable("SCRIPT_NAME", str);
5473 }
5474
5475 // Implementation: Call this function to populate the collection
5476 // of CCookie objects with the cookies in the current request.
5477 // Returns TRUE on success, FALSE on failure.
5478 __checkReturn BOOL GetRequestCookies() throw()
5479 {
5480 BOOL bRet = FALSE;
5481
5482 if (m_requestCookies.GetCount())
5483 return TRUE; // we already got the cookies!
5484
5485 CStringA strCookies;
5486 if (GetCookies(strCookies))
5487 {
5488 bRet = Parse(strCookies);
5489 }
5490 return bRet;
5491 }
5492
5493 private:
5494 struct Pair
5495 {
5496 Pair(__in const CStringA &n, __in const CStringA& v)
5497 {
5498 name = n;
5499 value = v;
5500 }
5501
5502 Pair(__in const Pair& rhs)
5503 {
5504 name = rhs.name;
5505 value = rhs.value;
5506 }
5507
5508 CStringA name;
5509 CStringA value;
5510 };
5511 static const int INVALID_COOKIE_VERSION = -1;
5512 public:
5513
5514 // Implementation: Call this function to populate m_requestCookies
5515 // with a collection of CCookie objects which represents the
5516 // cookies contained in szCookie header sent from the browser.
5517 BOOL Parse(__in LPCSTR szCookieIn)
5518 {
5519 ATLENSURE(szCookieIn!=NULL);
5520 UINT acp = GetACP();
5521 LPCSTR szStart;
5522 LPCSTR szEnd;
5523 CStringA name, value;
5524 CAtlList<Pair> pair_list;
5525
5526 // create a list of name=value pairs
5527 // these are separated by or ;
5528 szStart = szCookieIn;
5529 szEnd = szStart;
5530 while (*szStart)
5531 {
5532 name.Empty();
5533 value.Empty();
5534 szStart = SkipSpace(szStart, (WORD)acp);
5535 if (*szStart == '\0')
5536 break;
5537
5538 szEnd = szStart;
5539 while (*szEnd && *szEnd != '=' && *szEnd != ';' )
5540 szEnd++;
5541
5542 if (szEnd <= szStart)
5543 {
5544 if (*szEnd ==';')
5545 {
5546 szEnd++;
5547 szStart = szEnd;
5548 continue;
5549 }
5550 szStart = szEnd;
5551 break; // no name or error
5552 }
5553
5554 CopyToCString(name, szStart, szEnd);
5555 if (*szEnd == '\0' || *szEnd == ';' )
5556 {
5557 // no value expected;
5558 pair_list.AddTail(Pair(name, value));
5559 szStart = szEnd;
5560 }
5561 else if ( *szEnd == '=')
5562 {
5563 szEnd++; // skip '='
5564 szStart = szEnd;
5565 while (*szEnd && *szEnd != ';')
5566 szEnd++;
5567
5568 if (szEnd <= szStart)
5569 {
5570 if (*szEnd == ';')
5571 {
5572 szEnd++;
5573 szStart = szEnd;
5574 continue;
5575 }
5576 szStart = szEnd;
5577 pair_list.AddTail(Pair(name,value));
5578 break; // no value
5579 }
5580
5581 CopyToCString(value, szStart, szEnd);
5582 pair_list.AddTail(Pair(name,value));
5583 szStart = szEnd;
5584 }
5585 }
5586
5587 // now make cookies out of the list
5588 // The first item could be $Version, which would
5589 // be the version for all cookies in the list.
5590 // any other $Version's found in the list will be ignored.
5591 if (pair_list.GetCount() <= 0)
5592 return TRUE; // nothing in the list
5593
5594 // check for $Version
5595 static const char szVersion[] = "$Version";
5596 int nVersion = INVALID_COOKIE_VERSION;
5597 if (!strncmp(pair_list.GetHead().name, szVersion, sizeof(szVersion)+1))
5598 {
5599 char *pStop = NULL;
5600 errno_t errnoValue = AtlStrToNum<int, char>(&nVersion, pair_list.GetHead().value, &pStop, 10);
5601 if (errnoValue == ERANGE)
5602 nVersion = INVALID_COOKIE_VERSION; // $Version contained garbage
5603 pair_list.RemoveHead(); // Remove $Version
5604 }
5605
5606 POSITION pos = pair_list.GetHeadPosition();
5607 bool bInCookie = false;
5608 CCookie cookie;
5609
5610 while (pos)
5611 {
5612 const Pair &p = pair_list.GetNext(pos);
5613 if (p.name[0] == '$')
5614 {
5615 if (!bInCookie)
5616 return FALSE; // invalid cookie string
5617 else
5618 {
5619 //add attribute to current cookie
5620 if(!cookie.AddAttribute(p.name.Right(p.name.GetLength()-1),p.value))
5621 {
5622 return FALSE;
5623 }
5624 }
5625 }
5626 else
5627 {
5628 if (!bInCookie)
5629 {
5630 bInCookie = true;
5631 cookie.SetName(p.name);
5632 cookie.ParseValue(p.value);
5633 if (nVersion != INVALID_COOKIE_VERSION)
5634 cookie.SetVersion(nVersion);
5635 }
5636 else
5637 {
5638 // add previous cookie
5639 CStringA strPrevName;
5640 if(!cookie.GetName(strPrevName))
5641 {
5642 return FALSE;
5643 }
5644 m_requestCookies.SetAt(strPrevName, cookie);
5645
5646 // empty current cookie and start over
5647 cookie.Empty();
5648 cookie.SetName(p.name);
5649 cookie.ParseValue(p.value);
5650 if (nVersion != INVALID_COOKIE_VERSION)
5651 cookie.SetVersion(nVersion);
5652
5653 }
5654 }
5655 }
5656
5657 if (!cookie.IsEmpty())
5658 {
5659 CStringA strName;
5660 if(!cookie.GetName(strName))
5661 {
5662 return FALSE;
5663 }
5664 m_requestCookies.SetAt(strName, cookie);
5665 }
5666 return TRUE;
5667
5668 }
5669
5670 private:
5671 // Call this function to copy a substring to a CString reference and ensure nul-termination.
5672 inline void CopyToCString(__out CStringA& string, __in_ecount(pEnd-pStart) LPCSTR pStart, __in LPCSTR pEnd) throw( ... )
5673 {
5674 ATLENSURE( pStart != NULL );
5675 ATLENSURE( pEnd != NULL );
5676 ATLENSURE( pEnd>=pStart );
5677
5678 string.SetString(pStart, (int)(pEnd-pStart));
5679 string.Trim();
5680 }
5681
5682 inline LPCSTR SkipSpace(__in LPCSTR sz, __in WORD nCodePage) throw()
5683 {
5684 if (sz == NULL)
5685 return NULL;
5686
5687 while (isspace(static_cast<unsigned char>(*sz)))
5688 sz = CharNextExA(nCodePage, sz, 0);
5689 return sz;
5690 }
5691 public:
5692
5693
5694 __success(SUCCEEDED(return)) __checkReturn HRESULT STDMETHODCALLTYPE QueryInterface(__in REFIID riid, __deref_out void **ppv)
5695 {
5696 if (!ppv)
5697 return E_POINTER;
5698 if (InlineIsEqualGUID(riid, __uuidof(IHttpRequestLookup)))
5699 {
5700 *ppv = static_cast<IUnknown*>(static_cast<IHttpRequestLookup*>(this));
5701 AddRef();
5702 return S_OK;
5703 }
5704 if (InlineIsEqualGUID(riid, __uuidof(IUnknown)))
5705 {
5706 *ppv = static_cast<IUnknown*>(this);
5707 AddRef();
5708 return S_OK;
5709 }
5710 return E_NOINTERFACE;
5711 }
5712
5713 ULONG STDMETHODCALLTYPE AddRef()
5714 {
5715 return 1;
5716 }
5717
5718 ULONG STDMETHODCALLTYPE Release()
5719 {
5720 return 1;
5721 }
5722 }; // class CHttpRequest
5723
5724 __declspec(selectany) const char* const CHttpRequest::m_szMethodStrings[] = {
5725 "GET",
5726 "POST",
5727 "HEAD",
5728 "DELETE",
5729 "LINK",
5730 "UNLINK",
5731 "DEBUG", // Debugging support for VS7
5732 NULL
5733 };
5734
5735 // This class provides type conversions via the Write method
5736 // and overloaded left shift << operator for writing
5737 // data to the IWriteStream interface. The IWriteStream interface
5738 // only accepts strings, but this helper class allows you to transparently
5739 // pass many different types by providing automatic type conversions.
5740 //
5741 // Notes on Type Conversions:
5742 // Numeric types are converted to their decimal representations.
5743 // Floating point values are output with a precision of 6 decimal places.
5744 // Currency values are converted according to the locale settings of the current thread.
5745 class CWriteStreamHelper
5746 {
5747 protected:
5748 // Implementation: The IWriteStream interface.
5749 IWriteStream *m_pStream;
5750 UINT m_ulACP;
5751
5752 public:
5753 CWriteStreamHelper() throw()
5754 :m_pStream(NULL)
5755 {
5756 m_ulACP = _AtlGetConversionACP();
5757 }
5758
5759 CWriteStreamHelper(__in_opt IWriteStream *pStream) throw()
5760 {
5761 m_pStream = pStream;
5762 m_ulACP = _AtlGetConversionACP();
5763 }
5764
5765 // Attach a IWriteStream
5766 IWriteStream *Attach(__in IWriteStream *pStream) throw()
5767 {
5768 IWriteStream *pRetStream = m_pStream;
5769 m_pStream = pStream;
5770 return pRetStream;
5771 }
5772
5773 // Call this function to write data to the IWriteStream interface managed by this object.
5774 // Returns TRUE on success, FALSE on failure.
5775 BOOL Write(__in_z LPCSTR szOut) throw()
5776 {
5777 ATLASSUME(m_pStream != NULL);
5778
5779 if (!szOut)
5780 return FALSE;
5781
5782 DWORD dwWritten;
5783 return SUCCEEDED(m_pStream->WriteStream(szOut, (int) strlen(szOut), &dwWritten));
5784 }
5785
5786 // Call this function to write data to the IWriteStream interface managed by this object.
5787 // Returns TRUE on success, FALSE on failure.
5788 BOOL Write(__in int n) throw()
5789 {
5790 CHAR szTmp[21];
5791 Checked::itoa_s(n, szTmp, _countof(szTmp), 10);
5792 return Write(szTmp);
5793 }
5794
5795 // Call this function to write data to the IWriteStream interface managed by this object.
5796 // Returns TRUE on success, FALSE on failure.
5797 BOOL Write(__in unsigned int u) throw()
5798 {
5799 CHAR szTmp[21];
5800 Checked::ultoa_s(u, szTmp, _countof(szTmp), 10);
5801 return Write(szTmp);
5802 }
5803
5804 // Call this function to write data to the IWriteStream interface managed by this object.
5805 // Returns TRUE on success, FALSE on failure.
5806 BOOL Write(__in short int w) throw()
5807 {
5808 return Write((int) w);
5809 }
5810
5811 // Call this function to write data to the IWriteStream interface managed by this object.
5812 // Returns TRUE on success, FALSE on failure.
5813 BOOL Write(__in unsigned short int w) throw()
5814 {
5815 return Write((unsigned int) w);
5816 }
5817
5818 // Call this function to write data to the IWriteStream interface managed by this object.
5819 // Returns TRUE on success, FALSE on failure.
5820 BOOL Write(__in long int dw) throw()
5821 {
5822 CHAR szTmp[21];
5823 Checked::ltoa_s(dw, szTmp, _countof(szTmp), 10);
5824 return Write(szTmp);
5825 }
5826
5827 // Call this function to write data to the IWriteStream interface managed by this object.
5828 // Returns TRUE on success, FALSE on failure.
5829 BOOL Write(__in unsigned long int dw) throw()
5830 {
5831 CHAR szTmp[21];
5832 Checked::ultoa_s(dw, szTmp, _countof(szTmp), 10);
5833 return Write(szTmp);
5834 }
5835
5836 // Call this function to write data to the IWriteStream interface managed by this object.
5837 // Returns TRUE on success, FALSE on failure.
5838 BOOL Write(__in double d, __in int nDigitCount=ATL_DEFAULT_PRECISION) throw()
5839 {
5840 ATLASSUME(m_pStream != NULL);
5841
5842 CHAR szTmp[512];
5843 int nDec = 0;
5844 int nSign = 0;
5845 bool fWriteDec=true;
5846 if (0 != _fcvt_s(szTmp, _countof(szTmp), d, nDigitCount, &nDec, &nSign))
5847 {
5848 // too large
5849 return FALSE;
5850 }
5851
5852 if (nSign != 0)
5853 m_pStream->WriteStream("-", 1, NULL);
5854 if (nDec < 0)
5855 {
5856 nDec *= -1;
5857 m_pStream->WriteStream("0.", 2, NULL);
5858 for (int i=0;i<nDec;i++)
5859 {
5860 m_pStream->WriteStream("0", 1, NULL);
5861 }
5862 nDec = 0;
5863 fWriteDec=false;
5864 }
5865
5866 char *p = szTmp;
5867 while (*p)
5868 {
5869 // if the decimal lies at the end of the number
5870 // (no digits to the right of the decimal, we don't
5871 // print it.
5872 if (nDec == 0 && fWriteDec)
5873 m_pStream->WriteStream(".", 1, NULL);
5874 m_pStream->WriteStream(p, 1, NULL);
5875 nDec--;
5876 p++;
5877 }
5878 return TRUE;
5879 }
5880
5881 // Call this function to write data to the IWriteStream interface managed by this object.
5882 // Returns TRUE on success, FALSE on failure.
5883 BOOL Write(__in __int64 i) throw()
5884 {
5885 CHAR szTmp[21];
5886 Checked::i64toa_s(i, szTmp, _countof(szTmp), 10);
5887 return Write(szTmp);
5888 }
5889
5890 // Call this function to write data to the IWriteStream interface managed by this object.
5891 // Returns TRUE on success, FALSE on failure.
5892 BOOL Write(__in unsigned __int64 i) throw()
5893 {
5894 CHAR szTmp[21];
5895 Checked::ui64toa_s(i, szTmp, _countof(szTmp), 10);
5896 return Write(szTmp);
5897 }
5898
5899 // Call this function to write data to the IWriteStream interface managed by this object.
5900 // Returns TRUE on success, FALSE on failure.
5901 BOOL Write(__in CURRENCY c) throw()
5902 {
5903 CHAR szDest[256];
5904 CHAR szNumber[32];
5905
5906 Checked::i64toa_s(c.int64, szNumber, _countof(szNumber), 10);
5907 int nLen = (int) strlen(szNumber);
5908 if (nLen < 5)
5909 {
5910 // prepend ascii zeros
5911 Checked::memmove_s(szNumber+5-nLen, 32-(5-nLen), szNumber, nLen+1);
5912 memset(szNumber, '0', 5-nLen);
5913 nLen = 5;
5914 }
5915
5916 Checked::memmove_s(szNumber+nLen-3, 32-(nLen-3), szNumber+nLen-4, 5);
5917 szNumber[nLen-4] = '.';
5918
5919 int nRet = GetCurrencyFormatA(GetThreadLocale(), 0, szNumber, NULL, szDest, sizeof(szDest));
5920 if (nRet > 0)
5921 return Write(szDest);
5922
5923 ATLASSERT(GetLastError()==ERROR_INSUFFICIENT_BUFFER);
5924
5925 nRet = GetCurrencyFormatA(GetThreadLocale(), 0, szNumber, NULL, NULL, 0);
5926 ATLASSERT(nRet > 0);
5927
5928 if (nRet <= 0)
5929 return FALSE;
5930
5931 CAutoVectorPtr<CHAR> szBuffer;
5932 if (!szBuffer.Allocate(nRet))
5933 {
5934 SetLastError(ERROR_NOT_ENOUGH_MEMORY);
5935 return FALSE;
5936 }
5937 nRet = GetCurrencyFormatA(GetThreadLocale(), 0, szNumber, NULL, szBuffer, nRet);
5938
5939 ATLASSERT(nRet > 0);
5940 BOOL bRet = FALSE;
5941 if (nRet > 0)
5942 bRet = Write(szBuffer);
5943
5944 return bRet;
5945 }
5946
5947 // Call this function to write data to the IWriteStream interface managed by this object.
5948 // Returns TRUE on success, FALSE on failure.
5949 BOOL Write(__in LPCWSTR wsz) throw()
5950 {
5951 ATLASSUME(m_pStream != NULL);
5952
5953 BOOL bRet;
5954
5955 _ATLTRY
5956 {
5957 CW2A sz(wsz, m_ulACP);
5958
5959 if (!sz)
5960 {
5961 bRet = FALSE;
5962 }
5963
5964 DWORD dwWritten;
5965 bRet = SUCCEEDED(m_pStream->WriteStream(sz, (int) strlen(sz), &dwWritten));
5966 }
5967 _ATLCATCHALL()
5968 {
5969 bRet = FALSE;
5970 }
5971
5972 return bRet;
5973 }
5974
5975 // Use this operator to write data to the IWriteStream interface managed by this object.
5976 CWriteStreamHelper& operator<<(__in LPCSTR szStr) throw(...)
5977 {
5978 if (!Write(szStr))
5979 AtlThrow(E_FAIL);
5980 return *this;
5981 }
5982
5983 // Use this operator to write data to the IWriteStream interface managed by this object.
5984 CWriteStreamHelper& operator<<(__in LPCWSTR wszStr) throw(...)
5985 {
5986 if (!Write(wszStr))
5987 AtlThrow(E_FAIL);
5988 return *this;
5989 }
5990
5991 // Use this operator to write data to the IWriteStream interface managed by this object.
5992 CWriteStreamHelper& operator<<(__in int n) throw(...)
5993 {
5994 if (!Write(n))
5995 AtlThrow(E_FAIL);
5996 return *this;
5997 }
5998
5999 // Use this operator to write data to the IWriteStream interface managed by this object.
6000 CWriteStreamHelper& operator<<(__in short int w) throw(...)
6001 {
6002 if (!Write(w))
6003 AtlThrow(E_FAIL);
6004 return *this;
6005 }
6006
6007 // Use this operator to write data to the IWriteStream interface managed by this object.
6008 CWriteStreamHelper& operator<<(__in unsigned int u) throw(...)
6009 {
6010 if (!Write(u))
6011 AtlThrow(E_FAIL);
6012 return *this;
6013 }
6014
6015 // Use this operator to write data to the IWriteStream interface managed by this object.
6016 CWriteStreamHelper& operator<<(__in long int dw) throw(...)
6017 {
6018 if (!Write(dw))
6019 AtlThrow(E_FAIL);
6020 return *this;
6021 }
6022
6023 // Use this operator to write data to the IWriteStream interface managed by this object.
6024 CWriteStreamHelper& operator<<(__in unsigned long int dw) throw(...)
6025 {
6026 if (!Write(dw))
6027 AtlThrow(E_FAIL);
6028 return *this;
6029 }
6030
6031 // Use this operator to write data to the IWriteStream interface managed by this object.
6032 CWriteStreamHelper& operator<<(__in double d) throw(...)
6033 {
6034 if (!Write(d))
6035 AtlThrow(E_FAIL);
6036 return *this;
6037 }
6038
6039 // Use this operator to write data to the IWriteStream interface managed by this object.
6040 CWriteStreamHelper& operator<<(__in __int64 i) throw(...)
6041 {
6042 if (!Write(i))
6043 AtlThrow(E_FAIL);
6044 return *this;
6045 }
6046
6047 // Use this operator to write data to the IWriteStream interface managed by this object.
6048 CWriteStreamHelper& operator<<(__in unsigned __int64 i) throw(...)
6049 {
6050 if (!Write(i))
6051 AtlThrow(E_FAIL);
6052 return *this;
6053 }
6054
6055 // Use this operator to write data to the IWriteStream interface managed by this object.
6056 CWriteStreamHelper& operator<<(__in CURRENCY c) throw(...)
6057 {
6058 if (!Write(c))
6059 AtlThrow(E_FAIL);
6060 return *this;
6061 }
6062
6063 UINT SetConversionCodePage(__in UINT nNewCP)
6064 {
6065 UINT nOldCP = m_ulACP;
6066 m_ulACP = nNewCP;
6067 return nOldCP;
6068 }
6069 };
6070
6071
6072 template <DWORD dwSizeT=ATL_ISAPI_BUFFER_SIZE>
6073 class CAtlIsapiBuffer
6074 {
6075 protected:
6076 char m_szBuffer[dwSizeT];
6077 LPSTR m_pBuffer;
6078 DWORD m_dwLen;
6079 DWORD m_dwAlloc;
6080 HANDLE m_hProcHeap;
6081
6082 public:
6083 CAtlIsapiBuffer() throw()
6084 {
6085 if (dwSizeT > 0)
6086 m_szBuffer[0] = 0;
6087
6088 m_pBuffer = m_szBuffer;
6089 m_dwLen = 0;
6090 m_dwAlloc = dwSizeT;
6091 m_hProcHeap = GetProcessHeap();
6092 }
6093
6094 CAtlIsapiBuffer(__in LPCSTR sz)
6095 {
6096 m_pBuffer = m_szBuffer;
6097 m_dwLen = 0;
6098 m_dwAlloc = dwSizeT;
6099 m_hProcHeap = GetProcessHeap();
6100
6101 if (!Append(sz))
6102 AtlThrow(E_OUTOFMEMORY);
6103 }
6104
6105 ~CAtlIsapiBuffer() throw()
6106 {
6107 Free();
6108 }
6109
6110 BOOL Alloc(__in DWORD dwSize) throw()
6111 {
6112 if (m_dwAlloc >= dwSize)
6113 {
6114 return TRUE;
6115 }
6116 if (m_pBuffer != m_szBuffer)
6117 {
6118 HeapFree(m_hProcHeap, 0, m_pBuffer);
6119 m_dwLen = 0;
6120 m_dwAlloc = 0;
6121 }
6122 m_pBuffer = (LPSTR)HeapAlloc(m_hProcHeap, 0, dwSize);
6123 if (m_pBuffer)
6124 {
6125 m_dwAlloc = dwSize;
6126 return TRUE;
6127 }
6128 return FALSE;
6129 }
6130
6131 BOOL ReAlloc(__in DWORD dwNewSize) throw()
6132 {
6133 if (dwNewSize <= m_dwAlloc)
6134 return TRUE;
6135
6136 if (m_pBuffer == m_szBuffer)
6137 {
6138 BOOL bRet = Alloc(dwNewSize);
6139 if (bRet)
6140 {
6141 Checked::memcpy_s(m_pBuffer, dwNewSize, m_szBuffer, m_dwLen);
6142 }
6143 return bRet;
6144 }
6145
6146 LPSTR pvNew = (LPSTR )HeapReAlloc(m_hProcHeap, 0, m_pBuffer, dwNewSize);
6147 if (pvNew)
6148 {
6149 m_pBuffer = pvNew;
6150 m_dwAlloc = dwNewSize;
6151 return TRUE;
6152 }
6153 return FALSE;
6154 }
6155
6156 void Free() throw()
6157 {
6158 if (m_pBuffer != m_szBuffer)
6159 {
6160 HeapFree(m_hProcHeap,0 , m_pBuffer);
6161 m_dwAlloc = dwSizeT;
6162 m_pBuffer = m_szBuffer;
6163 }
6164 Empty();
6165 }
6166
6167 void Empty() throw()
6168 {
6169 if (m_pBuffer)
6170 {
6171 m_pBuffer[0]=0;
6172 m_dwLen = 0;
6173 }
6174 }
6175
6176 DWORD GetLength() throw()
6177 {
6178 return m_dwLen;
6179 }
6180
6181 BOOL Append(__in LPCSTR sz, __in int nLen = -1) throw()
6182 {
6183 if (!sz)
6184 return FALSE;
6185
6186 if (nLen == -1)
6187 nLen = (int) strlen(sz);
6188
6189 DWORD newLen = m_dwLen + nLen + 1;
6190 if (newLen <= m_dwLen || newLen <= (DWORD)nLen)
6191 {
6192 return FALSE;
6193 }
6194 if (newLen > m_dwAlloc)
6195 {
6196 if (!ReAlloc(m_dwAlloc + (nLen+1 > ATL_ISAPI_BUFFER_SIZE ? nLen+1 : ATL_ISAPI_BUFFER_SIZE)))
6197 return FALSE;
6198 }
6199 Checked::memcpy_s(m_pBuffer + m_dwLen, m_dwAlloc-m_dwLen, sz, nLen);
6200 m_dwLen += nLen;
6201 m_pBuffer[m_dwLen]=0;
6202 return TRUE;
6203 }
6204
6205 operator LPCSTR() throw()
6206 {
6207 return m_pBuffer;
6208 }
6209
6210 CAtlIsapiBuffer& operator+=(__in LPCSTR sz)
6211 {
6212 if (!Append(sz))
6213 AtlThrow(E_OUTOFMEMORY);
6214 return *this;
6215 }
6216 }; // class CAtlIsapiBuffer
6217
6218 // This class represents the response that the web server will send back to the client.
6219 //
6220 // CHttpResponse provides friendly functions for building up the headers, cookies, and body of an HTTP response.
6221 // The class derives from IWriteStream and CWriteStreamHelper, allowing you to call those classes' methods
6222 // to build up the body of the response. By default, the class improves performance by buffering the response until it is complete before sending it back to the client.
6223 class CHttpResponse : public IWriteStream, public CWriteStreamHelper
6224 {
6225 private:
6226
6227 // Implementation: A map of HTTP response headers.
6228 // The key is the name of the response header.
6229 // The value is the data for the response header.
6230 CSimpleMap<CStringA, CStringA> m_headers;
6231
6232 // Implementation: Determines whether the response is currently being buffered.
6233 BOOL m_bBufferOutput;
6234
6235 // Implementation: Determines whether any output should be sent to the client.
6236 // Intended mainly for HEAD requests, where the client should get the same headers
6237 // (i.e. Content-Length) as for a GET request
6238 BOOL m_bSendOutput;
6239
6240 // Implementation: The limit in bytes of the response buffer.
6241 // When the limit is reached, the buffer is automatically flushed
6242 // and data is sent to the client. You can set this to ULONG_MAX
6243 // to enable full buffering (this is the default, and is required
6244 // for enabling keep alive connections).
6245 DWORD m_dwBufferLimit;
6246
6247 // Implementation: The server context.
6248 CComPtr<IHttpServerContext> m_spServerContext;
6249
6250 // Implementation: The HTTP status code for the response.
6251 int m_nStatusCode;
6252
6253 // Implementation: Determines whether the response headers have already been sent to the client.
6254 BOOL m_bHeadersSent;
6255
6256 // Implementation: Handle of the file being transmitted so it can be closed
6257 // when the async I/O completes
6258 HANDLE m_hFile;
6259
6260 public:
6261 // Implementation: The buffer used to store the response before
6262 // the data is sent to the client.
6263 CAtlIsapiBuffer<> m_strContent;
6264
6265 // Numeric constants for the HTTP status codes used for redirecting client requests.
6266 enum HTTP_REDIRECT
6267 {
6268 HTTP_REDIRECT_MULTIPLE=300,
6269 HTTP_REDIRECT_MOVED=301,
6270 HTTP_REDIRECT_FOUND=302,
6271 HTTP_REDIRECT_SEE_OTHER=303,
6272 HTTP_REDIRECT_NOT_MODIFIED=304,
6273 HTTP_REDIRECT_USE_PROXY=305,
6274 HTTP_REDIRECT_TEMPORARY_REDIRECT=307
6275 };
6276
6277 CHttpResponse() throw()
6278 {
6279 m_bBufferOutput = TRUE;
6280 m_dwBufferLimit = ULONG_MAX;
6281 m_nStatusCode = 200;
6282 m_pStream = this;
6283 m_bHeadersSent = FALSE;
6284 m_bSendOutput = TRUE;
6285 m_hFile = INVALID_HANDLE_VALUE;
6286 }
6287
6288 CHttpResponse(__in IHttpServerContext *pServerContext)
6289 {
6290 m_bBufferOutput = TRUE;
6291 m_dwBufferLimit = ULONG_MAX;
6292 m_nStatusCode = 200;
6293 m_pStream = this;
6294 m_bHeadersSent = FALSE;
6295 ATLENSURE(Initialize(pServerContext));
6296 m_bSendOutput = TRUE;
6297 m_hFile = INVALID_HANDLE_VALUE;
6298 }
6299
6300 // The destructor flushes the buffer if there is content that
6301 // hasn't yet been sent to the client.
6302 virtual ~CHttpResponse() throw()
6303 {
6304 Flush(TRUE);
6305 if (m_hFile && m_hFile != INVALID_HANDLE_VALUE)
6306 CloseHandle(m_hFile);
6307 }
6308
6309 // Call this function to initialize the response object with a pointer to the server context.
6310 // Returns TRUE on success, FALSE on failure.
6311 __checkReturn BOOL Initialize(__in IHttpServerContext *pServerContext) throw()
6312 {
6313 ATLASSERT(pServerContext != NULL);
6314 if (!pServerContext)
6315 return FALSE;
6316
6317 m_spServerContext = pServerContext;
6318
6319 return TRUE;
6320 }
6321
6322 // This is called to initialize the CHttpResponse for a child handler. By default, it
6323 // assumes the parent will be responsible for sending the headers.
6324 __checkReturn BOOL Initialize(__in IHttpRequestLookup *pLookup) throw(...)
6325 {
6326 ATLASSERT(pLookup);
6327 if (!pLookup)
6328 return FALSE;
6329
6330 CComPtr<IHttpServerContext> spContext;
6331 HRESULT hr = pLookup->GetServerContext(&spContext);
6332 if (FAILED(hr))
6333 return FALSE;
6334
6335 if (!Initialize(spContext))
6336 return FALSE;
6337
6338 m_bHeadersSent = TRUE;
6339
6340 return TRUE;
6341 }
6342
6343 // Returns a pointer to the IHttpServerContext interface for the current request.
6344 __checkReturn HRESULT GetServerContext(__deref_out_opt IHttpServerContext ** ppOut) throw()
6345 {
6346 return m_spServerContext.CopyTo(ppOut);
6347 }
6348
6349 void Detach()
6350 {
6351 m_spServerContext.Release();
6352 HaveSentHeaders(TRUE);
6353 }
6354 // Call this function to set buffering options for the response.
6355 //
6356 // This function allows you to turn buffering on or off, and to set a size limit
6357 // on the amount of data that will be buffered before being sent to the client.
6358 //
6359 // When you turn off buffering, the current contents of the buffer will be sent to the client.
6360 // If you need to clear the buffer without sending the contents to the client, call ClearContent instead.
6361 //
6362 // When the size of the buffer is reduced below the current size of the buffered content,
6363 // the entire buffer is flushed.
6364 void SetBufferOutput(__in BOOL bBufferOutput, __in DWORD dwBufferLimit=ATL_ISAPI_BUFFER_SIZE) throw()
6365 {
6366 if (m_bBufferOutput && !bBufferOutput)
6367 {
6368 // before turning off buffering, flush
6369 // the current contents
6370 Flush();
6371 }
6372 SetBufferLimit(dwBufferLimit);
6373
6374 m_bBufferOutput = bBufferOutput;
6375 }
6376
6377 // Call this function to determine whether data written to the response object is being buffered or not.
6378 // Returns TRUE if output is being buffered, FALSE otherwise.
6379 __checkReturn BOOL GetBufferOutput() throw()
6380 {
6381 return m_bBufferOutput;
6382 }
6383
6384 // Call this function to determine whether the response headers have been sent
6385 // Returns TRUE if headers have been sent, FALSE otherwise.
6386 __checkReturn BOOL HaveSentHeaders() throw()
6387 {
6388 return m_bHeadersSent;
6389 }
6390
6391 // Call this function to override the m_bHeadersSent state. This is useful
6392 // when you want child handlers (e.g. from an include or subhandler) to send the headers
6393 void HaveSentHeaders(__in BOOL bSent) throw()
6394 {
6395 m_bHeadersSent = bSent;
6396 }
6397
6398 // Call this function to set a size limit on the amount of data buffered by the reponse object.
6399 // When the size of the buffer is reduced below the current size of the buffered content,
6400 // the entire buffer is flushed.
6401 // See GetBufferLimit.
6402 void SetBufferLimit(__in DWORD dwBufferLimit) throw()
6403 {
6404 if (m_bBufferOutput)
6405 {
6406 if (m_strContent.GetLength() >= dwBufferLimit)
6407 {
6408 // new buffer limit is less than the
6409 // size currently buffered. So flush
6410 // the current buffer
6411 Flush();
6412 }
6413 }
6414 m_dwBufferLimit = dwBufferLimit;
6415 }
6416
6417 // Returns the current size limit of the buffer in bytes.
6418 // See SetBufferLimit.
6419 DWORD GetBufferLimit() throw()
6420 {
6421 return m_dwBufferLimit;
6422 }
6423
6424 // Returns the current value of the Content-Type header if present, otherwise returns NULL.
6425 LPCSTR GetContentType() throw()
6426 {
6427 // return the content type from the
6428 // header collection if any
6429 _ATLTRY
6430 {
6431 CStringA strKey("Content-Type");
6432
6433 int nIndex = m_headers.FindKey(strKey);
6434 if (nIndex >= 0)
6435 return m_headers.GetValueAt(nIndex);
6436 }
6437 _ATLCATCHALL()
6438 {
6439 }
6440 return NULL;
6441 }
6442
6443 // Call this function to set the Content-Type of the HTTP response.
6444 // Examples of common MIME content types include text/html and text/plain.
6445 BOOL SetContentType(__in_opt LPCSTR szContentType) throw()
6446 {
6447 _ATLTRY
6448 {
6449 if (!m_headers.SetAt("Content-Type", szContentType))
6450 return m_headers.Add("Content-Type", szContentType);
6451 }
6452 _ATLCATCHALL()
6453 {
6454 }
6455 return FALSE;
6456 }
6457
6458 // Call this function to set the HTTP status code of the response.
6459 // If not set explicitly, the default status code is 200 (OK).
6460 // See GetStatusCode.
6461 void SetStatusCode(__in int nCode) throw()
6462 {
6463 m_nStatusCode = nCode;
6464 }
6465
6466 // Returns the current HTTP status code of the response.
6467 // See SetStatusCode.
6468 int GetStatusCode() throw()
6469 {
6470 return m_nStatusCode;
6471 }
6472
6473 // Call this function to set the Cache-Control http header of the response.
6474 // Examples of common Cache-Control header values: public, private, max-age=delta-seconds
6475 BOOL SetCacheControl(__in_opt LPCSTR szCacheControl) throw()
6476 {
6477 _ATLTRY
6478 {
6479 if (!m_headers.SetAt("Cache-Control", szCacheControl))
6480 return m_headers.Add("Cache-Control", szCacheControl);
6481 }
6482 _ATLCATCHALL()
6483 {
6484 }
6485 return FALSE;
6486 }
6487
6488 // Call this function to set the Expires HTTP header to the absolute date/time
6489 // specified in the stExpires parameter
6490 BOOL SetExpiresAbsolute(__in const SYSTEMTIME& stExpires) throw()
6491 {
6492 _ATLTRY
6493 {
6494 CStringA strExpires;
6495 SystemTimeToHttpDate(stExpires, strExpires);
6496
6497 if (!m_headers.SetAt("Expires", strExpires))
6498 return m_headers.Add("Expires", strExpires);
6499 }
6500 _ATLCATCHALL()
6501 {
6502 }
6503 return FALSE;
6504 }
6505
6506 // Call this function to set the Expires HTTP header to a relative date/time
6507 // value specified in minutes;
6508 BOOL SetExpires(__in long lMinutes) throw()
6509 {
6510 CFileTime ft;
6511 GetSystemTimeAsFileTime(&ft);
6512
6513 // add the specified number of minutes
6514 ft += CFileTimeSpan(((ULONGLONG)lMinutes)*60*10000000);
6515
6516 SYSTEMTIME st;
6517 FileTimeToSystemTime(&ft, &st);
6518 return SetExpiresAbsolute(st);
6519 }
6520
6521 // Call this function to set whether or not to output to client.
6522 // Intended primarily for HEAD requests
6523 BOOL SetWriteToClient(__in BOOL bSendOutput) throw()
6524 {
6525 m_bSendOutput = bSendOutput;
6526 return TRUE;
6527 }
6528
6529 // Call this function to determine whether or not the data is
6530 // sent to the client. Intended primarily for HEAD requests
6531 BOOL GetWriteToClient() throw()
6532 {
6533 return m_bSendOutput;
6534 }
6535
6536 // Call this function to write data to the response object.
6537 //
6538 // Returns S_OK on success, E_INVALIDARG or E_FAIL on failure.
6539 //
6540 // See WriteClient for comments on buffering.
6541 //
6542 // szOut A pointer to the first byte of the data to be written.
6543 //
6544 // nLen The number of bytes to write. If this parameter is -1,
6545 // szOut is assumed to be a nul-terminated string and the
6546 // whole string will be written.
6547 //
6548 // pdwWritten A DWORD pointer that can be used to get the number of bytes written.
6549 // This parameter can be NULL.
6550 __checkReturn HRESULT WriteStream(__in_z LPCSTR szOut, __in int nLen, __out_opt DWORD *pdwWritten)
6551 {
6552 ATLASSUME(m_spServerContext != NULL);
6553
6554 if (pdwWritten)
6555 *pdwWritten = 0;
6556 if (nLen == -1)
6557 {
6558 if (!szOut)
6559 return E_INVALIDARG;
6560 nLen = (int) strlen(szOut);
6561 }
6562 BOOL bRet = WriteLen(szOut, nLen);
6563 if (!bRet)
6564 {
6565 return AtlHresultFromLastError();
6566 }
6567 if (pdwWritten)
6568 *pdwWritten = nLen;
6569 return S_OK;
6570 }
6571
6572 // Call this function to write data to the response object.
6573 //
6574 // Returns TRUE on success. FALSE on failure.
6575 //
6576 // If buffering is disabled, data is written directly to the client.
6577 // If buffering is enabled, this function attempts to write to the buffer.
6578 // If the buffer is too small to contain its existing data and the new data,
6579 // the current contents of the buffer are flushed.
6580 // If the buffer is still too small to contain the new data, that data is written
6581 // directly to the client. Otherwise the new data is written to the buffer.
6582 //
6583 // Any headers that have been set in the response will be sent just before the
6584 // data is written to the client if no headers have been sent up to that point.
6585 //
6586 // szOut A pointer to the first byte of the data to be written.
6587 //
6588 // nLen The number of bytes to write.
6589 __checkReturn BOOL WriteLen(__in_ecount(dwLen) LPCSTR szOut, __in DWORD dwLen) throw()
6590 {
6591 ATLASSUME(m_spServerContext != NULL);
6592 if (!szOut)
6593 return FALSE;
6594
6595 if (m_bBufferOutput)
6596 {
6597 if (m_strContent.GetLength()+dwLen >= m_dwBufferLimit)
6598 {
6599 if (!Flush())
6600 return FALSE;
6601 }
6602 if (dwLen <= m_dwBufferLimit)
6603 return m_strContent.Append(szOut, dwLen);
6604 }
6605 BOOL bRet = SendHeadersInternal();
6606
6607 if (bRet && m_bSendOutput)
6608 bRet = m_spServerContext->WriteClient((void *) szOut, &dwLen);
6609
6610 return bRet;
6611 }
6612
6613 // Call this function to redirect the client to a different resource.
6614 //
6615 // Returns TRUE on success, FALSE on failure.
6616 //
6617 // szURL A nul-terminated string specifying the resource the client should navigate to.
6618 //
6619 // statusCode An HTTP status code from the HTTP_REDIRECT enumeration describing the reason
6620 // for the redirection.
6621 //
6622 // bSendBody Specifies whether to generate and send a response body with the headers.
6623 //
6624 // This function allows (and RFC 2616 encourages) a response body to be sent
6625 // with the following redirect types:
6626 // HTTP_REDIRECT_MOVED
6627 // HTTP_REDIRECT_FOUND
6628 // HTTP_REDIRECT_SEE_OTHER
6629 // HTTP_REDIRECT_TEMPORARY_REDIRECT
6630 // No body will be sent with other redirect types.
6631 //
6632 // The response body contains a short hypertext note with a hyperlink to the new resource.
6633 // A meta refresh tag is also included to allow browsers to automatically redirect
6634 // the user to the resource even if they don't understand the redirect header.
6635 //
6636 // See RFC 2616 section 10.3 for more information on redirection.
6637 BOOL Redirect(__in LPCSTR szUrl, __in HTTP_REDIRECT statusCode=HTTP_REDIRECT_MOVED, __in BOOL bSendBody=TRUE) throw(...)
6638 {
6639 CStringA strBody;
6640 LPCSTR szBody = NULL;
6641 if (bSendBody &&
6642 (HTTP_REDIRECT_MOVED == statusCode || HTTP_REDIRECT_FOUND == statusCode ||
6643 HTTP_REDIRECT_SEE_OTHER == statusCode || HTTP_REDIRECT_TEMPORARY_REDIRECT == statusCode))
6644 {
6645 _ATLTRY
6646 {
6647 ATLENSURE(szUrl!=NULL);
6648 strBody.Format(
6649 "<html>\r\n"
6650 "<head>\r\n"
6651 "<meta http-equiv=\"refresh\" content=\"0; url=%s\">\r\n"
6652 "</head>\r\n"
6653 "<body>Please use the following link to access this resource:"
6654 " <a href=\"%s\">%s</a>\r\n"
6655 "</body>\r\n"
6656 "</html>\r\n",
6657 szUrl, szUrl, szUrl);
6658 }
6659 _ATLCATCHALL()
6660 {
6661 return FALSE;
6662 }
6663 szBody = (LPCSTR) strBody;
6664 }
6665 return Redirect(szUrl, szBody, statusCode);
6666 }
6667
6668 // Call this function to redirect the client to a different resource.
6669 //
6670 // Returns TRUE on success, FALSE on failure.
6671 //
6672 // szURL A nul-terminated string specifying the resource the client should navigate to.
6673 //
6674 // szBody A nul-terminated string containing the body of the response to be sent to the client.
6675 //
6676 // statusCode An HTTP status code from the HTTP_REDIRECT enumeration describing the reason
6677 // for the redirection.
6678 //
6679 // This function allows (and RFC 2616 encourages) a response body to be sent
6680 // with the following redirect types:
6681 // HTTP_REDIRECT_MOVED
6682 // HTTP_REDIRECT_FOUND
6683 // HTTP_REDIRECT_SEE_OTHER
6684 // HTTP_REDIRECT_TEMPORARY_REDIRECT
6685 // No body will be sent with other redirect types.
6686 //
6687 // The response body should contain a short hypertext note with a hyperlink to the new resource.
6688 // You can include a meta refresh tag to allow browsers to automatically redirect
6689 // the user to the resource even if they don't understand the redirect header.
6690 //
6691 // See RFC 2616 section 10.3 for more information on redirection.
6692 BOOL Redirect(__in LPCSTR szUrl, __in LPCSTR szBody, __in HTTP_REDIRECT statusCode=HTTP_REDIRECT_MOVED) throw()
6693 {
6694 SetStatusCode(statusCode);
6695 AppendHeader("Location", szUrl);
6696
6697 _ATLTRY
6698 {
6699 if (!SendHeadersInternal())
6700 return FALSE;
6701 }
6702 _ATLCATCHALL()
6703 {
6704 return FALSE;
6705 }
6706
6707 if (szBody &&
6708 (HTTP_REDIRECT_MOVED == statusCode || HTTP_REDIRECT_FOUND == statusCode ||
6709 HTTP_REDIRECT_SEE_OTHER == statusCode || HTTP_REDIRECT_TEMPORARY_REDIRECT == statusCode))
6710 {
6711 Write(szBody);
6712 return Flush();
6713 }
6714 return TRUE;
6715 }
6716
6717 // Call this function to append a header to the collection of HTTP headers managed by this object.
6718 //
6719 // szName A nul-teminated string containing the name of the HTTP header.
6720 //
6721 // szValue A nul-teminated string containing the value of the HTTP header.
6722 BOOL AppendHeader(__in LPCSTR szName, __in_opt LPCSTR szValue) throw()
6723 {
6724 ATLASSERT(szName);
6725 BOOL bRet = FALSE;
6726 _ATLTRY
6727 {
6728 bRet = m_headers.Add(szName, szValue);
6729 }
6730 _ATLCATCHALL()
6731 {
6732 bRet = FALSE;
6733 }
6734 return bRet;
6735 }
6736
6737 // Call this function to add a Set-Cookie header to the collection of HTTP headers managed by this object.
6738 //
6739 // pCookie A pointer to a CCookie object describing the cookie to be sent to the client.
6740 BOOL AppendCookie(__in const CCookie *pCookie)
6741 {
6742 ATLENSURE(pCookie);
6743 return AppendCookie((const CCookie&)*pCookie);
6744 }
6745
6746 // Call this function to add a Set-Cookie header to the collection of HTTP headers managed by this object.
6747 //
6748 // cookie A reference to a CCookie object describing the cookie to be sent to the client.
6749 BOOL AppendCookie(__in const CCookie& cookie) throw()
6750 {
6751 CHAR szCookie[ATL_MAX_COOKIE_LEN];
6752 DWORD dwBuffSize = ATL_MAX_COOKIE_LEN;
6753 BOOL bRet = FALSE;
6754 bRet = cookie.Render(szCookie, &dwBuffSize);
6755 if (bRet)
6756 {
6757 _ATLTRY
6758 {
6759 bRet = m_headers.Add("Set-Cookie", szCookie);
6760 }
6761 _ATLCATCHALL()
6762 {
6763 bRet = FALSE;
6764 dwBuffSize = 0;
6765 }
6766 }
6767
6768 if (!bRet && dwBuffSize > 0 && dwBuffSize+1 > dwBuffSize) //static buffer wasn't big enough.
6769 {
6770 //We'll have to try dynamically allocating it
6771 //allocate a buffer
6772 CAutoVectorPtr<CHAR> sz;
6773 if (sz.Allocate(dwBuffSize+1))
6774 {
6775 DWORD dwSizeNew = dwBuffSize + 1;
6776 if (cookie.Render(sz, &dwSizeNew))
6777 {
6778 _ATLTRY
6779 {
6780 bRet = m_headers.Add("Set-Cookie", (const char *) sz);
6781 }
6782 _ATLCATCHALL()
6783 {
6784 bRet = FALSE;
6785 }
6786 }
6787 }
6788 }
6789 return bRet;
6790 }
6791
6792 // Call this function to add a Set-Cookie header to the collection of HTTP headers managed by this object.
6793 //
6794 // szName A nul-terminated string containing the name of the cookie to be sent to the client.
6795 //
6796 // szValue A nul-terminated string containing the value of the cookie to be sent to the client.
6797 BOOL AppendCookie(__in LPCSTR szName, __in_opt LPCSTR szValue) throw()
6798 {
6799 ATLASSERT(szName);
6800 BOOL bRet = FALSE;
6801 _ATLTRY
6802 {
6803 CCookie c(szName, szValue);
6804 bRet = AppendCookie(c);
6805 }
6806 _ATLCATCHALL()
6807 {
6808 bRet = FALSE;
6809 }
6810 return bRet;
6811 }
6812
6813 // Call this function to add a Set-Cookie header that removes a cookie value
6814 // to the collection of HTTP headers managed by this object.
6815 //
6816 // szName A nul-terminated string containing the name of the cookie to be deleted
6817 BOOL DeleteCookie(__in LPCSTR szName) throw()
6818 {
6819 ATLASSERT(szName);
6820 BOOL bRet = FALSE;
6821 _ATLTRY
6822 {
6823 CCookie cookie(szName, "");
6824 bRet=cookie.SetMaxAge(0);
6825 if(bRet)
6826 {
6827 bRet = AppendCookie(cookie);
6828 }
6829 }
6830 _ATLCATCHALL()
6831 {
6832 bRet = FALSE;
6833 }
6834 return bRet;
6835
6836 }
6837
6838 // Call this function to clear the collection of HTTP response headers maintained by this object.
6839 //
6840 // Note that clearing the headers includes removing all cookies associated with the response
6841 // object. Cookies are sent to the client as Set-Cookie HTTP headers.
6842 void ClearHeaders() throw()
6843 {
6844 m_headers.RemoveAll();
6845 }
6846
6847 // Call this function to clear theresponse buffer without sending the contents to the client.
6848 // If you need to empty the buffer but you do want the current contents sent to the client, call Flush instead.
6849 void ClearContent() throw()
6850 {
6851 m_strContent.Empty();
6852 }
6853
6854 // Call this function to send the current headers associated with this object to the client.
6855 //
6856 // Returns TRUE on success, FALSE on failure.
6857 //
6858 // The response headers are sent to the client using the current status code for the
6859 // response object. See SetStatusCode and GetStatusCode.
6860 BOOL SendHeadersInternal(__in BOOL fKeepConn=FALSE)
6861 {
6862 if (m_bHeadersSent)
6863 return TRUE;
6864
6865 ATLENSURE(m_spServerContext != NULL);
6866
6867 CStringA strHeaders;
6868 RenderHeaders(strHeaders);
6869
6870 BOOL bRet = FALSE;
6871 _ATLTRY
6872 {
6873 if (m_nStatusCode == 200)
6874 {
6875 bRet = m_spServerContext->SendResponseHeader(strHeaders, "200 OK", fKeepConn);
6876 if (bRet)
6877 {
6878 m_bHeadersSent = TRUE;
6879 }
6880 return bRet;
6881 }
6882
6883 CFixedStringT<CStringA, 256> strStatus;
6884 CDefaultErrorProvider prov;
6885 GetStatusHeader(strStatus, m_nStatusCode, SUBERR_NONE, &prov);
6886 bRet = m_spServerContext->SendResponseHeader(strHeaders, strStatus, fKeepConn);
6887 if (bRet)
6888 {
6889 m_bHeadersSent = TRUE;
6890 }
6891 }
6892 _ATLCATCHALL()
6893 {
6894 bRet = FALSE;
6895 }
6896 return bRet;
6897 }
6898
6899 // Call this function to get a string containing all the HTTP headers associated with
6900 // this object in a format suitable for sending to a client.
6901 //
6902 // strHeaders A CStringA reference to which will be appended the HTTP headers.
6903 void RenderHeaders(CStringA& strHeaders) throw()
6904 {
6905 _ATLTRY
6906 {
6907 strHeaders.Preallocate(::ATL::AtlMultiplyThrow(m_headers.GetSize(),64));
6908 for (int i=0; i<m_headers.GetSize(); i++)
6909 {
6910 strHeaders += m_headers.GetKeyAt(i);
6911 strHeaders.Append(": ", sizeof(": ")-1);
6912 strHeaders += m_headers.GetValueAt(i);
6913 strHeaders.Append("\r\n", sizeof("\r\n")-1);
6914 }
6915 strHeaders.Append("\r\n", sizeof("\r\n")-1);
6916 }
6917 _ATLCATCHALL()
6918 {
6919 }
6920 }
6921
6922 // Call this function to empty the response buffer and send its current
6923 // contents to the client.
6924 //
6925 // Returns S_OK on success, or an error HRESULT on failure.
6926 HRESULT FlushStream()
6927 {
6928 if (!Flush())
6929 return AtlHresultFromLastError();
6930 return S_OK;
6931 }
6932
6933 // Call this function to empty the response buffer and send its current
6934 // contents to the client.
6935 //
6936 // Returns TRUE on success, or FALSE on failure.
6937 //
6938 // Any headers that have been set in the response will be sent just before the
6939 // data is written to the client if no headers have been sent up to that point.
6940 BOOL Flush(BOOL bFinal=FALSE) throw()
6941 {
6942 if (!m_spServerContext)
6943 return FALSE;
6944
6945 BOOL bRet = TRUE;
6946
6947 _ATLTRY
6948 {
6949 // if the headers haven't been sent,
6950 // send them now
6951
6952 if (!m_bHeadersSent)
6953 {
6954 char szProtocol[ATL_URL_MAX_URL_LENGTH];
6955 DWORD dwProtocolLen = sizeof(szProtocol);
6956
6957 if (bFinal && m_bBufferOutput && m_dwBufferLimit==ULONG_MAX)
6958 {
6959 if (m_spServerContext->GetServerVariable("SERVER_PROTOCOL", szProtocol, &dwProtocolLen) &&
6960 !strcmp(szProtocol, "HTTP/1.0"))
6961 AppendHeader("Connection", "Keep-Alive");
6962 Checked::itoa_s(m_strContent.GetLength(), szProtocol, _countof(szProtocol), 10);
6963 AppendHeader("Content-Length", szProtocol);
6964 bRet = SendHeadersInternal(TRUE);
6965 }
6966 else
6967 bRet = SendHeadersInternal();
6968 }
6969 if (m_bBufferOutput)
6970 {
6971 DWORD dwLen = 0;
6972
6973 dwLen = m_strContent.GetLength();
6974 if (dwLen)
6975 {
6976 if (m_bSendOutput &&
6977 m_spServerContext->WriteClient((void *) (LPCSTR) m_strContent, &dwLen) != TRUE)
6978 {
6979 m_strContent.Empty();
6980 return FALSE;
6981 }
6982 m_strContent.Empty();
6983 }
6984 }
6985 } // _ATLTRY
6986 _ATLCATCHALL()
6987 {
6988 bRet = FALSE;
6989 }
6990 return bRet;
6991 }
6992
6993 // Call this function to clear the response object of any headers
6994 // and the contents of the buffer.
6995 void ClearResponse() throw()
6996 {
6997 m_strContent.Empty();
6998 m_headers.RemoveAll();
6999 }
7000
7001 BOOL AsyncPrep(__in BOOL fKeepConn=FALSE) throw()
7002 {
7003 ATLASSUME(m_spServerContext != NULL);
7004
7005 return SendHeadersInternal(fKeepConn);
7006 }
7007
7008 BOOL AsyncFlush() throw()
7009 {
7010 ATLASSUME(m_spServerContext != NULL);
7011
7012 BOOL bRet = SendHeadersInternal();
7013
7014 if (bRet && m_bBufferOutput)
7015 {
7016 DWORD dwLen = 0;
7017
7018 dwLen = m_strContent.GetLength();
7019 if (dwLen)
7020 {
7021 _ATLTRY
7022 {
7023 if (m_spServerContext->AsyncWriteClient((void *) (LPCSTR) m_strContent, &dwLen) != TRUE)
7024 {
7025 bRet = FALSE;
7026 }
7027 }
7028 _ATLCATCHALL()
7029 {
7030 bRet = FALSE;
7031 }
7032 }
7033 }
7034
7035 return bRet;
7036 }
7037
7038 BOOL TransmitFile(__in HANDLE hFile, __in LPCSTR szContentType="text/plain") throw()
7039 {
7040 ATLASSUME(m_spServerContext != NULL);
7041 ATLASSERT(hFile != NULL && hFile != INVALID_HANDLE_VALUE);
7042
7043 SetContentType(szContentType);
7044
7045 if (m_strContent.GetLength())
7046 if (!Flush())
7047 return FALSE;
7048
7049 BOOL bRet = SendHeadersInternal();
7050 if (bRet)
7051 {
7052 _ATLTRY
7053 {
7054 bRet = m_spServerContext->TransmitFile(hFile, NULL, NULL, NULL,
7055 0, 0, NULL, 0, NULL, 0, HSE_IO_ASYNC | HSE_IO_NODELAY);
7056 }
7057 _ATLCATCHALL()
7058 {
7059 bRet = FALSE;
7060 }
7061 }
7062
7063 return bRet;
7064 }
7065 }; // class CHttpResponse
7066
7067
7068
7069 #define ATLS_FLAG_NONE 0
7070 #define ATLS_FLAG_ASYNC 1 // handler might do some async handling
7071
7072 // push_macro/pop_macro doesn't work in a template definition.
7073 #pragma push_macro("new")
7074 #undef new
7075 template <class T>
7076 class PerThreadWrapper : public CComObjectNoLock<T>
7077 {
7078 public:
7079 void *operator new(size_t /*size*/, void *p) throw()
7080 {
7081 return p;
7082 }
7083
7084 void operator delete(void * /*p*/) throw()
7085 {
7086 }
7087
7088 STDMETHOD_(ULONG, Release)() throw()
7089 {
7090 ULONG l = InternalRelease();
7091 if (l == 0)
7092 {
7093 T *pT = static_cast<T*>(this);
7094 ATLASSERT(pT->m_spExtension != NULL);
7095 CIsapiWorker *pWorker = pT->m_spExtension->GetThreadWorker();
7096 ATLASSERT(pWorker);
7097
7098 delete this;
7099 if(pWorker)
7100 {
7101 HeapFree(pWorker->m_hHeap, HEAP_NO_SERIALIZE, this);
7102 }
7103 }
7104 return l;
7105 }
7106 };
7107
7108 template <typename THandler>
7109 inline BOOL CreateRequestHandlerSync(__in IIsapiExtension *pExtension, __deref_out_opt IUnknown **ppOut)
7110 {
7111 ATLENSURE(pExtension);
7112 ATLENSURE(ppOut);
7113
7114 CIsapiWorker *pWorker = pExtension->GetThreadWorker();
7115 ATLENSURE(pWorker);
7116 void *pv = HeapAlloc(pWorker->m_hHeap, HEAP_NO_SERIALIZE, sizeof(PerThreadWrapper<THandler>));
7117 if (!pv)
7118 return FALSE;
7119
7120 PerThreadWrapper<THandler> *pHandler = new(pv) PerThreadWrapper<THandler>;
7121 *ppOut = static_cast<IRequestHandler *>(pHandler);
7122 pHandler->m_spExtension = pExtension;
7123
7124 (*ppOut)->AddRef();
7125
7126 return TRUE;
7127 }
7128 #pragma pop_macro("new")
7129
7130 #define DECLARE_ASYNC_HANDLER() \
7131 static DWORD GetHandlerFlags() \
7132 { \
7133 return ATLS_FLAG_ASYNC; \
7134 } \
7135 DWORD GetAsyncFlags() \
7136 { \
7137 return ATLSRV_INIT_USEASYNC; \
7138 }
7139
7140 #define DECLARE_ASYNC_HANDLER_EX() \
7141 static DWORD GetHandlerFlags() \
7142 { \
7143 return ATLS_FLAG_ASYNC; \
7144 } \
7145 DWORD GetAsyncFlags() \
7146 { \
7147 return (ATLSRV_INIT_USEASYNC|ATLSRV_INIT_USEASYNC_EX); \
7148 }
7149
7150
7151 template <typename THandler>
7152 class IRequestHandlerImpl : public IRequestHandler
7153 {
7154 public:
7155 HINSTANCE m_hInstHandler;
7156 CComPtr<IServiceProvider> m_spServiceProvider;
7157 CComPtr<IHttpServerContext> m_spServerContext;
7158 CComPtr<IIsapiExtension> m_spExtension;
7159 DWORD m_dwAsyncFlags;
7160
7161 IRequestHandlerImpl()
7162 :m_hInstHandler(NULL)
7163 {
7164 m_dwAsyncFlags = 0;
7165 }
7166 virtual ~IRequestHandlerImpl()
7167 {
7168 }
7169
7170 HTTP_CODE GetFlags(__out DWORD *pdwStatus)
7171 {
7172 ATLASSERT(pdwStatus);
7173 THandler *pT = static_cast<THandler *>(this);
7174
7175 *pdwStatus = pT->GetAsyncFlags();
7176 if (pT->CachePage())
7177 *pdwStatus |= ATLSRV_INIT_USECACHE;
7178
7179 #ifdef _DEBUG
7180 if (*pdwStatus & (ATLSRV_INIT_USEASYNC|ATLSRV_INIT_USEASYNC_EX))
7181 ATLASSERT(pT->GetHandlerFlags() & ATLS_FLAG_ASYNC);
7182 #endif
7183
7184 return HTTP_SUCCESS;
7185 }
7186
7187 HTTP_CODE InitializeHandler(__in AtlServerRequest *pRequestInfo, __in IServiceProvider *pProvider)
7188 {
7189 ATLENSURE(pRequestInfo != NULL);
7190 ATLENSURE(pProvider != NULL);
7191 ATLENSURE(pRequestInfo->hInstDll != NULL);
7192 ATLENSURE(pRequestInfo->pServerContext != NULL);
7193
7194 // Initialize our internal references to required services
7195 m_hInstHandler = pRequestInfo->hInstDll;
7196 m_spServiceProvider = pProvider;
7197 m_spServerContext = pRequestInfo->pServerContext;
7198
7199 return HTTP_SUCCESS;
7200 }
7201
7202 HTTP_CODE InitializeChild(__in AtlServerRequest *pRequestInfo, __in IServiceProvider *pProvider, IHttpRequestLookup * /*pLookup*/)
7203 {
7204 return InitializeHandler(pRequestInfo, pProvider);
7205 }
7206
7207 void UninitializeHandler()
7208 {
7209 }
7210
7211 HTTP_CODE HandleRequest(
7212 AtlServerRequest* /*pRequestInfo*/,
7213 IServiceProvider* /*pServiceProvider*/)
7214 {
7215 return HTTP_SUCCESS;
7216 }
7217
7218 DWORD GetAsyncFlags()
7219 {
7220 return m_dwAsyncFlags;
7221 }
7222
7223 void SetAsyncFlags(__in DWORD dwAsyncFlags)
7224 {
7225 ATLASSERT((dwAsyncFlags & ~(ATLSRV_INIT_USEASYNC|ATLSRV_INIT_USEASYNC_EX)) == 0);
7226 m_dwAsyncFlags = dwAsyncFlags;
7227 }
7228
7229 BOOL CachePage()
7230 {
7231 return FALSE;
7232 }
7233
7234 static DWORD GetHandlerFlags()
7235 {
7236 return ATLS_FLAG_NONE;
7237 }
7238
7239 // Used to create new instance of this object. A pointer to this
7240 // function is stored in the handler map in user's code.
7241 static BOOL CreateRequestHandler(__in IIsapiExtension *pExtension, __deref_out_opt IUnknown **ppOut)
7242 {
7243 ATLASSERT(ppOut != NULL);
7244 if (ppOut == NULL)
7245 return false;
7246
7247 *ppOut = NULL;
7248
7249 if (THandler::GetHandlerFlags() & ATLS_FLAG_ASYNC)
7250 {
7251 THandler *pHandler = NULL;
7252 ATLTRY(pHandler = new CComObjectNoLock<THandler>);
7253 if (!pHandler)
7254 return FALSE;
7255 *ppOut = static_cast<IRequestHandler *>(pHandler);
7256 pHandler->m_spExtension = pExtension;
7257 (*ppOut)->AddRef();
7258 }
7259 else
7260 {
7261 if (!CreateRequestHandlerSync<THandler>(pExtension, ppOut))
7262 return FALSE;
7263 }
7264
7265 return TRUE;
7266 }
7267
7268 // Used to initialize the class
7269 // function is stored in the handler map in user's code.
7270 static BOOL InitRequestHandlerClass(IHttpServerContext *pContext, IIsapiExtension *pExt)
7271 {
7272 (pContext); // unused
7273 (pExt); // unused
7274 return TRUE;
7275 }
7276
7277 // Used to uninitialize the class
7278 // function is stored in the handler map in user's code.
7279 static void UninitRequestHandlerClass()
7280 {
7281 return;
7282 }
7283 };
7284
7285 struct CRequestStats
7286 {
7287 long m_lTotalRequests;
7288 long m_lFailedRequests;
7289 __int64 m_liTotalResponseTime;
7290 long m_lAvgResponseTime;
7291 long m_lCurrWaiting;
7292 long m_lMaxWaiting;
7293 long m_lActiveThreads;
7294
7295 CRequestStats() throw()
7296 {
7297 m_lTotalRequests = 0;
7298 m_lFailedRequests = 0;
7299 m_liTotalResponseTime = 0;
7300 m_lAvgResponseTime = 0;
7301 m_lCurrWaiting = 0;
7302 m_lMaxWaiting = 0;
7303 m_lActiveThreads = 0;
7304 }
7305
7306 void RequestHandled(__in AtlServerRequest *pRequestInfo, __in BOOL bSuccess)
7307 {
7308 ATLENSURE(pRequestInfo);
7309
7310 InterlockedIncrement(&m_lTotalRequests);
7311 if (!bSuccess)
7312 InterlockedIncrement(&m_lFailedRequests);
7313
7314 long lTicks;
7315
7316 #ifndef ATL_NO_MMSYS
7317 lTicks = (long) (timeGetTime() - pRequestInfo->dwStartTicks);
7318 #else
7319 lTicks = (long) (GetTickCount() - pRequestInfo->dwStartTicks);
7320 #endif
7321 __int64 liTotalResponseTime = Add64(&m_liTotalResponseTime, lTicks);
7322 long lAv = (long) (liTotalResponseTime / m_lTotalRequests);
7323 InterlockedExchange(&m_lAvgResponseTime, lAv);
7324
7325 InterlockedDecrement(&m_lActiveThreads);
7326 }
7327
7328 long GetTotalRequests() throw()
7329 {
7330 return m_lTotalRequests;
7331 }
7332
7333 long GetFailedRequests() throw()
7334 {
7335 return m_lFailedRequests;
7336 }
7337
7338 long GetAvgResponseTime() throw()
7339 {
7340 return m_lAvgResponseTime;
7341 }
7342
7343 void OnRequestReceived() throw()
7344 {
7345 long nCurrWaiting = InterlockedIncrement(&m_lCurrWaiting);
7346 AtlInterlockedUpdateMax(nCurrWaiting, &m_lMaxWaiting);
7347 }
7348
7349 void OnRequestDequeued() throw()
7350 {
7351 InterlockedDecrement(&m_lCurrWaiting);
7352 InterlockedIncrement(&m_lActiveThreads);
7353 }
7354
7355 long GetCurrWaiting() throw()
7356 {
7357 return m_lCurrWaiting;
7358 }
7359
7360 long GetMaxWaiting() throw()
7361 {
7362 return m_lMaxWaiting;
7363 }
7364
7365 long GetActiveThreads() throw()
7366 {
7367 return m_lActiveThreads;
7368 }
7369
7370 private:
7371 // not actually atomic, but it will add safely.
7372
7373 // the returned value is not 100% guaranteed to be
7374 // correct, but should be correct more often than
7375 // just reading the __int64
7376 // the 2 cases where the return value will not be
7377 // a valid result value from an add are:
7378 // * multiple threads wrap the low part in rapid succession
7379 // * different threads are adding values with different signs
7380
7381 // this is good enough for our use in RequestHandled -
7382 // we always add positive values and we shouldn't wrap 32-bits often
7383 inline __int64 Add64(__inout __int64* pn, long nAdd)
7384 {
7385 ATLENSURE(pn != NULL);
7386
7387 #if defined(_WIN64) && defined(_M_CEE)
7388
7389 // Use System::Threading::Interlocked::Add because InterlockedExchangeAdd is an intrisinc not supported in managed code
7390 // with 64bits compilers.
7391 // Also, System::Threading::Interlocked::Add support 64bits operands.
7392 return System::Threading::Interlocked::Add(*pn, nAdd);
7393
7394 #else
7395
7396 long* pnLow = (long*)(LPBYTE(pn) + offsetof(LARGE_INTEGER, LowPart));
7397 long* pnHigh = (long*)(LPBYTE(pn) + offsetof(LARGE_INTEGER, HighPart));
7398
7399 long nOrigLow = InterlockedExchangeAdd(pnLow, nAdd);
7400 long nNewLow = nOrigLow + nAdd;
7401 long nNewHigh = *pnHigh;
7402 if (nAdd > 0 && nNewLow < nOrigLow)
7403 nNewHigh = InterlockedIncrement(pnHigh);
7404 else if (nAdd < 0 && nNewLow > nOrigLow)
7405 nNewHigh = InterlockedDecrement(pnHigh);
7406
7407 LARGE_INTEGER li;
7408 li.LowPart = nNewLow;
7409 li.HighPart = nNewHigh;
7410 return li.QuadPart;
7411
7412 #endif
7413 }
7414 };
7415
7416 class CStdRequestStats : public CRequestStats
7417 {
7418
7419 public:
7420 HRESULT Initialize() throw()
7421 {
7422 return S_OK;
7423 }
7424
7425 void Uninitialize() throw()
7426 {
7427 }
7428 };
7429
7430 #define PERF_REQUEST_OBJECT 100
7431
7432 struct CPerfRequestStatObject : public CPerfObject,
7433 public CRequestStats
7434 {
7435 DECLARE_PERF_CATEGORY_EX(PERF_REQUEST_OBJECT, IDS_PERFMON_REQUEST, IDS_PERFMON_REQUEST_HELP, PERF_DETAIL_NOVICE, 0, sizeof(CPerfRequestStatObject), MAX_PATH, -1);
7436 BEGIN_COUNTER_MAP(CPerfRequestStatObject)
7437 DEFINE_COUNTER(m_lTotalRequests, IDS_PERFMON_REQUEST_TOTAL, IDS_PERFMON_REQUEST_TOTAL_HELP, PERF_COUNTER_RAWCOUNT, -1)
7438 DEFINE_COUNTER(m_lFailedRequests, IDS_PERFMON_REQUEST_FAILED, IDS_PERFMON_REQUEST_FAILED_HELP, PERF_COUNTER_RAWCOUNT, -1)
7439 DEFINE_COUNTER(m_lTotalRequests, IDS_PERFMON_REQUEST_RATE, IDS_PERFMON_REQUEST_RATE_HELP, PERF_COUNTER_COUNTER, -1)
7440 DEFINE_COUNTER(m_lAvgResponseTime, IDS_PERFMON_REQUEST_AVG_RESPONSE_TIME, IDS_PERFMON_REQUEST_AVG_RESPONSE_TIME_HELP, PERF_COUNTER_RAWCOUNT, -1)
7441 DEFINE_COUNTER(m_lCurrWaiting, IDS_PERFMON_REQUEST_CURR_WAITING, IDS_PERFMON_REQUEST_CURR_WAITING_HELP, PERF_COUNTER_RAWCOUNT, -1)
7442 DEFINE_COUNTER(m_lMaxWaiting, IDS_PERFMON_REQUEST_MAX_WAITING, IDS_PERFMON_REQUEST_MAX_WAITING_HELP, PERF_COUNTER_RAWCOUNT, -1)
7443 DEFINE_COUNTER(m_lActiveThreads, IDS_PERFMON_REQUEST_ACTIVE_THREADS, IDS_PERFMON_REQUEST_ACTIVE_THREADS, PERF_COUNTER_RAWCOUNT, -1)
7444 END_COUNTER_MAP()
7445 };
7446
7447 class CRequestPerfMon : public CPerfMon
7448 {
7449 public:
7450 BEGIN_PERF_MAP(_T("ATL Server:Request"))
7451 CHAIN_PERF_CATEGORY(CPerfRequestStatObject)
7452 END_PERF_MAP()
7453 };
7454
7455 class CPerfMonRequestStats
7456 {
7457 CRequestPerfMon m_PerfMon;
7458 CPerfRequestStatObject * m_pPerfObjectInstance;
7459 CPerfRequestStatObject * m_pPerfObjectTotal;
7460
7461 public:
7462 CPerfMonRequestStats() throw()
7463 {
7464 m_pPerfObjectInstance = NULL;
7465 m_pPerfObjectTotal = NULL;
7466 }
7467
7468 HRESULT Initialize() throw()
7469 {
7470 HRESULT hr;
7471
7472 m_pPerfObjectInstance = NULL;
7473 m_pPerfObjectTotal = NULL;
7474
7475 hr = m_PerfMon.Initialize();
7476 if (SUCCEEDED(hr))
7477 {
7478 CPerfLock lock(&m_PerfMon);
7479 if (FAILED(hr = lock.GetStatus()))
7480 {
7481 return hr;
7482 }
7483
7484 HINSTANCE hInst = _AtlBaseModule.GetModuleInstance();
7485 WCHAR szName[MAX_PATH];
7486 if (GetModuleFileNameW(hInst, szName, MAX_PATH) == 0)
7487 {
7488 return E_FAIL;
7489 }
7490 szName[MAX_PATH-1] = 0;
7491
7492 hr = m_PerfMon.CreateInstanceByName(L"_Total", &m_pPerfObjectTotal);
7493 if (FAILED(hr))
7494 {
7495 return hr;
7496 }
7497
7498 hr = m_PerfMon.CreateInstanceByName(szName, &m_pPerfObjectInstance);
7499 if (FAILED(hr))
7500 {
7501 m_PerfMon.ReleaseInstance(m_pPerfObjectTotal);
7502 m_pPerfObjectTotal = NULL;
7503 return hr;
7504 }
7505 }
7506
7507 return hr;
7508 }
7509
7510 void Uninitialize() throw()
7511 {
7512 if (m_pPerfObjectInstance != NULL)
7513 m_PerfMon.ReleaseInstance(m_pPerfObjectInstance);
7514 if (m_pPerfObjectTotal != NULL)
7515 m_PerfMon.ReleaseInstance(m_pPerfObjectTotal);
7516
7517 m_pPerfObjectInstance = NULL;
7518 m_pPerfObjectTotal = NULL;
7519
7520 m_PerfMon.UnInitialize();
7521 }
7522
7523 void RequestHandled(__in AtlServerRequest *pRequestInfo, __in BOOL bSuccess) throw()
7524 {
7525 if (m_pPerfObjectInstance != NULL)
7526 m_pPerfObjectInstance->RequestHandled(pRequestInfo, bSuccess);
7527 if (m_pPerfObjectTotal != NULL)
7528 m_pPerfObjectTotal->RequestHandled(pRequestInfo, bSuccess);
7529 }
7530
7531 long GetTotalRequests() throw()
7532 {
7533 if (m_pPerfObjectInstance != NULL)
7534 return m_pPerfObjectInstance->GetTotalRequests();
7535
7536 return 0;
7537 }
7538
7539 long GetFailedRequests() throw()
7540 {
7541 if (m_pPerfObjectInstance != NULL)
7542 return m_pPerfObjectInstance->GetFailedRequests();
7543
7544 return 0;
7545 }
7546
7547 long GetAvgResponseTime() throw()
7548 {
7549 if (m_pPerfObjectInstance != NULL)
7550 return m_pPerfObjectInstance->GetAvgResponseTime();
7551
7552 return 0;
7553 }
7554
7555 void OnRequestReceived() throw()
7556 {
7557 if (m_pPerfObjectInstance != NULL)
7558 m_pPerfObjectInstance->OnRequestReceived();
7559 if (m_pPerfObjectTotal != NULL)
7560 m_pPerfObjectTotal->OnRequestReceived();
7561 }
7562
7563 void OnRequestDequeued() throw()
7564 {
7565 if (m_pPerfObjectInstance != NULL)
7566 m_pPerfObjectInstance->OnRequestDequeued();
7567 if (m_pPerfObjectTotal != NULL)
7568 m_pPerfObjectTotal->OnRequestDequeued();
7569 }
7570
7571 long GetCurrWaiting() throw()
7572 {
7573 if (m_pPerfObjectInstance != NULL)
7574 return m_pPerfObjectInstance->GetCurrWaiting();
7575
7576 return 0;
7577 }
7578
7579 long GetMaxWaiting() throw()
7580 {
7581 if (m_pPerfObjectInstance != NULL)
7582 return m_pPerfObjectInstance->GetMaxWaiting();
7583
7584 return 0;
7585 }
7586
7587 long GetActiveThreads() throw()
7588 {
7589 if (m_pPerfObjectInstance != NULL)
7590 return m_pPerfObjectInstance->GetActiveThreads();
7591
7592 return 0;
7593 }
7594 };
7595
7596 class CNoRequestStats
7597 {
7598 protected:
7599
7600 public:
7601
7602 HRESULT Initialize() throw()
7603 {
7604 return S_OK;
7605 }
7606
7607 void Uninitialize() throw()
7608 {
7609 }
7610
7611 void RequestHandled(AtlServerRequest * /*pRequestInfo*/, BOOL /*bSuccess*/) throw()
7612 {
7613 }
7614
7615 long GetTotalRequests() throw()
7616 {
7617 return 0;
7618 }
7619
7620 long GetFailedRequests() throw()
7621 {
7622 return 0;
7623 }
7624
7625 long GetAvgResponseTime() throw()
7626 {
7627 return 0;
7628 }
7629
7630 void OnRequestReceived() throw()
7631 {
7632 }
7633
7634 void OnRequestDequeued() throw()
7635 {
7636 }
7637
7638 long GetCurrWaiting() throw()
7639 {
7640 return 0;
7641 }
7642
7643 long GetMaxWaiting() throw()
7644 {
7645 return 0;
7646 }
7647
7648 long GetActiveThreads() throw()
7649 {
7650 return 0;
7651 }
7652 };
7653
7654 struct ATLServerDllInfo
7655 {
7656 GETATLHANDLERBYNAME pfnGetHandler;
7657 UNINITIALIZEATLHANDLERS pfnUninitHandlers;
7658 INITIALIZEATLHANDLERS pfnInitHandlers;
7659 IIsapiExtension *pExtension;
7660 IHttpServerContext *pContext;
7661 };
7662
7663 class CDllCachePeer
7664 {
7665 public:
7666 struct DllInfo : public ATLServerDllInfo
7667 {
7668 DllInfo& operator=(__in const DllInfo& right) throw()
7669 {
7670 if (this != &right)
7671 {
7672 pfnGetHandler = right.pfnGetHandler;
7673 pfnUninitHandlers = right.pfnUninitHandlers;
7674 pfnInitHandlers = right.pfnInitHandlers;
7675 pExtension = right.pExtension;
7676 pContext = right.pContext;
7677 }
7678 return *this;
7679 }
7680 };
7681
7682 BOOL Add(__in HINSTANCE hInst, __out DllInfo *pInfo) throw(...)
7683 {
7684 ATLENSURE(pInfo!=NULL);
7685 pInfo->pfnInitHandlers = (INITIALIZEATLHANDLERS) GetProcAddress(hInst, ATLS_FUNCID_INITIALIZEHANDLERS);
7686
7687 pInfo->pfnGetHandler = (GETATLHANDLERBYNAME) GetProcAddress(hInst, ATLS_FUNCID_GETATLHANDLERBYNAME);
7688 if (!pInfo->pfnGetHandler)
7689 return FALSE;
7690
7691 pInfo->pfnUninitHandlers = (UNINITIALIZEATLHANDLERS) GetProcAddress(hInst, ATLS_FUNCID_UNINITIALIZEHANDLERS);
7692
7693 if (pInfo->pfnInitHandlers)
7694 {
7695 pInfo->pfnInitHandlers(pInfo->pContext, pInfo->pExtension);
7696 pInfo->pContext = NULL; // won't be valid after this call
7697 }
7698
7699 return TRUE;
7700 }
7701
7702 void Remove(HINSTANCE /*hInst*/, __in DllInfo *pInfo) throw(...)
7703 {
7704 ATLENSURE(pInfo!=NULL);
7705 if (pInfo->pfnUninitHandlers)
7706 (*pInfo->pfnUninitHandlers)();
7707 }
7708
7709 };
7710
7711 inline bool operator==(__in const CDllCachePeer::DllInfo& left, __in const CDllCachePeer::DllInfo& right) throw()
7712 {
7713 return ( (left.pfnGetHandler == right.pfnGetHandler) &&
7714 (left.pfnUninitHandlers == right.pfnUninitHandlers) &&
7715 (left.pfnInitHandlers == right.pfnInitHandlers) &&
7716 (left.pExtension == right.pExtension) &&
7717 (left.pContext == right.pContext)
7718 );
7719 }
7720
7721
7722
7723 // Helper function to impersonate the client
7724 // on the current thread
7725 inline BOOL AtlImpersonateClient(__in IHttpServerContext *pServerContext)
7726 {
7727 ATLENSURE(pServerContext);
7728
7729 // impersonate the calling client on the current thread
7730 HANDLE hToken;
7731 _ATLTRY
7732 {
7733 if (!pServerContext->GetImpersonationToken(&hToken))
7734 return FALSE;
7735 }
7736 _ATLCATCHALL()
7737 {
7738 return FALSE;
7739 }
7740
7741 if (!SetThreadToken(NULL, hToken))
7742 return FALSE;
7743 return TRUE;
7744 }
7745
7746 // Helper class to set the thread impersonation token
7747 // This is mainly used internally to ensure that we
7748 // don't forget to revert to the process impersonation
7749 // level
7750 class CSetThreadToken
7751 {
7752 public:
7753 CSetThreadToken() : m_bShouldRevert(FALSE) {}
7754
7755 BOOL Initialize(__in AtlServerRequest *pRequestInfo)
7756 {
7757 ATLENSURE(pRequestInfo);
7758 m_bShouldRevert = AtlImpersonateClient(pRequestInfo->pServerContext);
7759 return m_bShouldRevert;
7760 }
7761
7762 ~CSetThreadToken() throw()
7763 {
7764 if( m_bShouldRevert && !RevertToSelf() )
7765 {
7766 _AtlRaiseException( (DWORD)EXCEPTION_ACCESS_VIOLATION );
7767 }
7768 }
7769 protected:
7770 BOOL m_bShouldRevert;
7771 };
7772
7773
7774 // push_macro/pop_macro doesn't work in a template definition.
7775 #pragma push_macro("new")
7776 #undef new
7777
7778
7779 //Base is the user's class that derives from CComObjectRoot and whatever
7780 //interfaces the user wants to support on the object
7781 template <class Base>
7782 class _CComObjectHeapNoLock : public Base
7783 {
7784 public:
7785 typedef Base _BaseClass;
7786 HANDLE m_hHeap;
7787
7788 _CComObjectHeapNoLock(void* = NULL, HANDLE hHeap = NULL)
7789 {
7790 m_hHeap = hHeap;
7791 }
7792 // Set refcount to -(LONG_MAX/2) to protect destruction and
7793 // also catch mismatched Release in debug builds
7794 ~_CComObjectHeapNoLock()
7795 {
7796 m_dwRef = -(LONG_MAX/2);
7797 FinalRelease();
7798 #ifdef _ATL_DEBUG_INTERFACES
7799 _AtlDebugInterfacesModule.DeleteNonAddRefThunk(_GetRawUnknown());
7800 #endif
7801 }
7802
7803 //If InternalAddRef or InternalRelease is undefined then your class
7804 //doesn't derive from CComObjectRoot
7805 STDMETHOD_(ULONG, AddRef)() throw() {return InternalAddRef();}
7806 STDMETHOD_(ULONG, Release)() throw()
7807 {
7808 ULONG l = InternalRelease();
7809 if (l == 0)
7810 {
7811 HANDLE hHeap = m_hHeap;;
7812 this->~_CComObjectHeapNoLock();
7813 if (hHeap != NULL)
7814 {
7815 HeapFree(hHeap, 0, this);
7816 }
7817 }
7818 return l;
7819 }
7820 //if _InternalQueryInterface is undefined then you forgot BEGIN_COM_MAP
7821 STDMETHOD(QueryInterface)(REFIID iid, void ** ppvObject) throw()
7822 {return _InternalQueryInterface(iid, ppvObject);}
7823
7824 static HRESULT WINAPI CreateInstance(_CComObjectHeapNoLock<Base>** pp, HANDLE hHeap) throw();
7825 };
7826
7827
7828
7829 template <class Base>
7830 HRESULT WINAPI _CComObjectHeapNoLock<Base>::CreateInstance(__deref_out _CComObjectHeapNoLock<Base>** pp, __in HANDLE hHeap) throw()
7831 {
7832 ATLASSERT(pp != NULL);
7833 if (pp == NULL)
7834 return E_POINTER;
7835 *pp = NULL;
7836
7837 HRESULT hRes = E_OUTOFMEMORY;
7838 // Allocate a fixed block size to avoid fragmentation
7839 void *pv = HeapAlloc(hHeap, HEAP_ZERO_MEMORY,
7840 __max(sizeof(AtlServerRequest), sizeof(_CComObjectHeapNoLock<CServerContext>)));
7841 if (pv == NULL)
7842 {
7843 return hRes;
7844 }
7845 #pragma warning(push)
7846 #pragma warning(disable: 6280)
7847 /* prefast noise VSW 493229 */
7848 _CComObjectHeapNoLock<Base>* p = new(pv) _CComObjectHeapNoLock<CServerContext>(NULL, hHeap);
7849 #pragma warning(pop)
7850
7851 p->SetVoid(NULL);
7852 p->InternalFinalConstructAddRef();
7853 hRes = p->_AtlInitialConstruct();
7854 if (SUCCEEDED(hRes))
7855 hRes = p->FinalConstruct();
7856 if (SUCCEEDED(hRes))
7857 hRes = p->_AtlFinalConstruct();
7858 p->InternalFinalConstructRelease();
7859 if (hRes != S_OK)
7860 {
7861 p->~_CComObjectHeapNoLock();
7862 #pragma warning(push)
7863 #pragma warning(disable: 6280)
7864 /* prefast noise VSW 493229 */
7865 HeapFree(hHeap, 0, p);
7866 #pragma warning(pop)
7867 p = NULL;
7868 }
7869 *pp = p;
7870 return hRes;
7871 }
7872
7873 inline CServerContext* CreateServerContext(__in HANDLE hRequestHeap) throw()
7874 {
7875 _CComObjectHeapNoLock<CServerContext>* pContext;
7876 _CComObjectHeapNoLock<CServerContext>::CreateInstance(&pContext, hRequestHeap);
7877 return pContext;
7878 }
7879 #pragma pop_macro("new")
7880
7881 // _AtlGetHandlerName
7882 // get handler name from stencil file. Ignore all server side comments
7883 // szFileName - the file from which to extract the handler name
7884 // szHandlerName - buffer into which handler name will be copied,
7885 // it is assumed to be of size MAX_PATH+ATL_MAX_HANDLER_NAME+2
7886 inline HTTP_CODE _AtlGetHandlerName(__in LPCSTR szFileName, __out_ecount(MAX_PATH+ATL_MAX_HANDLER_NAME+2) LPSTR szHandlerName)
7887 {
7888 ATLASSERT(szFileName);
7889 ATLENSURE(szHandlerName);
7890
7891 szHandlerName[0] = '\0';
7892 CAtlFile cfFile;
7893 HRESULT hr;
7894
7895 _ATLTRY
7896 {
7897 hr = cfFile.Create(CA2CTEX<MAX_PATH>(szFileName), GENERIC_READ, FILE_SHARE_READ, OPEN_EXISTING);
7898 if (FAILED(hr) || cfFile.m_h == NULL || GetFileType(cfFile.m_h) != FILE_TYPE_DISK)
7899 {
7900 if (hr == AtlHresultFromWin32(ERROR_FILE_NOT_FOUND))
7901 return HTTP_NOT_FOUND;
7902 else if (hr == AtlHresultFromWin32(ERROR_ACCESS_DENIED))
7903 return HTTP_UNAUTHORIZED;
7904 else
7905 return AtlsHttpError(500, IDS_ATLSRV_SERVER_ERROR_STENCILLOADFAIL);
7906 }
7907 }
7908 _ATLCATCHALL()
7909 {
7910 return AtlsHttpError(500, ISE_SUBERR_OUTOFMEM); // CA2CTEX threw
7911 }
7912
7913 HTTP_CODE hcErr = HTTP_SUCCESS;
7914 DWORD dwRead=0;
7915 LPCSTR szHandler = "handler";
7916 LPCSTR pszHandlerPos = NULL;
7917 LPSTR pszHandlerName = szHandlerName;
7918 char szBuf[4097];
7919 LPSTR szCurly = NULL;
7920 LPSTR pszBuf = NULL;
7921 bool bInQuote = false;
7922
7923 // state:
7924 // 0 = default/unknown
7925 // 1 = have "{"
7926 // 2 = have "{{" -- skip spaces
7927 // 3 = have "{{" -- check "handler"
7928 // 4 = have "handler" -- skip spaces
7929 // 5 = have "handler" -- get name
7930 // 6 = scan until first '}'
7931 // 7 = better be '}'
7932 // 8 = done
7933 int nState = 0;
7934
7935 do
7936 {
7937 hr = cfFile.Read(szBuf, _countof(szBuf)-1, dwRead);
7938 if (hr != S_OK)
7939 {
7940 return AtlsHttpError(500, ISE_SUBERR_READFILEFAIL); // failed reading
7941 }
7942
7943 szBuf[dwRead] = '\0';
7944 pszBuf = szBuf;
7945
7946 while (*pszBuf && nState != 8)
7947 {
7948 switch (nState)
7949 {
7950 case 0:
7951 // 0 = default/unknown
7952
7953 // look for the first curly
7954 szCurly = strchr(pszBuf, '{');
7955 if (!szCurly)
7956 {
7957 // skip to the end of the buffer
7958 pszBuf = szBuf+dwRead-1;
7959 }
7960 else
7961 {
7962 pszBuf = szCurly;
7963 nState = 1;
7964 }
7965 break;
7966 case 1:
7967 // 1 = have "{"
7968 if (*pszBuf == '{')
7969 {
7970 nState = 2;
7971 }
7972 else
7973 {
7974 nState = 0; // if the next character is not a '{', start over
7975 }
7976 break;
7977 case 2:
7978 if (!isspace(static_cast<unsigned char>(*pszBuf)))
7979 {
7980 pszHandlerPos = szHandler;
7981 pszBuf--;
7982 nState = 3;
7983 }
7984 break;
7985 case 3:
7986 // 3 = partial handler "h..."
7987 if (*pszBuf != *pszHandlerPos)
7988 {
7989 // not a handler, skip tag
7990 nState = 6;
7991 }
7992 else
7993 {
7994 pszHandlerPos++;
7995 if (!*pszHandlerPos) // at the end of the "handler" part
7996 nState = 4;
7997 }
7998 break;
7999 case 4:
8000 // 4 = have "handler" -- skip spaces
8001 if (!isspace(static_cast<unsigned char>(*pszBuf)))
8002 {
8003 if (*pszBuf == '\"')
8004 {
8005 bInQuote = true;
8006 }
8007 else
8008 {
8009 pszBuf--;
8010 }
8011 nState = 5;
8012 }
8013 break;
8014 case 5:
8015 // 5 = have "handler" -- get name
8016 if (isspace(static_cast<unsigned char>(*pszBuf)) && !bInQuote)
8017 {
8018 if (*(pszHandlerName-1) != '/')
8019 {
8020 // end of the name -- jump to getting the first '}'
8021 nState = 6;
8022 }
8023 else
8024 {
8025 nState = 4;
8026 }
8027 }
8028 else if (*pszBuf == '}')
8029 {
8030 // end of the name -- jump to getting the second '}'
8031 nState = 7;
8032 }
8033 else if (*pszBuf == '\"')
8034 {
8035 if (bInQuote)
8036 {
8037 bInQuote = false;
8038 }
8039 else
8040 {
8041 hcErr = HTTP_FAIL;
8042 nState = 8;
8043 }
8044 }
8045 else
8046 {
8047 // ensure we don't overwrite the buffer
8048 if (pszHandlerName-szHandlerName >= MAX_PATH+ATL_MAX_HANDLER_NAME_LEN+1)
8049 {
8050 hcErr = HTTP_FAIL;
8051 nState = 8;
8052 }
8053 else
8054 {
8055 *pszHandlerName++ = *pszBuf;
8056 }
8057 }
8058 break;
8059 case 6:
8060 // 6 = scan until first '}'
8061 if (*pszBuf == '}')
8062 nState = 7;
8063 break;
8064 case 7:
8065 // 7 = better be '}'
8066 if (*pszBuf != '}')
8067 {
8068 hcErr = AtlsHttpError(500, ISE_SUBERR_BAD_HANDLER_TAG);
8069 nState = 8;
8070 }
8071 if (*szHandlerName)
8072 nState = 8;
8073 else
8074 nState = 0;
8075 break;
8076 default:
8077 ATLASSERT(FALSE);
8078 return HTTP_INTERNAL_SERVER_ERROR;
8079 }
8080
8081 pszBuf++;
8082 }
8083 } while (dwRead != 0 && nState != 8);
8084
8085 *pszHandlerName = '\0';
8086
8087 return hcErr;
8088 }
8089
8090 // _AtlCrackHandler cracks a request path of the form dll_path/handler_name into its
8091 // constituent parts
8092 // szHandlerDllName - the full handler path of the form "dll_path/handler_name"
8093 // szDllPath - the DLL path (should be of length MAX_PATH)
8094 // szHandlerName - the handler name (should be of length ATL_MAX_HANDLER_NAME_LEN+1)
8095 //
8096 inline BOOL _AtlCrackHandler(
8097 __in_z LPCSTR szHandlerDllName,
8098 __out_ecount_part(*pdwszDllPathLen,*pdwszDllPathLen) LPSTR szDllPath,
8099 __inout LPDWORD pdwDllPathLen,
8100 __out_ecount_part(*pdwHandlerNameLen,*pdwHandlerNameLen) LPSTR szHandlerName,
8101 __inout LPDWORD pdwHandlerNameLen)
8102 {
8103 ATLENSURE( szHandlerDllName != NULL );
8104 ATLASSERT( szDllPath != NULL );
8105 ATLENSURE( pdwDllPathLen != NULL );
8106 ATLASSERT( szHandlerName != NULL );
8107 ATLASSERT( pdwHandlerNameLen != NULL );
8108
8109 BOOL bRet = TRUE;
8110
8111 // skip leading spaces
8112 while (*szHandlerDllName && isspace(static_cast<unsigned char>(*szHandlerDllName)))
8113 ++szHandlerDllName;
8114
8115 // get the handler name
8116 LPCSTR szSlash = strchr(szHandlerDllName, '/');
8117 LPCSTR szEnd = NULL;
8118 LPCSTR szSlashEnd = NULL;
8119
8120 // if it is of the form <dll_name>/<handler_name>
8121 if (szSlash)
8122 {
8123 szEnd = szSlash;
8124
8125 // skip trailing spaces on <dll_name>
8126 while (szEnd>szHandlerDllName && isspace(static_cast<unsigned char>(*(szEnd-1))))
8127 --szEnd;
8128
8129 szSlash++;
8130 // skip leading whitespace
8131 while (*szSlash && isspace(static_cast<unsigned char>(*szSlash)))
8132 szSlash++;
8133
8134 // right trim szSlash;
8135 szSlashEnd = szSlash;
8136 while (*szSlashEnd && !isspace(static_cast<unsigned char>(*szSlashEnd)))
8137 szSlashEnd++;
8138 }
8139 else // only the <dll_name>
8140 {
8141 szSlash = ATL_HANDLER_NAME_DEFAULT;
8142 szSlashEnd = szSlash+sizeof(ATL_HANDLER_NAME_DEFAULT)-1;
8143
8144 // do it this way to handle paths with spaces
8145 // (e.g. "some path\subdirectory one\subdirectory two\dll_name.dll")
8146 szEnd = szHandlerDllName+strlen(szHandlerDllName);
8147
8148 // skip trailing spaces
8149 while (szEnd>szHandlerDllName && isspace(static_cast<unsigned char>(*(szEnd-1))))
8150 --szEnd;
8151 }
8152
8153 // if the dll path is quoted, strip the quotes
8154 if (*szHandlerDllName == '\"' && *(szEnd-1) == '\"' && szEnd > szHandlerDllName+2)
8155 {
8156 szHandlerDllName++;
8157 szEnd--;
8158 }
8159
8160 if (*pdwDllPathLen > (DWORD)(szEnd-szHandlerDllName) && (szEnd-szHandlerDllName >= 0))
8161 {
8162 Checked::memcpy_s(szDllPath, *pdwDllPathLen, szHandlerDllName, szEnd-szHandlerDllName);
8163 szDllPath[szEnd-szHandlerDllName] = '\0';
8164 *pdwDllPathLen = (DWORD)(szEnd-szHandlerDllName);
8165 }
8166 else
8167 {
8168 *pdwDllPathLen = (DWORD)(szEnd-szHandlerDllName)+1;
8169 bRet = FALSE;
8170 }
8171
8172 if (*pdwHandlerNameLen > (DWORD)(szSlashEnd-szSlash) && (szSlashEnd-szSlash >= 0))
8173 {
8174 Checked::memcpy_s(szHandlerName, *pdwHandlerNameLen, szSlash, (szSlashEnd-szSlash));
8175 szHandlerName[szSlashEnd-szSlash] = '\0';
8176 *pdwHandlerNameLen = (DWORD)(szSlashEnd-szSlash);
8177 }
8178 else
8179 {
8180 *pdwHandlerNameLen = (DWORD)(szSlashEnd-szSlash)+1;
8181 bRet = FALSE;
8182 }
8183
8184 return bRet;
8185 }
8186
8187 inline __checkReturn __success(return==HTTP_SUCCESS) HTTP_CODE _AtlLoadRequestHandler(
8188 __in LPCSTR szDllPath,
8189 __in LPCSTR szHandlerName,
8190 __in IHttpServerContext *pServerContext,
8191 __out HINSTANCE *phInstance,
8192 __deref_out_opt IRequestHandler **ppHandler,
8193 __in IIsapiExtension *pExtension,
8194 __in IDllCache *pDllCache) throw(...)
8195 {
8196 ATLENSURE(phInstance!=NULL);
8197 ATLENSURE(ppHandler!=NULL);
8198 ATLENSURE(pDllCache!=NULL);
8199 *phInstance = NULL;
8200 *ppHandler = NULL;
8201
8202 ATLServerDllInfo DllInfo;
8203 DllInfo.pExtension = pExtension;
8204 DllInfo.pContext = pServerContext;
8205 if (!IsFullPathA(szDllPath))
8206 {
8207 CHAR szFileName[MAX_PATH];
8208 if (!GetScriptFullFileName(szDllPath, szFileName, pServerContext))
8209 {
8210 return HTTP_FAIL;
8211 }
8212
8213 *phInstance = pDllCache->Load(szFileName, (void *)&DllInfo);
8214 }
8215 else
8216 {
8217 *phInstance = pDllCache->Load(szDllPath, (void *)&DllInfo);
8218 }
8219 if (!*phInstance)
8220 {
8221 ATLTRACE( "LoadLibrary failed: '%s' with error: %d\r\n", szDllPath, GetLastError() );
8222 return AtlsHttpError(500, ISE_SUBERR_LOADLIB);
8223 }
8224
8225 CComPtr<IUnknown> spUnk;
8226
8227 if (!DllInfo.pfnGetHandler ||
8228 !DllInfo.pfnGetHandler(szHandlerName, pExtension, &spUnk) ||
8229 FAILED(spUnk->QueryInterface(ppHandler)))
8230 {
8231 pDllCache->Free(*phInstance);
8232 *phInstance = NULL;
8233 return AtlsHttpError(500, ISE_SUBERR_HANDLER_NOT_FOUND);
8234 }
8235
8236 return HTTP_SUCCESS;
8237 } // _AtlLoadRequestHandler
8238
8239
8240 class CTransferServerContext : public CComObjectRootEx<CComMultiThreadModel>,
8241 public CWrappedServerContext
8242 {
8243 public:
8244 char m_szFileName[MAX_PATH];
8245 char m_szQueryString[ATL_URL_MAX_PATH_LENGTH+1];
8246 CStringA m_strUrl;
8247 IWriteStream *m_pStream;
8248
8249 BEGIN_COM_MAP(CTransferServerContext)
8250 COM_INTERFACE_ENTRY(IHttpServerContext)
8251 END_COM_MAP()
8252
8253 CTransferServerContext() throw()
8254 {
8255 m_pStream = NULL;
8256 }
8257
8258 BOOL Initialize(__in CTransferServerContext *pOtherContext)
8259 {
8260 ATLENSURE(pOtherContext!=NULL);
8261 return Initialize(pOtherContext->m_strUrl, pOtherContext->m_pStream, pOtherContext->m_spParent);
8262 }
8263
8264 BOOL Initialize(__in LPCSTR szUrl, __in IWriteStream *pStream, __in IHttpServerContext *pParent) throw()
8265 {
8266 m_pStream = pStream;
8267 m_spParent = pParent;
8268
8269 _ATLTRY
8270 {
8271 m_strUrl = szUrl; // we store the URL in case we need to initialize another context from this context
8272 }
8273 _ATLCATCHALL()
8274 {
8275 return FALSE;
8276 }
8277
8278 long nUrlLen = m_strUrl.GetLength();
8279 m_szFileName[0] = '\0';
8280
8281 if (!IsFullPathA(szUrl))
8282 {
8283 DWORD dwLen = MAX_PATH;
8284 BOOL bRet = TRUE;
8285 _ATLTRY
8286 {
8287 bRet = m_spParent->GetServerVariable(
8288 "APPL_PHYSICAL_PATH",
8289 m_szFileName,
8290 &dwLen);
8291 }
8292 _ATLCATCHALL()
8293 {
8294 bRet = FALSE;
8295 }
8296
8297 if (!bRet)
8298 {
8299 return bRet;
8300 }
8301 }
8302
8303 // check for query params
8304 LPCSTR szMark = strchr(szUrl, '?');
8305 if (szMark)
8306 {
8307 size_t nPathLen = szMark - szUrl;
8308 size_t nLen;
8309
8310 if ((nPathLen >= 0) && (nPathLen < MAX_PATH))
8311 {
8312 nLen = strlen(m_szFileName) + nPathLen;
8313 if (nLen < MAX_PATH)
8314 {
8315 #pragma warning(push)
8316 #pragma warning(disable: 22008)
8317 /* Prefast false warning about unbound nPathLen in the below fragment -
8318 we already have necessary checks few lines above
8319 */
8320 if (m_szFileName[0])
8321 {
8322 Checked::strcat_s(m_szFileName, MAX_PATH-nLen, szUrl);
8323 }
8324 else
8325 {
8326 Checked::memcpy_s(m_szFileName, MAX_PATH, szUrl, nPathLen);
8327 m_szFileName[nPathLen] = '\0';
8328 }
8329 #pragma warning(pop)
8330 }
8331 else
8332 {
8333 return FALSE; // path would overwrite buffer
8334 }
8335 }
8336 else
8337 {
8338 return FALSE; // path would overwrite buffer
8339 }
8340
8341 // save query params
8342 nLen = strlen(szMark + 1);
8343 if (nLen < ATL_URL_MAX_PATH_LENGTH)
8344 {
8345 Checked::strcpy_s(m_szQueryString, ATL_URL_MAX_PATH_LENGTH, szMark+1);
8346 }
8347 else
8348 {
8349 return FALSE; // url would overwrite buffer
8350 }
8351 }
8352 else
8353 {
8354 // no query string
8355 size_t nLen = strlen(m_szFileName) + nUrlLen;
8356 if (nLen < MAX_PATH)
8357 {
8358 if (m_szFileName[0])
8359 {
8360 Checked::strcat_s(m_szFileName, MAX_PATH-nLen, szUrl);
8361 }
8362 else
8363 {
8364 Checked::strcpy_s(m_szFileName, MAX_PATH, szUrl);
8365 }
8366 }
8367 else
8368 {
8369 return FALSE; // path would be too long
8370 }
8371 m_szQueryString[0] = '\0';
8372 }
8373
8374 return TRUE;
8375 }
8376 BOOL WriteClient(__in_bcount(*pdwBytes) void *pvBuffer, __inout DWORD *pdwBytes)
8377 {
8378 ATLENSURE(m_pStream != NULL);
8379
8380 HRESULT hr = S_OK;
8381 _ATLTRY
8382 {
8383 m_pStream->WriteStream((LPCSTR) pvBuffer, *pdwBytes, pdwBytes);
8384 }
8385 _ATLCATCHALL()
8386 {
8387 return FALSE;
8388 }
8389
8390 return SUCCEEDED(hr);
8391 }
8392
8393 LPCSTR GetQueryString()
8394 {
8395 ATLASSUME(m_spParent);
8396 return m_szQueryString;
8397 }
8398
8399 LPCSTR GetScriptPathTranslated()
8400 {
8401 ATLASSUME(m_spParent);
8402 return m_szFileName;
8403 }
8404
8405 LPCSTR GetPathTranslated()
8406 {
8407 ATLASSUME(m_spParent);
8408 return m_szFileName;
8409 }
8410
8411 // Asynchronous writes will not work properly in a child handler
8412 BOOL AsyncWriteClient(void * /*pvBuffer*/, DWORD * /*pdwBytes*/)
8413 {
8414 ATLASSERT(FALSE);
8415 return FALSE;
8416 }
8417
8418 // These next few methods are to protect against attempting to parse form data twice
8419 // We tell the new handler that it was a GET request
8420 LPCSTR GetRequestMethod()
8421 {
8422 ATLASSUME(m_spParent);
8423 return "GET";
8424 }
8425
8426 // The handler should not query these methods -- they are only useful if attempting to
8427 // parse form data, which is not allowed in child handlers.
8428 BOOL ReadClient(void * /*pvBuffer*/, DWORD * /*pdwSize*/)
8429 {
8430 return FALSE;
8431 }
8432
8433 BOOL AsyncReadClient(void * /*pvBuffer*/, DWORD * /*pdwSize*/)
8434 {
8435 return FALSE;
8436 }
8437
8438 DWORD GetTotalBytes()
8439 {
8440 ATLASSERT(FALSE);
8441 return 0;
8442 }
8443
8444 DWORD GetAvailableBytes()
8445 {
8446 ATLASSERT(FALSE);
8447 return 0;
8448 }
8449
8450 BYTE *GetAvailableData()
8451 {
8452 ATLASSERT(FALSE);
8453 return NULL;
8454 }
8455
8456 LPCSTR GetContentType()
8457 {
8458 ATLASSERT(FALSE);
8459 return NULL;
8460 }
8461 };
8462
8463 class CAllocContextBase
8464 {
8465 public:
8466 virtual HTTP_CODE Alloc(IHttpServerContext **ppNewContext) = 0;
8467 };
8468
8469 ATL_NOINLINE inline HTTP_CODE _AtlRenderInclude(
8470 __in IHttpServerContext *pServerContextNew,
8471 __in LPCSTR szFileName,
8472 __in LPCSTR szQueryParams,
8473 __in WORD wCodePage,
8474 __in CAllocContextBase *pAllocContext,
8475 __in IServiceProvider *pServiceProvider,
8476 __in_opt IHttpRequestLookup *pLookup,
8477 __inout_opt CStencilState* pState = NULL)
8478 {
8479 ATLENSURE(pServiceProvider!=NULL);
8480 AtlServerRequest* pRequestInfo = NULL;
8481 HTTP_CODE hcErr = HTTP_SUCCESS;
8482
8483 // get a pointer to the ISAPI extension
8484 CComPtr<IIsapiExtension> spExtension;
8485 if (S_OK != pServiceProvider->QueryInterface(&spExtension) ||
8486 !spExtension)
8487 {
8488 return AtlsHttpError(500, ISE_SUBERR_UNEXPECTED);
8489 }
8490
8491 // get a pointer to the extension's dll cache
8492 CComPtr<IDllCache> spDllCache;
8493 if (S_OK != pServiceProvider->QueryService(__uuidof(IDllCache),
8494 __uuidof(IDllCache),
8495 (void**)&spDllCache) ||
8496 !spDllCache)
8497 {
8498 return AtlsHttpError(500, ISE_SUBERR_UNEXPECTED);
8499 }
8500
8501 #ifdef _DEBUG
8502 bool bAsyncAllowed = false;
8503 #endif
8504 if (pState && pState->pIncludeInfo)
8505 {
8506 pRequestInfo = pState->pIncludeInfo;
8507 pState->pIncludeInfo = NULL;
8508 #ifdef _DEBUG
8509 bAsyncAllowed = true;
8510 #endif
8511 }
8512 else
8513 {
8514 ATLASSERT(spDllCache);
8515 ATLASSERT(spExtension);
8516
8517 pRequestInfo = spExtension->CreateRequest();
8518 if (pRequestInfo == NULL)
8519 {
8520 return AtlsHttpError(500, ISE_SUBERR_OUTOFMEM);
8521 }
8522
8523 pRequestInfo->dwRequestState = ATLSRV_STATE_BEGIN;
8524 pRequestInfo->dwRequestType = ATLSRV_REQUEST_STENCIL;
8525 pRequestInfo->pDllCache = spDllCache;
8526 pRequestInfo->pExtension = spExtension;
8527 pRequestInfo->pServerContext = pServerContextNew;
8528 if (pState && pState->pParentInfo)
8529 {
8530 pRequestInfo->pUserData = pState->pParentInfo->pUserData;
8531 }
8532
8533 // Extract the file extension of the included file by searching
8534 // for the first '.' from the right.
8535 // Can't use _tcsrchr because we have to use the stencil's codepage
8536 LPCSTR szDot = NULL;
8537 LPCSTR szMark = szFileName;
8538 ATLENSURE(szMark!=NULL);
8539 while (*szMark)
8540 {
8541 if (*szMark == '.')
8542 szDot = szMark;
8543
8544 LPCSTR szNext = CharNextExA(wCodePage, szMark, 0);
8545 if (szNext == szMark)
8546 {
8547 // embedded null
8548 pRequestInfo->pServerContext = NULL;
8549 spExtension->FreeRequest(pRequestInfo);
8550 return HTTP_FAIL;
8551 }
8552 szMark = szNext;
8553 }
8554
8555 if (szDot && AsciiStricmp(szDot, c_AtlSRFExtension) == 0)
8556 {
8557 hcErr = spExtension->LoadDispatchFile(szFileName, pRequestInfo);
8558 if (hcErr)
8559 {
8560 pRequestInfo->pServerContext = NULL;
8561 spExtension->FreeRequest(pRequestInfo);
8562 return hcErr;
8563 }
8564 }
8565 else if (szDot && AsciiStricmp(szDot, c_AtlDLLExtension) == 0)
8566 {
8567 // Get the handler name if they used the asdf.dll?Handler=Default notation
8568 char szHandlerName[ATL_MAX_HANDLER_NAME_LEN+1] = { '\0' };
8569
8570 LPCSTR szStart = strstr(szQueryParams, "Handler=");
8571 if (szStart &&
8572 ((szStart == szQueryParams) ||
8573 ((szStart > szQueryParams) && (*(szStart-1) == '&'))))
8574 {
8575 szStart += 8; // Skip past "Handler" and the "="
8576 LPCSTR szEnd = strchr(szStart, '&');
8577 if (szEnd)
8578 {
8579 Checked::memcpy_s(szHandlerName, ATL_MAX_HANDLER_NAME_LEN+1, szStart, __min((szEnd-szStart), ATL_MAX_HANDLER_NAME_LEN));
8580 szHandlerName[__min((szEnd-szStart), ATL_MAX_HANDLER_NAME_LEN)] = '\0';
8581 }
8582 else
8583 {
8584 if (!SafeStringCopy(szHandlerName, szStart))
8585 {
8586 // handler name too long
8587 pRequestInfo->pServerContext = NULL;
8588 spExtension->FreeRequest(pRequestInfo);
8589 return HTTP_FAIL;
8590 }
8591 }
8592 }
8593 else
8594 {
8595 ATLASSERT( ATL_MAX_HANDLER_NAME_LEN >= sizeof(ATL_HANDLER_NAME_DEFAULT) );
8596 Checked::memcpy_s(szHandlerName, ATL_MAX_HANDLER_NAME_LEN+1, ATL_HANDLER_NAME_DEFAULT, sizeof(ATL_HANDLER_NAME_DEFAULT));
8597 }
8598
8599 pRequestInfo->dwRequestType = ATLSRV_REQUEST_DLL;
8600
8601 hcErr = spExtension->LoadRequestHandler(szFileName, szHandlerName, pRequestInfo->pServerContext,
8602 &pRequestInfo->hInstDll, &pRequestInfo->pHandler);
8603 if (hcErr)
8604 {
8605 pRequestInfo->pServerContext = NULL;
8606 spExtension->FreeRequest(pRequestInfo);
8607 return hcErr;
8608 }
8609 }
8610 else
8611 {
8612 // unknown extension
8613 pRequestInfo->pServerContext = NULL;
8614 spExtension->FreeRequest(pRequestInfo);
8615 return HTTP_ERROR(500, ISE_SUBERR_UNEXPECTED);
8616 }
8617
8618 DWORD dwStatus;
8619 hcErr = pRequestInfo->pHandler->GetFlags(&dwStatus);
8620
8621 if (hcErr)
8622 {
8623 pRequestInfo->pHandler->UninitializeHandler();
8624 pRequestInfo->pServerContext = NULL;
8625 spExtension->FreeRequest(pRequestInfo);
8626 return hcErr;
8627 }
8628
8629 if (dwStatus & (ATLSRV_INIT_USEASYNC | ATLSRV_INIT_USEASYNC_EX))
8630 {
8631 #ifdef _DEBUG
8632 bAsyncAllowed = true;
8633 #endif
8634 ATLENSURE(pAllocContext!=NULL);
8635 hcErr = pAllocContext->Alloc(&pRequestInfo->pServerContext);
8636 if (hcErr)
8637 {
8638 pRequestInfo->pHandler->UninitializeHandler();
8639 if (pRequestInfo->pServerContext == pServerContextNew)
8640 {
8641 pRequestInfo->pServerContext = NULL;
8642 }
8643 spExtension->FreeRequest(pRequestInfo);
8644 return hcErr;
8645 }
8646 }
8647
8648 hcErr = pRequestInfo->pHandler->InitializeChild(pRequestInfo, pServiceProvider, pLookup);
8649 if (hcErr)
8650 {
8651 pRequestInfo->pHandler->UninitializeHandler();
8652 if (pRequestInfo->pServerContext == pServerContextNew)
8653 {
8654 pRequestInfo->pServerContext = NULL;
8655 }
8656 spExtension->FreeRequest(pRequestInfo);
8657 return hcErr;
8658 }
8659
8660 pRequestInfo->pfnHandleRequest = &IRequestHandler::HandleRequest;
8661 }
8662
8663 if (pRequestInfo)
8664 {
8665 if (!hcErr)
8666 {
8667 ATLASSERT(pRequestInfo->pfnHandleRequest != NULL);
8668 hcErr = (pRequestInfo->pHandler->*pRequestInfo->pfnHandleRequest)(pRequestInfo, pServiceProvider);
8669
8670 #ifdef _DEBUG
8671 // must use ATLSRV_INIT_USEASYNC to use ASYNC returns
8672 if (IsAsyncStatus(hcErr))
8673 {
8674 ATLASSERT(bAsyncAllowed);
8675 }
8676 #endif
8677
8678 if (IsAsyncStatus(hcErr))
8679 {
8680 ATLASSERT(pState); // state is required for async
8681 if (IsAsyncContinueStatus(hcErr))
8682 {
8683 pState->pIncludeInfo = pRequestInfo;
8684 pRequestInfo->dwRequestState = ATLSRV_STATE_CONTINUE;
8685 }
8686 else if (IsAsyncDoneStatus(hcErr))
8687 {
8688 pRequestInfo->pHandler->UninitializeHandler();
8689 if (pRequestInfo->pServerContext == pServerContextNew)
8690 {
8691 pRequestInfo->pServerContext = NULL;
8692 }
8693 spExtension->FreeRequest(pRequestInfo);
8694 }
8695 }
8696 else
8697 {
8698 pRequestInfo->pHandler->UninitializeHandler();
8699 if (pRequestInfo->pServerContext == pServerContextNew)
8700 {
8701 pRequestInfo->pServerContext = NULL;
8702 }
8703 spExtension->FreeRequest(pRequestInfo);
8704 }
8705 }
8706 }
8707 else
8708 {
8709 hcErr = AtlsHttpError(500, ISE_SUBERR_UNEXPECTED);
8710 }
8711
8712 return hcErr;
8713 }
8714
8715 // CAllocTransferAsyncContext is an unsupported implementation detail, used
8716 // for implementing _AtlTransferRequest.
8717 class CAllocTransferAsyncContext :
8718 public CAllocContextBase
8719 {
8720 public:
8721 CAllocTransferAsyncContext(CTransferServerContext *pInitialContext):
8722 m_pInitialContext(pInitialContext)
8723 {
8724 }
8725
8726 HTTP_CODE Alloc(IHttpServerContext** ppNewContext)
8727 {
8728 if (!ppNewContext)
8729 return AtlsHttpError(500, ISE_SUBERR_UNEXPECTED);
8730 *ppNewContext = NULL;
8731
8732 CComObjectNoLock<CTransferServerContext>* pServerContext = NULL;
8733 ATLTRY(pServerContext = new CComObjectNoLock<CTransferServerContext>);
8734 if (pServerContext == NULL)
8735 return AtlsHttpError(500, ISE_SUBERR_OUTOFMEM);
8736 pServerContext->Initialize(m_pInitialContext);
8737 pServerContext->AddRef();
8738 *ppNewContext = pServerContext;
8739 return HTTP_SUCCESS;
8740 }
8741 private:
8742 CTransferServerContext *m_pInitialContext;
8743 };
8744
8745 inline HTTP_CODE _AtlTransferRequest(
8746 __in AtlServerRequest *pRequest,
8747 __in IServiceProvider *pServiceProvider,
8748 __in IWriteStream *pWriteStream,
8749 __in_opt IHttpRequestLookup *pLookup,
8750 __in LPCSTR szNewUrl,
8751 __in WORD nCodePage,
8752 __in bool bContinueAfterProcess,
8753 __inout_opt CStencilState *pState)
8754 {
8755 CComObjectStackEx<CTransferServerContext> serverContext;
8756 if (!serverContext.Initialize(szNewUrl, pWriteStream, pRequest->pServerContext))
8757 return AtlsHttpError(500, 0);
8758 CAllocTransferAsyncContext AsyncAllocObj(&serverContext);
8759 HTTP_CODE hcErr = _AtlRenderInclude(static_cast<IHttpServerContext*>(&serverContext),
8760 serverContext.m_szFileName,
8761 serverContext.m_szQueryString,
8762 nCodePage,
8763 &AsyncAllocObj,
8764 pServiceProvider,
8765 pLookup,
8766 pState);
8767 if (hcErr == HTTP_SUCCESS && bContinueAfterProcess)
8768 return hcErr;
8769 return HTTP_SUCCESS_NO_PROCESS;
8770 }
8771
8772 //
8773 // This function is now deprecated. ATL is not using it anymore.
8774 //
8775 inline ATL_DEPRECATED("Do not use this function.")
8776 void __cdecl AtlsSecErrHandlerFunc(int /* nCode */, void * /* pv */)
8777 {
8778 //
8779 // a buffer overflow has occurred in your code
8780 //
8781 ATLASSERT( FALSE );
8782
8783 //
8784 // terminate process (safest thing to do)
8785 //
8786 TerminateProcess( GetCurrentProcess(), 1 );
8787 }
8788
8789 //
8790 // Class CIsapiExtension
8791 // The main ISAPI Extension implementation.
8792 // Template parameters
8793 // ThreadPoolClass: Specifies the thread pool that will be used by the
8794 // extension to queue incoming requests. CThreadPool is the
8795 // default and is declared and implemented in ATLUTIL.H. This class
8796 // templatizes on a worker thread class. The worker thread class
8797 // represents an abstraction of a thread that will be used to
8798 // process requests as they are dequeued from the pool's work queue.
8799 // You would change this parameter if you wanted to use a completely
8800 // different thread pool, or, more commonly, if you wanted to use
8801 // a different worker thread class. Request processing code can
8802 // access a pointer to the worker thread class, which allows the
8803 // request handling code to easily access per-thread data.
8804 // CRequestStatClass: Specifies the class to be used to track request statistics
8805 // CNoRequestStats is the default which is a noop class.
8806 // You would change this parameter to provide a class that will
8807 // track request statistics for you. ATL provides CStdRequestStats
8808 // and CPerfRequestStatObject but these classes should be used
8809 // with caution because they require interlocked operations to
8810 // keep track of request statistics which can affect server performance.
8811 // HttpUserErrorTextProvider: This class provides error text messages
8812 // and headers, including resource IDs of error messages to the
8813 // isapi extension's error handling functions. You would change this
8814 // parameter if you wanted to provide your own error headers and/or
8815 // messages in response to error encountered during request processing.
8816 // CPageCacheStats, CStencilCacheStats: These two classes are used to keep
8817 // statistics about the page and stencil caches. You could change these
8818 // paramters if you wanted to track statistics for these caches. ATL
8819 // provides CPerfStatClass and CStdStatClass to store the stat data but
8820 // using these classes can affect server performance because they use
8821 // interlocked operations internally to store the data.
8822 template < class ThreadPoolClass=CThreadPool<CIsapiWorker>,
8823 class CRequestStatClass=CNoRequestStats,
8824 class HttpUserErrorTextProvider=CDefaultErrorProvider,
8825 class WorkerThreadTraits=DefaultThreadTraits,
8826 class CPageCacheStats=CNoStatClass,
8827 class CStencilCacheStats=CNoStatClass>
8828 class CIsapiExtension :
8829 public IServiceProvider, public IIsapiExtension, public IRequestStats
8830 {
8831 private:
8832
8833 #ifndef ATL_NO_CRITICAL_ISAPI_ERROR
8834
8835 DWORD m_dwCriticalIsapiError;
8836
8837 #endif // ATL_NO_CRITICAL_ISAPI_ERROR
8838
8839 protected:
8840 DWORD m_dwTlsIndex;
8841
8842 typedef CWorkerThread<WorkerThreadTraits> extWorkerType;
8843
8844 extWorkerType m_WorkerThread;
8845 ThreadPoolClass m_ThreadPool;
8846
8847 CDllCache<extWorkerType, CDllCachePeer> m_DllCache;
8848 CFileCache<extWorkerType, CPageCacheStats, CPageCachePeer> m_PageCache;
8849 CComObjectGlobal<CStencilCache<extWorkerType, CStencilCacheStats > > m_StencilCache;
8850 HttpUserErrorTextProvider m_UserErrorProvider;
8851 HANDLE m_hRequestHeap;
8852 CComCriticalSection m_critSec;
8853
8854 // Dynamic services stuff
8855 struct ServiceNode
8856 {
8857 HINSTANCE hInst;
8858 IUnknown *punk;
8859 GUID guidService;
8860 IID riid;
8861
8862 ServiceNode() throw()
8863 {
8864 }
8865
8866 ServiceNode(const ServiceNode& that) throw()
8867 :hInst(that.hInst), punk(that.punk), guidService(that.guidService), riid(that.riid)
8868 {
8869 }
8870 };
8871
8872 class CServiceEqualHelper
8873 {
8874 public:
8875 static bool IsEqual(__in const ServiceNode& t1, __in const ServiceNode& t2) throw()
8876 {
8877 return (InlineIsEqualGUID(t1.guidService, t2.guidService) != 0 &&
8878 InlineIsEqualGUID(t1.riid, t2.riid) != 0);
8879 }
8880 };
8881
8882 CSimpleArray<ServiceNode, CServiceEqualHelper> m_serviceMap;
8883
8884 public:
8885 CWin32Heap m_heap;
8886
8887 CRequestStatClass m_reqStats;
8888
8889 AtlServerRequest *CreateRequest()
8890 {
8891 // Allocate a fixed block size to avoid fragmentation
8892 AtlServerRequest *pRequest = (AtlServerRequest *) HeapAlloc(m_hRequestHeap,
8893 HEAP_ZERO_MEMORY, __max(sizeof(AtlServerRequest), sizeof(_CComObjectHeapNoLock<CServerContext>)));
8894 if (!pRequest)
8895 return NULL;
8896 pRequest->cbSize = sizeof(AtlServerRequest);
8897
8898 return pRequest;
8899 }
8900
8901 void FreeRequest(__inout AtlServerRequest *pRequest)
8902 {
8903 _ReleaseAtlServerRequest(pRequest);
8904 HeapFree(m_hRequestHeap, 0, pRequest);
8905 }
8906
8907 CIsapiExtension() throw()
8908 {
8909 m_hRequestHeap = NULL;
8910 #ifdef _DEBUG
8911 m_bDebug = FALSE;
8912 #endif
8913
8914 #ifndef ATL_NO_CRITICAL_ISAPI_ERROR
8915
8916 m_dwCriticalIsapiError = 0;
8917
8918 #endif // ATL_NO_CRITICAL_ISAPI_ERROR
8919 }
8920
8921 HTTP_CODE TransferRequest(
8922 __in AtlServerRequest *pRequest,
8923 __in IServiceProvider *pServiceProvider,
8924 __in IWriteStream *pWriteStream,
8925 __in_opt IHttpRequestLookup *pLookup,
8926 __in LPCSTR szNewUrl,
8927 __in WORD nCodePage,
8928 __in bool bContinueAfterProcess,
8929 __inout_opt CStencilState *pState)
8930 {
8931 HTTP_CODE hcErr;
8932 _ATLTRY
8933 {
8934 hcErr = _AtlTransferRequest(pRequest, pServiceProvider, pWriteStream,
8935 pLookup, szNewUrl, nCodePage, bContinueAfterProcess, pState);
8936 }
8937 _ATLCATCHALL()
8938 {
8939 hcErr = HTTP_FAIL;
8940 }
8941 return hcErr;
8942 }
8943
8944 #ifndef ATL_NO_CRITICAL_ISAPI_ERROR
8945
8946 DWORD ReturnCriticalError(__in EXTENSION_CONTROL_BLOCK *pECB)
8947 {
8948
8949 _ATLTRY
8950 {
8951 ATLENSURE(pECB);
8952 UINT uResId = 0;
8953 LPCSTR szHeader = NULL;
8954
8955 CStringA strStatus;
8956 CStringA strBody;
8957 CStringA strFormat;
8958 CStringA strError;
8959
8960 DWORD dwErr = GetCriticalIsapiError();
8961 if (!strError.LoadString(dwErr))
8962 {
8963 strError.Format("Unknown Error %d", dwErr);
8964 }
8965
8966 #ifdef ATL_CRITICAL_ISAPI_ERROR_LOGONLY
8967 // we've logged the real error - don't send detailed internal info to the user
8968 m_UserErrorProvider.GetErrorText(500,
8969 SUBERR_NONE,
8970 &szHeader,
8971 &uResId);
8972
8973 if (!uResId || !strBody.LoadString(uResId))
8974 {
8975 strBody = "<html><body>A server error has occurred.</body></html>";
8976 }
8977 #else
8978 m_UserErrorProvider.GetErrorText(500,
8979 ISE_SUBERR_ISAPISTARTUPFAILED,
8980 &szHeader,
8981 &uResId);
8982 if (!uResId || !strFormat.LoadString(uResId))
8983 {
8984 strFormat = "<html><body>A critical error has occurred initializing this ISAPI extension: %s</body></html>";
8985 }
8986 strBody.Format(strFormat, strError);
8987 #endif
8988 strStatus.Format("500 %s", szHeader);
8989
8990 HSE_SEND_HEADER_EX_INFO hex;
8991 hex.pszStatus = (LPCSTR)strStatus;
8992 hex.pszHeader = NULL;
8993 hex.cchStatus = (DWORD)strStatus.GetLength();
8994 hex.cchHeader = 0;
8995 hex.fKeepConn = FALSE;
8996
8997 pECB->ServerSupportFunction(pECB->ConnID,
8998 HSE_REQ_SEND_RESPONSE_HEADER_EX,
8999 &hex,
9000 NULL,
9001 NULL);
9002
9003 DWORD dwBodyLen = strBody.GetLength();
9004 pECB->WriteClient(pECB->ConnID,
9005 (void *) (LPCSTR) strBody,
9006 &dwBodyLen,
9007 NULL);
9008 }
9009 _ATLCATCHALL()
9010 {
9011 return HSE_STATUS_ERROR;
9012 }
9013 return HSE_STATUS_SUCCESS;
9014 }
9015
9016 #endif // ATL_NO_CRITICAL_ISAPI_ERROR
9017
9018 DWORD HttpExtensionProc(LPEXTENSION_CONTROL_BLOCK lpECB) throw()
9019 {
9020
9021 #ifndef ATL_NO_CRITICAL_ISAPI_ERROR
9022
9023 if (GetCriticalIsapiError() != 0)
9024 {
9025 return ReturnCriticalError(lpECB);
9026 }
9027
9028 #endif // ATL_NO_CRITICAL_ISAPI_ERROR
9029
9030 AtlServerRequest *pRequestInfo = NULL;
9031
9032 _ATLTRY
9033 {
9034 pRequestInfo = CreateRequest();
9035 if (pRequestInfo == NULL)
9036 return HSE_STATUS_ERROR;
9037
9038 CServerContext *pServerContext = NULL;
9039 ATLTRY(pServerContext = CreateServerContext(m_hRequestHeap));
9040 if (pServerContext == NULL)
9041 {
9042 FreeRequest(pRequestInfo);
9043 return HSE_STATUS_ERROR;
9044 }
9045
9046 pServerContext->Initialize(lpECB);
9047 pServerContext->AddRef();
9048
9049 pRequestInfo->pServerContext = pServerContext;
9050 pRequestInfo->dwRequestType = ATLSRV_REQUEST_UNKNOWN;
9051 pRequestInfo->dwRequestState = ATLSRV_STATE_BEGIN;
9052 pRequestInfo->pExtension = static_cast<IIsapiExtension *>(this);
9053 pRequestInfo->pDllCache = static_cast<IDllCache *>(&m_DllCache);
9054 #ifndef ATL_NO_MMSYS
9055 pRequestInfo->dwStartTicks = timeGetTime();
9056 #else
9057 pRequestInfo->dwStartTicks = GetTickCount();
9058 #endif
9059 pRequestInfo->pECB = lpECB;
9060
9061 m_reqStats.OnRequestReceived();
9062
9063 if (m_ThreadPool.QueueRequest(pRequestInfo))
9064 return HSE_STATUS_PENDING;
9065
9066 if (pRequestInfo != NULL)
9067 {
9068 FreeRequest(pRequestInfo);
9069 }
9070
9071 }
9072 _ATLCATCHALL()
9073 {
9074 }
9075
9076
9077
9078 return HSE_STATUS_ERROR;
9079 }
9080
9081
9082 BOOL QueueRequest(__in AtlServerRequest * pRequestInfo)
9083 {
9084 return m_ThreadPool.QueueRequest(pRequestInfo);
9085 }
9086
9087 CIsapiWorker *GetThreadWorker()
9088 {
9089 return (CIsapiWorker *) TlsGetValue(m_dwTlsIndex);
9090 }
9091
9092 BOOL SetThreadWorker(__in CIsapiWorker *pWorker)
9093 {
9094 return TlsSetValue(m_dwTlsIndex, (void*)pWorker);
9095 }
9096
9097 // Configuration functions -- override in base class if another value is desired
9098 virtual LPCSTR GetExtensionDesc() throw() { return "VC Server Classes"; }
9099 virtual int GetNumPoolThreads() throw() { return 0; }
9100 virtual int GetPoolStackSize() throw() { return 0; }
9101 virtual HANDLE GetIOCompletionHandle() throw() { return INVALID_HANDLE_VALUE; }
9102 virtual DWORD GetDllCacheTimeout() throw() { return ATL_DLL_CACHE_TIMEOUT; }
9103 virtual DWORD GetStencilCacheTimeout() throw() { return ATL_STENCIL_CACHE_TIMEOUT; }
9104 virtual LONGLONG GetStencilLifespan() throw() { return ATL_STENCIL_LIFESPAN; }
9105
9106 BOOL OnThreadAttach()
9107 {
9108 return SUCCEEDED(CoInitializeEx(NULL, COINIT_APARTMENTTHREADED));
9109 }
9110
9111 void OnThreadTerminate()
9112 {
9113 CoUninitialize();
9114 }
9115
9116 #ifndef ATL_NO_CRITICAL_ISAPI_ERROR
9117
9118 BOOL SetCriticalIsapiError(__in DWORD dwErr = 1) throw()
9119 {
9120 m_dwCriticalIsapiError = dwErr;
9121
9122 // send the error to the event log
9123 _ATLTRY
9124 {
9125 CStringA strBody;
9126 CStringA strFormat;
9127 CStringA strError;
9128
9129 // format an error message
9130 if (!strError.LoadString(dwErr))
9131 {
9132 strError.Format("Unknown Error %d", dwErr);
9133 }
9134
9135 if (!strFormat.LoadString(IDS_ATLSRV_CRITICAL_LOGMESSAGE))
9136 {
9137 strFormat = "A critical error has occurred initializing the ISAPI extension: %s";
9138 }
9139 strBody.Format(strFormat, strError);
9140
9141 // take the base module name as the app name
9142 CPath path;
9143 {
9144 CStrBuf buf(path, MAX_PATH);
9145 DWORD dwLen = ::GetModuleFileName(_AtlBaseModule.GetModuleInstance(), buf, MAX_PATH);
9146 if (dwLen == MAX_PATH)
9147 buf.SetLength(MAX_PATH);
9148 }
9149 path.StripPath();
9150
9151 // log the event
9152 HANDLE h = RegisterEventSource(NULL, path);
9153 if (h)
9154 {
9155 LPCSTR szBody = strBody;
9156 ReportEventA(h, EVENTLOG_ERROR_TYPE, 0, 0, NULL, 1, 0, &szBody, NULL);
9157 DeregisterEventSource(h);
9158 }
9159 }
9160 _ATLCATCHALL()
9161 {
9162 }
9163
9164 return TRUE;
9165 }
9166
9167 DWORD GetCriticalIsapiError() throw()
9168 {
9169 return m_dwCriticalIsapiError;
9170 }
9171
9172 #else
9173
9174 BOOL SetCriticalIsapiError(__in DWORD dwErr = 1) throw()
9175 {
9176 dwErr; // not used
9177 return FALSE;
9178 }
9179
9180 DWORD GetCriticalIsapiError() throw()
9181 {
9182 return 0;
9183 }
9184
9185 #endif // ATL_NO_CRITICAL_ISAPI_ERROR
9186
9187
9188 BOOL GetExtensionVersion(__out HSE_VERSION_INFO* pVer) throw()
9189 {
9190 ATLASSERT(pVer!=NULL);
9191 if(pVer==NULL)
9192 {
9193 return FALSE;
9194 }
9195 // allocate a Tls slot for storing per thread data
9196 m_dwTlsIndex = TlsAlloc();
9197
9198 // create a private heap for request data
9199 // this heap has to be thread safe to allow for
9200 // async processing of requests
9201 m_hRequestHeap = HeapCreate(0, 0, 0);
9202 if (!m_hRequestHeap)
9203 {
9204 ATLTRACE(atlTraceISAPI, 0, _T("Failed creating request heap. Using process heap\n"));
9205 m_hRequestHeap = GetProcessHeap();
9206 if (!m_hRequestHeap)
9207 {
9208 return SetCriticalIsapiError(IDS_ATLSRV_CRITICAL_HEAPCREATEFAILED);
9209 }
9210
9211 }
9212
9213 // create a private heap (synchronized) for
9214 // allocations. This reduces fragmentation overhead
9215 // as opposed to the process heap
9216 HANDLE hHeap = HeapCreate(0, 0, 0);
9217 if (!hHeap)
9218 {
9219 ATLTRACE(atlTraceISAPI, 0, _T("Failed creating extension heap. Using process heap\n"));
9220 hHeap = GetProcessHeap();
9221 m_heap.Attach(hHeap, false);
9222 }
9223 else
9224 {
9225 m_heap.Attach(hHeap, true);
9226 }
9227 hHeap = NULL;
9228
9229 if (S_OK != m_reqStats.Initialize())
9230 {
9231 ATLTRACE(atlTraceISAPI,
9232 0,
9233 _T("Initialization failed for request statistics perfmon support.\n")
9234 _T("Check request statistics perfmon dll registration\n") );
9235 }
9236
9237 if (S_OK != m_WorkerThread.Initialize())
9238 {
9239 return SetCriticalIsapiError(IDS_ATLSRV_CRITICAL_WORKERINITFAILED);
9240 }
9241
9242 if (m_critSec.Init() != S_OK)
9243 {
9244 HRESULT hrIgnore=m_WorkerThread.Shutdown();
9245 (hrIgnore);
9246 return SetCriticalIsapiError(IDS_ATLSRV_CRITICAL_CRITSECINITFAILED);
9247 }
9248
9249 if (S_OK != m_ThreadPool.Initialize(static_cast<IIsapiExtension*>(this), GetNumPoolThreads(), GetPoolStackSize(), GetIOCompletionHandle()))
9250 {
9251 HRESULT hrIgnore=m_WorkerThread.Shutdown();
9252 (hrIgnore);
9253 m_critSec.Term();
9254 return SetCriticalIsapiError(IDS_ATLSRV_CRITICAL_THREADPOOLFAILED);
9255 }
9256
9257 if (FAILED(m_DllCache.Initialize(&m_WorkerThread, GetDllCacheTimeout())))
9258 {
9259 HRESULT hrIgnore=m_WorkerThread.Shutdown();
9260 (hrIgnore);
9261 m_ThreadPool.Shutdown();
9262 m_critSec.Term();
9263 return SetCriticalIsapiError(IDS_ATLSRV_CRITICAL_DLLCACHEFAILED);
9264 }
9265
9266 if (FAILED(m_PageCache.Initialize(&m_WorkerThread)))
9267 {
9268 HRESULT hrIgnore=m_WorkerThread.Shutdown();
9269 (hrIgnore);
9270 m_ThreadPool.Shutdown();
9271 m_DllCache.Uninitialize();
9272 m_critSec.Term();
9273 return SetCriticalIsapiError(IDS_ATLSRV_CRITICAL_PAGECACHEFAILED);
9274 }
9275
9276 if (S_OK != m_StencilCache.Initialize(static_cast<IServiceProvider*>(this),
9277 &m_WorkerThread,
9278 GetStencilCacheTimeout(),
9279 GetStencilLifespan()))
9280 {
9281 HRESULT hrIgnore=m_WorkerThread.Shutdown();
9282 (hrIgnore);
9283 m_ThreadPool.Shutdown();
9284 m_DllCache.Uninitialize();
9285 m_PageCache.Uninitialize();
9286 m_critSec.Term();
9287 return SetCriticalIsapiError(IDS_ATLSRV_CRITICAL_STENCILCACHEFAILED);
9288 }
9289
9290 pVer->dwExtensionVersion = HSE_VERSION;
9291 Checked::strncpy_s(pVer->lpszExtensionDesc, HSE_MAX_EXT_DLL_NAME_LEN, GetExtensionDesc(), _TRUNCATE);
9292 pVer->lpszExtensionDesc[HSE_MAX_EXT_DLL_NAME_LEN - 1] = '\0';
9293
9294 return TRUE;
9295 }
9296
9297 BOOL TerminateExtension(DWORD /*dwFlags*/) throw()
9298 {
9299 m_critSec.Lock();
9300 for (int i=0; i < m_serviceMap.GetSize(); i++)
9301 {
9302 ATLASSUME(m_serviceMap[i].punk != NULL);
9303 if(m_serviceMap[i].punk != NULL)
9304 {
9305 m_serviceMap[i].punk->Release();
9306 }
9307 m_DllCache.ReleaseModule(m_serviceMap[i].hInst);
9308 }
9309 m_critSec.Unlock();
9310
9311 m_ThreadPool.Shutdown();
9312 m_StencilCache.Uninitialize();
9313 m_DllCache.Uninitialize();
9314 m_PageCache.Uninitialize();
9315 HRESULT hrShutdown=m_WorkerThread.Shutdown();
9316 m_reqStats.Uninitialize();
9317 m_critSec.Term();
9318
9319 // free the request heap
9320 if (m_hRequestHeap != GetProcessHeap())
9321 HeapDestroy(m_hRequestHeap);
9322
9323 // free the Tls slot that we allocated
9324 TlsFree(m_dwTlsIndex);
9325
9326 return SUCCEEDED(hrShutdown);
9327 }
9328
9329 static void WINAPI AsyncCallback(LPEXTENSION_CONTROL_BLOCK /*lpECB*/,
9330 __in PVOID pContext,
9331 __in DWORD cbIO,
9332 __in DWORD dwError) throw(...)
9333 {
9334 AtlServerRequest *pRequestInfo = reinterpret_cast<AtlServerRequest*>(pContext);
9335 ATLENSURE(pRequestInfo);
9336 if (pRequestInfo->m_hMutex)
9337 {
9338 // synchronize in case the previous async_noflush call isn't finished
9339 // setting up state for the next call.
9340 DWORD dwStatus = WaitForSingleObject(pRequestInfo->m_hMutex, ATLS_ASYNC_MUTEX_TIMEOUT);
9341 if (dwStatus != WAIT_OBJECT_0 && dwStatus != WAIT_ABANDONED)
9342 {
9343 _ATLTRY
9344 {
9345 pRequestInfo->pExtension->RequestComplete(pRequestInfo, 500, ISE_SUBERR_UNEXPECTED);
9346 }
9347 _ATLCATCHALL()
9348 {
9349 ATLTRACE(_T("Warning: Uncaught user exception thrown and caught in AsyncCallback.\n"));
9350 _ATLRETHROW;
9351 }
9352 return;
9353 }
9354 }
9355
9356 if (pRequestInfo->pfnAsyncComplete != NULL)
9357 ATLTRY((*pRequestInfo->pfnAsyncComplete)(pRequestInfo, cbIO, dwError));
9358
9359 if (pRequestInfo->dwRequestState == ATLSRV_STATE_DONE)
9360 {
9361 pRequestInfo->pExtension->RequestComplete(pRequestInfo, HTTP_ERROR_CODE(HTTP_SUCCESS), 0);
9362 }
9363 else if (pRequestInfo->dwRequestState == ATLSRV_STATE_CACHE_DONE)
9364 {
9365 CloseHandle(pRequestInfo->hFile);
9366 pRequestInfo->pFileCache->ReleaseFile(pRequestInfo->hEntry);
9367 pRequestInfo->pExtension->RequestComplete(pRequestInfo, HTTP_ERROR_CODE(HTTP_SUCCESS), 0);
9368 }
9369 else
9370 {
9371 HANDLE hMutex = pRequestInfo->m_hMutex;
9372 pRequestInfo->pExtension->QueueRequest(pRequestInfo);
9373 if (hMutex)
9374 ReleaseMutex(hMutex);
9375 }
9376 }
9377
9378 void HandleError(__in IHttpServerContext *pServerContext, __in DWORD dwStatus, __in DWORD dwSubStatus) throw()
9379 {
9380 RenderError(pServerContext, dwStatus, dwSubStatus, &m_UserErrorProvider);
9381 }
9382
9383 void RequestComplete(__inout AtlServerRequest *pRequestInfo, __in DWORD dwStatus, __in DWORD dwSubStatus)
9384 {
9385 ATLASSERT(pRequestInfo);
9386
9387 if (pRequestInfo->pHandler != NULL)
9388 pRequestInfo->pHandler->UninitializeHandler();
9389
9390 DWORD dwReqStatus = dwStatus;
9391 if (!dwReqStatus)
9392 dwReqStatus = 200;
9393
9394 if (dwStatus >= 400)
9395 {
9396 if (dwSubStatus != SUBERR_NO_PROCESS)
9397 HandleError(pRequestInfo->pServerContext, dwStatus, dwSubStatus);
9398 m_reqStats.RequestHandled(pRequestInfo, FALSE);
9399 }
9400 else
9401 m_reqStats.RequestHandled(pRequestInfo, TRUE);
9402
9403 CComPtr<IHttpServerContext> spServerContext = pRequestInfo->pServerContext;
9404
9405 FreeRequest(pRequestInfo);
9406
9407 spServerContext->DoneWithSession(dwReqStatus);
9408 }
9409
9410 HTTP_CODE GetHandlerName(__in LPCSTR szFileName, __out_ecount(MAX_PATH+ATL_MAX_HANDLER_NAME+2) LPSTR szHandlerName) throw()
9411 {
9412 return _AtlGetHandlerName(szFileName, szHandlerName);
9413 }
9414
9415 HTTP_CODE LoadDispatchFile(__in LPCSTR szFileName, __out AtlServerRequest *pRequestInfo)
9416 {
9417 ATLASSERT(szFileName);
9418 ATLASSERT(pRequestInfo);
9419
9420 CStencil *pStencil = NULL;
9421 HCACHEITEM hStencil = NULL;
9422
9423 // Must have space for the path to the handler + the maximum size
9424 // of the handler, plus the '/' plus the '\0'
9425 CHAR szDllPath[MAX_PATH];
9426 CHAR szHandlerName[ATL_MAX_HANDLER_NAME_LEN+1];
9427
9428 pRequestInfo->pHandler = NULL;
9429 pRequestInfo->hInstDll = NULL;
9430
9431 m_StencilCache.LookupStencil(szFileName, &hStencil);
9432
9433 // Stencil was found, check to see if it needs to be refreshed
9434 if (hStencil)
9435 {
9436 m_StencilCache.GetStencil(hStencil, (void **) &pStencil);
9437 pStencil->GetHandlerName(szDllPath, MAX_PATH, szHandlerName, ATL_MAX_HANDLER_NAME_LEN + 1);
9438
9439 CFileTime cftCurr;
9440 CFileTime cftLastChecked;
9441 cftCurr = CFileTime::GetCurrentTime();
9442
9443 pStencil->GetLastChecked(&cftLastChecked);
9444
9445 CFileTimeSpan span(ATL_STENCIL_CHECK_TIMEOUT * CFileTime::Millisecond);
9446
9447 if (cftLastChecked + span < cftCurr)
9448 {
9449 CComPtr<IStencilCacheControl> spCacheCtrl;
9450 m_StencilCache.QueryInterface(__uuidof(IStencilCacheControl), reinterpret_cast<void**>(&spCacheCtrl));
9451 if (spCacheCtrl)
9452 {
9453 CFileTime cftLastModified;
9454 pStencil->GetLastModified(&cftLastModified);
9455
9456 // Resource based stencils have a last modified filetime of 0
9457 if (cftLastModified != 0)
9458 {
9459 // for file base stencils, we check whether the file
9460 // has been modified since being put in the cache
9461 WIN32_FILE_ATTRIBUTE_DATA fad;
9462 pStencil->SetLastChecked(&cftCurr);
9463 BOOL bRet = GetFileAttributesExA(szFileName, GetFileExInfoStandard, &fad);
9464
9465 if ((bRet && cftLastModified < fad.ftLastWriteTime) ||
9466 !bRet)
9467 {
9468 // the file has changed or an error has occurred trying to read the file,
9469 // so remove it from the cache and force a reload
9470 spCacheCtrl->RemoveStencil(hStencil);
9471 pStencil = NULL;
9472 hStencil = NULL;
9473 }
9474 }
9475 }
9476 }
9477 }
9478
9479
9480 if (!hStencil)
9481 {
9482 CHAR szHandlerDllName[MAX_PATH+ATL_MAX_HANDLER_NAME_LEN+1];
9483 *szHandlerDllName = '\0';
9484
9485 // not in the cache, so open the file
9486 HTTP_CODE hcErr = GetHandlerName(szFileName, szHandlerDllName);
9487 if (hcErr)
9488 return hcErr;
9489 DWORD dwDllPathLen = MAX_PATH;
9490 DWORD dwHandlerNameLen = ATL_MAX_HANDLER_NAME_LEN+1;
9491 if (!_AtlCrackHandler(szHandlerDllName, szDllPath, &dwDllPathLen, szHandlerName, &dwHandlerNameLen))
9492 {
9493 return AtlsHttpError(500, ISE_SUBERR_HANDLER_NOT_FOUND);
9494 }
9495 ATLASSERT(*szHandlerName);
9496 ATLASSERT(*szDllPath);
9497 if (!*szHandlerName)
9498 {
9499 return AtlsHttpError(500, ISE_SUBERR_HANDLER_NOT_FOUND);
9500 }
9501 }
9502 else
9503 {
9504 m_StencilCache.ReleaseStencil(hStencil);
9505 }
9506
9507
9508 return LoadRequestHandler(szDllPath, szHandlerName, pRequestInfo->pServerContext,
9509 &pRequestInfo->hInstDll, &pRequestInfo->pHandler);
9510 }
9511
9512 HTTP_CODE LoadDllHandler(__in LPCSTR szFileName, __in AtlServerRequest *pRequestInfo)
9513 {
9514 ATLASSERT(szFileName);
9515 ATLENSURE(pRequestInfo);
9516
9517 _ATLTRY
9518 {
9519 HTTP_CODE hcErr = HTTP_SUCCESS;
9520 CHAR szHandler[ATL_MAX_HANDLER_NAME_LEN+1] = { 'D', 'e', 'f', 'a', 'u', 'l', 't', '\0' };
9521 LPCSTR szQueryString = pRequestInfo->pServerContext->GetQueryString();
9522 if (szQueryString != NULL)
9523 {
9524 LPCSTR szHdlr = strstr(szQueryString, "Handler=");
9525 if (szHdlr != NULL)
9526 {
9527 if ((szHdlr == szQueryString) ||
9528 ((szHdlr > szQueryString) && (*(szHdlr-1) == '&')))
9529 {
9530 int nCnt = 0;
9531 LPSTR pszHandler = szHandler;
9532 szHdlr += sizeof("Handler=")-1;
9533 while (*szHdlr && *szHdlr != '&')
9534 {
9535 if (nCnt < ATL_MAX_HANDLER_NAME_LEN)
9536 {
9537 *pszHandler++ = *szHdlr++;
9538 nCnt++;
9539 }
9540 else
9541 {
9542 hcErr = AtlsHttpError(500, ISE_SUBERR_HANDLER_NOT_FOUND);
9543 break;
9544 }
9545 }
9546 if (hcErr == HTTP_SUCCESS)
9547 {
9548 *pszHandler = '\0';
9549 }
9550 }
9551 }
9552 }
9553
9554 if (hcErr == HTTP_SUCCESS)
9555 {
9556 CHAR szFile[MAX_PATH+ATL_MAX_HANDLER_NAME_LEN+1];
9557 if (SafeStringCopy(szFile, szFileName))
9558 {
9559 hcErr = LoadRequestHandler(szFile, szHandler, pRequestInfo->pServerContext, &pRequestInfo->hInstDll, &pRequestInfo->pHandler);
9560 }
9561 else
9562 {
9563 hcErr = AtlsHttpError(500, ISE_SUBERR_UNEXPECTED);
9564 }
9565 }
9566
9567 return hcErr;
9568 }
9569 _ATLCATCHALL()
9570 {
9571 return AtlsHttpError(500, ISE_SUBERR_UNEXPECTED);
9572 }
9573 }
9574
9575 #pragma warning(push)
9576 #pragma warning(disable: 6014)
9577 virtual __success(return) __checkReturn BOOL GetCacheServerContext(__in AtlServerRequest *pRequestInfo, __in IFileCache *pCache, __deref_out_opt IHttpServerContext **pCacheCtx)
9578 {
9579 ATLENSURE(pCacheCtx);
9580 *pCacheCtx = NULL;
9581
9582 CComObjectNoLock<CCacheServerContext> *pCacheServerContext = NULL;
9583 ATLTRY(pCacheServerContext = new CComObjectNoLock<CCacheServerContext>);
9584 if (!pCacheServerContext)
9585 return FALSE;
9586
9587 if (!pCacheServerContext->Initialize(pRequestInfo->pServerContext, pCache))
9588 {
9589 delete pCacheServerContext;
9590 return FALSE;
9591 }
9592
9593 pCacheServerContext->QueryInterface(__uuidof(IHttpServerContext), (void **) pCacheCtx);
9594
9595 if (*pCacheCtx)
9596 return TRUE;
9597
9598 delete pCacheServerContext;
9599 return FALSE;
9600 }
9601 #pragma warning(pop)
9602
9603 virtual BOOL TransmitFromCache(__in AtlServerRequest* pRequestInfo, __out BOOL *pbAllowCaching)
9604 {
9605 ATLENSURE(pRequestInfo);
9606 ATLENSURE(pbAllowCaching);
9607
9608 *pbAllowCaching = TRUE;
9609
9610 _ATLTRY
9611 {
9612 if (strcmp(pRequestInfo->pServerContext->GetRequestMethod(), "GET"))
9613 return FALSE;
9614
9615 char szUrl[ATL_URL_MAX_URL_LENGTH + 1];
9616 LPCSTR szPathInfo = pRequestInfo->pServerContext->GetPathInfo();
9617 LPCSTR szQueryString = pRequestInfo->pServerContext->GetQueryString();
9618
9619 int nSize = 0;
9620 LPSTR szTo = szUrl;
9621 ATLENSURE(szPathInfo!=NULL);
9622 while (*szPathInfo && nSize < ATL_URL_MAX_URL_LENGTH)
9623 {
9624 *szTo++ = *szPathInfo++;
9625 nSize++;
9626 }
9627 if (nSize >= ATL_URL_MAX_URL_LENGTH)
9628 {
9629 return FALSE;
9630 }
9631 *szTo++ = '?';
9632 nSize++;
9633 ATLENSURE(szQueryString!=NULL);
9634 while (*szQueryString && nSize < ATL_URL_MAX_URL_LENGTH)
9635 {
9636 *szTo++ = *szQueryString++;
9637 nSize++;
9638 }
9639 if (nSize >= ATL_URL_MAX_URL_LENGTH)
9640 {
9641 return FALSE;
9642 }
9643 *szTo = '\0';
9644
9645 HCACHEITEM hEntry;
9646
9647 if (S_OK == m_PageCache.LookupFile(szUrl, &hEntry))
9648 {
9649 LPSTR szFileName;
9650 CPageCachePeer::PeerInfo *pInfo;
9651 m_PageCache.GetFile(hEntry, &szFileName, (void **)&pInfo);
9652 ATLENSURE(pInfo);
9653 CAtlFile file;
9654 HRESULT hr = E_FAIL;
9655
9656 CA2CTEX<MAX_PATH> strFile(szFileName);
9657 hr = file.Create(strFile,
9658 GENERIC_READ,
9659 FILE_SHARE_READ,
9660 OPEN_EXISTING,
9661 FILE_FLAG_SEQUENTIAL_SCAN | FILE_FLAG_OVERLAPPED);
9662
9663 if (FAILED(hr) || GetFileType(file) != FILE_TYPE_DISK)
9664 {
9665 m_PageCache.ReleaseFile(hEntry);
9666 *pbAllowCaching = FALSE;
9667 return FALSE;
9668 }
9669
9670 pRequestInfo->pServerContext->SendResponseHeader(
9671 pInfo->strHeader, pInfo->strStatus, FALSE);
9672 HANDLE hFile = file.Detach();
9673 BOOL bRet = FALSE;
9674
9675 pRequestInfo->dwRequestState = ATLSRV_STATE_CACHE_DONE;
9676 pRequestInfo->hFile = hFile;
9677 pRequestInfo->hEntry = hEntry;
9678 pRequestInfo->pFileCache = &m_PageCache;
9679
9680 bRet = pRequestInfo->pServerContext->TransmitFile(
9681 hFile, // The file to transmit
9682 AsyncCallback, pRequestInfo, // The async callback and context
9683 pInfo->strStatus, // HTTP status code
9684 0, // Send entire file
9685 0, // Start at the beginning of the file
9686 NULL, 0, // Head and length
9687 NULL, 0, // Tail and length
9688 HSE_IO_ASYNC | HSE_IO_DISCONNECT_AFTER_SEND | HSE_IO_NODELAY // Send asynchronously
9689 );
9690
9691 if (!bRet)
9692 {
9693 m_PageCache.ReleaseFile(hEntry);
9694 CloseHandle(hFile);
9695 *pbAllowCaching = FALSE;
9696 return FALSE;
9697 }
9698 return TRUE;
9699 }
9700 }
9701 _ATLCATCHALL()
9702 {
9703 }
9704
9705 return FALSE;
9706 }
9707
9708 #if defined(_DEBUG) || defined(ATLS_ENABLE_DEBUGGING)
9709
9710 BOOL m_bDebug;
9711 // F5 debugging support for VS7
9712 BOOL ProcessDebug(__inout AtlServerRequest *pRequestInfo)
9713 {
9714 ATLENSURE(pRequestInfo);
9715 static GUID clsidDebugger[] = {
9716 {0x70F65411, 0xFE8C, 0x4248, {0xBC,0xFF,0x70,0x1C,0x8B,0x2F,0x45,0x29}}, // debugger clsid
9717 {0x62A78AC2, 0x7D9A, 0x4377, {0xB9,0x7E,0x69,0x65,0x91,0x9F,0xDD,0x02}}, // reserved
9718 {0xCC23651F, 0x4574, 0x438F, {0xB4,0xAA,0xBC,0xB2,0x8B,0x6B,0x3E,0xCF}}, // reserved
9719 {0xDBFDB1D0, 0x04A4, 0x4315, {0xB1,0x5C,0xF8,0x74,0xF6,0xB6,0xE9,0x0B}}, // reserved
9720 {0xA4FCB474, 0x2687, 0x4924, {0xB0,0xAD,0x7C,0xAF,0x33,0x1D,0xB8,0x26}}, // reserved
9721 {0xBEB261F6, 0xD5F0, 0x43BA, {0xBA,0xF4,0x8B,0x79,0x78,0x5F,0xFF,0xAF}}, // reserved
9722 {0x8E2F5E28, 0xD4E2, 0x44C0, {0xAA,0x02,0xF8,0xC5,0xBE,0xB7,0x0C,0xAC}}, // reserved
9723 {0x08100915, 0x0F41, 0x4CCF, {0x95,0x64,0xEB,0xAA,0x5D,0x49,0x44,0x6C}} // reserved
9724 };
9725 _ATLTRY
9726 {
9727 if (!_stricmp(pRequestInfo->pServerContext->GetRequestMethod(), "debug"))
9728 {
9729 // Debugger must be able to validate the client we are impersonating
9730 // on an NT Domain so the client needs to use either NTLM or Negotiate.
9731 DWORD dwAuthTypeSize = 64;
9732 char szAuthType[64] = { 0 };
9733
9734 if ( !pRequestInfo->pServerContext->GetServerVariable("AUTH_TYPE", szAuthType, &dwAuthTypeSize) )
9735 {
9736 // error retrieving authentication type
9737 RequestComplete(pRequestInfo, 501, 0);
9738 return FALSE;
9739 }
9740
9741 // if it's empty or not NTLM or negotiate we fail.
9742 if ( !( *szAuthType != '\0 ' &&
9743 ( !_stricmp(szAuthType, "NTLM") ||
9744 !_stricmp(szAuthType, "Negotiate"))
9745 ) )
9746 {
9747 // wrong authorization type or not authorized
9748 RequestComplete(pRequestInfo, 401, 0);
9749 return FALSE;
9750 }
9751
9752 DWORD dwHeadersLen = 0;
9753 CStringA strHeaders;
9754 pRequestInfo->pServerContext->GetServerVariable("ALL_HTTP", NULL, &dwHeadersLen);
9755 BOOL bRet = pRequestInfo->pServerContext->GetServerVariable("ALL_HTTP", strHeaders.GetBuffer(dwHeadersLen), &dwHeadersLen);
9756 if (!bRet)
9757 {
9758 RequestComplete(pRequestInfo, 501, 0);
9759 return FALSE;
9760 }
9761 strHeaders.ReleaseBuffer(dwHeadersLen - 1);
9762 LPCSTR szCur = strHeaders;
9763
9764 while(*szCur)
9765 {
9766 if (!strncmp(szCur, "HTTP_COMMAND:", 13))
9767 {
9768 szCur += 13;
9769 break;
9770 }
9771
9772 szCur = strchr(szCur, '\n');
9773 if (!szCur)
9774 {
9775 RequestComplete(pRequestInfo, 501, 0);
9776 return FALSE;
9777 }
9778
9779 szCur++;
9780 }
9781
9782
9783 if (!_strnicmp(szCur, "start-debug", sizeof("start-debug")-sizeof('\0')))
9784 {
9785 CCritSecLock Lock(m_critSec.m_sec);
9786 if (m_bDebug)
9787 {
9788 HandleError(pRequestInfo->pServerContext, 204, DBG_SUBERR_ALREADY_DEBUGGING);
9789 RequestComplete(pRequestInfo, 204, DBG_SUBERR_ALREADY_DEBUGGING); // Already being debugged by another process
9790 return FALSE;
9791 }
9792 CHttpRequest HttpRequest;
9793 HttpRequest.Initialize(pRequestInfo->pServerContext);
9794 HttpRequest.InitFromPost();
9795 LPCSTR szString;
9796 szString = HttpRequest.FormVars.Lookup("DebugSessionID");
9797 if (!szString || !*szString)
9798 {
9799 HandleError(pRequestInfo->pServerContext, 204, DBG_SUBERR_INVALID_SESSION);
9800 RequestComplete(pRequestInfo, 204, DBG_SUBERR_INVALID_SESSION);
9801 return FALSE;
9802 }
9803 CA2W szSessionID(szString);
9804 if (!szSessionID)
9805 {
9806 HandleError(pRequestInfo->pServerContext, 500, ISE_SUBERR_OUTOFMEM);
9807 RequestComplete(pRequestInfo, 500, ISE_SUBERR_OUTOFMEM);
9808 return FALSE;
9809 }
9810 DWORD dwPid = GetCurrentProcessId();
9811 LPWSTR szPoint = szSessionID;
9812 while (szPoint && *szPoint && wcsncmp(szPoint, L"autoattachclsid=", 16))
9813 {
9814 szPoint = wcschr(szPoint, ';');
9815 if (szPoint)
9816 szPoint++;
9817 }
9818
9819 if (!szPoint || !*szPoint)
9820 {
9821 HandleError(pRequestInfo->pServerContext, 204, DBG_SUBERR_BAD_ID);
9822 RequestComplete(pRequestInfo, 204, DBG_SUBERR_BAD_ID);
9823 return FALSE;
9824 }
9825
9826 szPoint += (sizeof("autoattachclsid=") - 1);
9827 WCHAR szClsid[39];
9828 szClsid[38] = '\0';
9829 Checked::wcsncpy_s(szClsid, _countof(szClsid), szPoint, _TRUNCATE);
9830 if (szClsid[38] != '\0')
9831 {
9832 HandleError(pRequestInfo->pServerContext, 204, DBG_SUBERR_BAD_ID);
9833 RequestComplete(pRequestInfo, 204, DBG_SUBERR_BAD_ID);
9834 return FALSE;
9835 }
9836 szClsid[38] = '\0';
9837
9838 CLSID clsidDebugAutoAttach = CLSID_NULL;
9839 HRESULT hr = CLSIDFromString(szClsid, &clsidDebugAutoAttach);
9840
9841 if (hr != S_OK)
9842 {
9843 HandleError(pRequestInfo->pServerContext, 204, DBG_SUBERR_BAD_ID);
9844 RequestComplete(pRequestInfo, 204, DBG_SUBERR_BAD_ID);
9845 return FALSE;
9846 }
9847
9848 size_t i=0,
9849 nArrSize = sizeof(clsidDebugger)/sizeof(GUID);
9850 for (i=0; i<nArrSize; i++)
9851 {
9852 if( InlineIsEqualGUID(clsidDebugAutoAttach, clsidDebugger[i]) )
9853 break;
9854 }
9855 if (i >= nArrSize)
9856 {
9857 HandleError(pRequestInfo->pServerContext, 204, DBG_SUBERR_BAD_ID);
9858 RequestComplete(pRequestInfo, 204, DBG_SUBERR_BAD_ID);
9859 return FALSE;
9860 }
9861
9862 CComPtr<IDebugAutoAttach> spDebugAutoAttach;
9863 hr = CoCreateInstance(clsidDebugAutoAttach, NULL, CLSCTX_LOCAL_SERVER | CLSCTX_INPROC_SERVER, __uuidof(IDebugAutoAttach), (void**)&spDebugAutoAttach);
9864 if (FAILED(hr))
9865 {
9866 if (hr == E_ACCESSDENIED)
9867 RequestComplete(pRequestInfo, 401, 0);
9868 else
9869 {
9870 HandleError(pRequestInfo->pServerContext, 204, DBG_SUBERR_COCREATE);
9871 RequestComplete(pRequestInfo, 204, DBG_SUBERR_COCREATE);
9872 }
9873 return FALSE;
9874 }
9875 hr = spDebugAutoAttach->AutoAttach(GUID_NULL, dwPid, AUTOATTACH_PROGRAM_WIN32, 0, szSessionID);
9876 if (FAILED(hr))
9877 {
9878 char szRetBuf[256];
9879 int nLen = sprintf_s(szRetBuf, _countof(szRetBuf), "204 HRESULT=0x%.08X;ErrorString=Unable to attach to worker process", hr);
9880 if (nLen > 0)
9881 {
9882 DWORD dwLen = nLen;
9883 pRequestInfo->pServerContext->SendResponseHeader(NULL, szRetBuf, FALSE);
9884 pRequestInfo->pServerContext->WriteClient(szRetBuf, &dwLen);
9885 RequestComplete(pRequestInfo, 204, DBG_SUBERR_ATTACH);
9886 }
9887 return FALSE;
9888 }
9889 m_bDebug = TRUE;
9890 HandleError(pRequestInfo->pServerContext, 200, SUBERR_NONE);
9891 RequestComplete(pRequestInfo, 200, SUBERR_NONE);
9892 return FALSE;
9893 }
9894 else if (!_strnicmp(szCur, "stop-debug", sizeof("stop-debug")-sizeof('\0')))
9895 {
9896 m_bDebug = FALSE;
9897 HandleError(pRequestInfo->pServerContext, 200, SUBERR_NONE);
9898 RequestComplete(pRequestInfo, 200, SUBERR_NONE);
9899 return FALSE;
9900 }
9901 else
9902 {
9903 RequestComplete(pRequestInfo, 501, SUBERR_NONE); // Not Implemented
9904 return FALSE;
9905 }
9906 }
9907 return TRUE;
9908 }
9909 _ATLCATCHALL()
9910 {
9911 return FALSE;
9912 }
9913 }
9914 #endif // defined(_DEBUG) || defined(ATLS_ENABLE_DEBUGGING)
9915
9916 BOOL DispatchStencilCall(__inout AtlServerRequest *pRequestInfo)
9917 {
9918 ATLENSURE(pRequestInfo!=NULL);
9919 CSetThreadToken sec;
9920
9921 m_reqStats.OnRequestDequeued();
9922
9923 if (!sec.Initialize(pRequestInfo))
9924 {
9925 RequestComplete(pRequestInfo, 500, ISE_SUBERR_IMPERSONATIONFAILED);
9926 return FALSE;
9927 }
9928
9929 #if defined(_DEBUG) || defined(ATLS_ENABLE_DEBUGGING)
9930 if (!ProcessDebug(pRequestInfo))
9931 return TRUE;
9932 #endif // defined(ATLS_ENABLE_DEBUGGING)
9933
9934 if (pRequestInfo->m_hMutex)
9935 {
9936 // synchronize in case the previous async_noflush call isn't finished
9937 // setting up state for the next call.
9938 DWORD dwStatus = WaitForSingleObject(pRequestInfo->m_hMutex, ATLS_ASYNC_MUTEX_TIMEOUT);
9939 if (dwStatus != WAIT_OBJECT_0 && dwStatus != WAIT_ABANDONED)
9940 {
9941 RequestComplete(pRequestInfo, 500, ISE_SUBERR_UNEXPECTED);
9942 return FALSE;
9943 }
9944 }
9945
9946 #ifdef _DEBUG
9947 bool bAsyncAllowed = false;
9948 #endif
9949 HTTP_CODE hcErr = HTTP_SUCCESS;
9950 if (pRequestInfo->dwRequestState == ATLSRV_STATE_BEGIN)
9951 {
9952 BOOL bAllowCaching = TRUE;
9953 if (TransmitFromCache(pRequestInfo, &bAllowCaching)) // Page is in the cache, send it and bail
9954 { // Async Callback will handle freeing pRequestInfo
9955 return TRUE;
9956 }
9957
9958 // get the srf filename
9959 LPCSTR szFileName = pRequestInfo->pServerContext->GetScriptPathTranslated();
9960
9961 if (!szFileName)
9962 {
9963 RequestComplete(pRequestInfo, 500, ISE_SUBERR_UNEXPECTED);
9964 return FALSE;
9965 }
9966
9967 LPCSTR szDot = szFileName + strlen(szFileName) - 1;
9968
9969 // load a handler
9970 if (AsciiStricmp(szDot - ATLS_EXTENSION_LEN, c_AtlSRFExtension) == 0)
9971 {
9972 pRequestInfo->dwRequestType = ATLSRV_REQUEST_STENCIL;
9973 hcErr = LoadDispatchFile(szFileName, pRequestInfo);
9974 }
9975 else if (AsciiStricmp(szDot - ATLS_DLL_EXTENSION_LEN, c_AtlDLLExtension) == 0)
9976 {
9977 pRequestInfo->dwRequestType = ATLSRV_REQUEST_DLL;
9978 hcErr = LoadDllHandler(szFileName, pRequestInfo);
9979 }
9980 else
9981 {
9982 hcErr = HTTP_FAIL;
9983 }
9984
9985 if (hcErr)
9986 {
9987 RequestComplete(pRequestInfo, HTTP_ERROR_CODE(hcErr), HTTP_SUBERROR_CODE(hcErr));
9988 return TRUE;
9989 }
9990
9991 pRequestInfo->pfnHandleRequest = &IRequestHandler::HandleRequest;
9992
9993 // initialize the handler
9994 DWORD dwStatus = 0;
9995
9996 hcErr = pRequestInfo->pHandler->GetFlags(&dwStatus);
9997 if (hcErr)
9998 {
9999 RequestComplete(pRequestInfo, HTTP_ERROR_CODE(hcErr), HTTP_SUBERROR_CODE(hcErr));
10000 return FALSE;
10001 }
10002
10003 if (bAllowCaching && ((dwStatus & ATLSRV_INIT_USECACHE) != 0) &&
10004 !strcmp(pRequestInfo->pServerContext->GetRequestMethod(), "GET"))
10005 {
10006 CComPtr<IHttpServerContext> spCacheCtx;
10007 if (!GetCacheServerContext(pRequestInfo, &m_PageCache, &spCacheCtx) ||
10008 !spCacheCtx)
10009 {
10010 RequestComplete(pRequestInfo, 500, ISE_SUBERR_OUTOFMEM);
10011 return FALSE;
10012 }
10013
10014 pRequestInfo->pServerContext->Release();
10015 pRequestInfo->pServerContext = spCacheCtx.Detach();
10016 }
10017
10018 if (dwStatus & (ATLSRV_INIT_USEASYNC | ATLSRV_INIT_USEASYNC_EX))
10019 {
10020 #ifdef _DEBUG
10021 bAsyncAllowed = true;
10022 #endif
10023 if (!pRequestInfo->pServerContext->RequestIOCompletion(AsyncCallback, (DWORD *)pRequestInfo))
10024 {
10025 RequestComplete(pRequestInfo, 500, SUBERR_NONE);
10026 return FALSE;
10027 }
10028 }
10029
10030 if (dwStatus & ATLSRV_INIT_USEASYNC_EX)
10031 {
10032 pRequestInfo->m_hMutex = CreateMutex(NULL, FALSE, NULL);
10033 if (pRequestInfo->m_hMutex == NULL)
10034 {
10035 RequestComplete(pRequestInfo, 500, ISE_SUBERR_SYSOBJFAIL);
10036 return FALSE;
10037 }
10038
10039 DWORD dwMutexStatus = WaitForSingleObject(pRequestInfo->m_hMutex, 10000);
10040 if (dwMutexStatus != WAIT_OBJECT_0 && dwMutexStatus != WAIT_ABANDONED)
10041 {
10042 RequestComplete(pRequestInfo, 500, ISE_SUBERR_UNEXPECTED);
10043 return FALSE;
10044 }
10045 }
10046 hcErr = pRequestInfo->pHandler->InitializeHandler(pRequestInfo, static_cast<IServiceProvider*>(this));
10047 }
10048 #ifdef _DEBUG
10049 else // pRequestInfo->dwRequestState != ATLSRV_STATE_BEGIN
10050 {
10051 bAsyncAllowed = true;
10052 }
10053 #endif
10054
10055 ATLENSURE(pRequestInfo->pfnHandleRequest != NULL);
10056
10057 if (hcErr == HTTP_SUCCESS)
10058 hcErr = (pRequestInfo->pHandler->*pRequestInfo->pfnHandleRequest)(pRequestInfo, static_cast<IServiceProvider*>(this));
10059
10060 if (hcErr == HTTP_SUCCESS_NO_CACHE)
10061 {
10062 CComPtr<IPageCacheControl> spControl;
10063 HRESULT hr = pRequestInfo->pServerContext->QueryInterface(__uuidof(IPageCacheControl), reinterpret_cast<void**>(&spControl));
10064 if (hr == S_OK)
10065 spControl->Cache(FALSE);
10066 }
10067
10068 #ifdef _DEBUG
10069 // must use ATLSRV_INIT_USEASYNC to use ASYNC returns
10070 if (IsAsyncStatus(hcErr))
10071 ATLASSERT(bAsyncAllowed);
10072
10073 // must use ATLSRV_INIT_USEASYNC_EX to use NOFLUSH returns
10074 if (IsAsyncNoFlushStatus(hcErr))
10075 ATLASSERT(pRequestInfo->m_hMutex);
10076 #endif
10077
10078 // save hMutex in case pRequestInfo is deleted by AsyncCallback after
10079 // we call StartAsyncFlush but before we check to see if we need to
10080 // call ReleaseMutex
10081 HANDLE hMutex = pRequestInfo->m_hMutex;
10082
10083 if (IsAsyncStatus(hcErr))
10084 {
10085 if (IsAsyncDoneStatus(hcErr))
10086 pRequestInfo->dwRequestState = ATLSRV_STATE_DONE;
10087 else
10088 pRequestInfo->dwRequestState = ATLSRV_STATE_CONTINUE;
10089
10090 if (IsAsyncFlushStatus(hcErr) && !StartAsyncFlush(pRequestInfo))
10091 {
10092 RequestComplete(pRequestInfo, 500, SUBERR_NONE);
10093 pRequestInfo = NULL;
10094 }
10095 }
10096 else
10097 {
10098 RequestComplete(pRequestInfo, HTTP_ERROR_CODE(hcErr), HTTP_SUBERROR_CODE(hcErr));
10099 pRequestInfo = NULL;
10100 }
10101
10102 if (hMutex)
10103 ReleaseMutex(hMutex);
10104
10105 return TRUE;
10106 }
10107
10108 BOOL StartAsyncFlush(__in AtlServerRequest *pRequestInfo)
10109 {
10110 ATLENSURE(pRequestInfo);
10111 if (pRequestInfo->pszBuffer == NULL || pRequestInfo->dwBufferLen == 0)
10112 {
10113 ATLASSERT(FALSE);
10114 return FALSE;
10115 }
10116
10117 ATLENSURE(pRequestInfo->pServerContext);
10118 BOOL bRet = TRUE;
10119 _ATLTRY
10120 {
10121 bRet = pRequestInfo->pServerContext->AsyncWriteClient(
10122 LPVOID(pRequestInfo->pszBuffer),
10123 &pRequestInfo->dwBufferLen);
10124 }
10125 _ATLCATCHALL()
10126 {
10127 bRet = FALSE;
10128 }
10129
10130 return bRet;
10131 }
10132
10133 long GetTotalRequests()
10134 {
10135 return m_reqStats.GetTotalRequests();
10136 }
10137
10138 long GetFailedRequests()
10139 {
10140 return m_reqStats.GetFailedRequests();
10141 }
10142
10143 long GetAvgResponseTime()
10144 {
10145 return m_reqStats.GetAvgResponseTime();
10146 }
10147
10148 long GetCurrWaiting()
10149 {
10150 return m_reqStats.GetCurrWaiting();
10151 }
10152
10153 long GetMaxWaiting()
10154 {
10155 return m_reqStats.GetMaxWaiting();
10156 }
10157
10158 long GetActiveThreads()
10159 {
10160 return m_reqStats.GetActiveThreads();
10161 }
10162
10163 __success(SUCCEEDED(return)) __checkReturn HRESULT STDMETHODCALLTYPE QueryInterface(REFIID riid, __deref_out void **ppv)
10164 {
10165 if (!ppv)
10166 return E_POINTER;
10167 if (InlineIsEqualGUID(riid, __uuidof(IRequestStats)))
10168 {
10169 *ppv = static_cast<IRequestStats*>(this);
10170 AddRef();
10171 return S_OK;
10172 }
10173 if (InlineIsEqualGUID(riid, __uuidof(IUnknown)) ||
10174 InlineIsEqualGUID(riid, __uuidof(IServiceProvider)))
10175 {
10176 *ppv = static_cast<IServiceProvider*>(this);
10177 AddRef();
10178 return S_OK;
10179 }
10180 if (InlineIsEqualGUID(riid, __uuidof(IIsapiExtension)))
10181 {
10182 *ppv = static_cast<IIsapiExtension*>(this);
10183 AddRef();
10184 return S_OK;
10185 }
10186 return E_NOINTERFACE;
10187 }
10188
10189 ULONG STDMETHODCALLTYPE AddRef()
10190 {
10191 return 1;
10192 }
10193
10194 ULONG STDMETHODCALLTYPE Release()
10195 {
10196 return 1;
10197 }
10198
10199 virtual __checkReturn HRESULT STDMETHODCALLTYPE QueryService(
10200 __in REFGUID guidService,
10201 __in REFIID riid,
10202 __deref_out void **ppvObject)
10203 {
10204 if (!ppvObject)
10205 return E_POINTER;
10206
10207 if (InlineIsEqualGUID(guidService, __uuidof(IDllCache)))
10208 return m_DllCache.QueryInterface(riid, ppvObject);
10209 else if (InlineIsEqualGUID(guidService, __uuidof(IStencilCache)))
10210 return m_StencilCache.QueryInterface(riid, ppvObject);
10211 else if (InlineIsEqualGUID(guidService, __uuidof(IThreadPoolConfig)))
10212 return m_ThreadPool.QueryInterface(riid, ppvObject);
10213 else if (InlineIsEqualGUID(guidService, __uuidof(IAtlMemMgr)))
10214 {
10215 *ppvObject = static_cast<IAtlMemMgr *>(&m_heap);
10216 return S_OK;
10217 }
10218 #ifndef ATL_NO_SOAP
10219 else if (InlineIsEqualGUID(guidService, __uuidof(ISAXXMLReader)))
10220 {
10221 CIsapiWorker *p = GetThreadWorker();
10222 ATLENSURE( p != NULL );
10223 return p->m_spReader->QueryInterface(riid, ppvObject);
10224 }
10225 #endif
10226
10227 // otherwise look it up in the servicemap
10228 return GetService(guidService, riid, ppvObject);
10229 }
10230
10231 virtual HRESULT AddService(REFGUID guidService, REFIID riid, IUnknown *punkService, HINSTANCE hInstance)
10232 {
10233 if (!punkService)
10234 return E_INVALIDARG;
10235
10236 if (!m_DllCache.AddRefModule(hInstance))
10237 return E_FAIL;
10238
10239 ServiceNode srvNode;
10240 srvNode.hInst = hInstance;
10241 srvNode.punk = punkService;
10242 Checked::memcpy_s(&srvNode.guidService, sizeof(GUID), &guidService, sizeof(guidService));
10243 Checked::memcpy_s(&srvNode.riid, sizeof(IID), &riid, sizeof(riid));
10244
10245 CComCritSecLock<CComCriticalSection> lock(m_critSec, false);
10246 HRESULT hr = lock.Lock();
10247 if (FAILED(hr))
10248 {
10249 return hr;
10250 }
10251
10252 // if the service is already there, return S_FALSE
10253 int nIndex = m_serviceMap.Find(srvNode);
10254 if (nIndex >= 0)
10255 return S_FALSE;
10256
10257 if (!m_serviceMap.Add(srvNode))
10258 return E_OUTOFMEMORY;
10259
10260 punkService->AddRef();
10261 return S_OK;
10262 }
10263
10264 virtual HRESULT RemoveService(__in REFGUID guidService, __in REFIID riid)
10265 {
10266 ServiceNode srvNode;
10267 Checked::memcpy_s(&srvNode.guidService, sizeof(GUID), &guidService, sizeof(guidService));
10268 Checked::memcpy_s(&srvNode.riid, sizeof(IID), &riid, sizeof(riid));
10269
10270 CComCritSecLock<CComCriticalSection> lock(m_critSec, false);
10271 HRESULT hr = lock.Lock();
10272 if (FAILED(hr))
10273 {
10274 return hr;
10275 }
10276
10277 int nIndex = m_serviceMap.Find(srvNode);
10278 if (nIndex < 0)
10279 return S_FALSE;
10280
10281 ATLASSUME(m_serviceMap[nIndex].punk != NULL);
10282 m_serviceMap[nIndex].punk->Release();
10283
10284 HINSTANCE hInstRemove = m_serviceMap[nIndex].hInst;
10285
10286 m_serviceMap.RemoveAt(nIndex);
10287
10288 if (!m_DllCache.ReleaseModule(hInstRemove))
10289 return S_FALSE;
10290
10291 return S_OK;
10292 }
10293
10294 __success(SUCCEEDED(return)) __checkReturn HRESULT GetService(__in REFGUID guidService, __in REFIID riid, __deref_out void **ppvObject) throw()
10295 {
10296 if (!ppvObject)
10297 return E_POINTER;
10298
10299 *ppvObject = NULL;
10300 if (!m_serviceMap.GetSize())
10301 return E_NOINTERFACE;
10302
10303 ServiceNode srvNode;
10304 Checked::memcpy_s(&srvNode.guidService, sizeof(GUID), &guidService, sizeof(guidService));
10305 Checked::memcpy_s(&srvNode.riid, sizeof(IID), &riid, sizeof(riid));
10306
10307 CComCritSecLock<CComCriticalSection> lock(m_critSec, false);
10308 HRESULT hr = lock.Lock();
10309 if (FAILED(hr))
10310 {
10311 return hr;
10312 }
10313
10314 int nIndex = m_serviceMap.Find(srvNode);
10315 if (nIndex < 0)
10316 return E_NOINTERFACE;
10317
10318 ATLASSUME(m_serviceMap[nIndex].punk != NULL);
10319 return m_serviceMap[nIndex].punk->QueryInterface(riid, ppvObject);
10320 }
10321
10322 HTTP_CODE LoadRequestHandler(__in LPCSTR szDllPath, __in LPCSTR szHandlerName, __in IHttpServerContext *pServerContext,
10323 __out HINSTANCE *phInstance, __deref_out IRequestHandler **ppHandler)
10324 {
10325 return _AtlLoadRequestHandler(szDllPath, szHandlerName, pServerContext,
10326 phInstance, ppHandler, this, static_cast<IDllCache*>(&m_DllCache));
10327 } // LoadRequestHandler
10328
10329 }; // class CIsapiExtension
10330
10331
10332 //===========================================================================================
10333 // IMPORTANT NOTE TO USERS:
10334 // DO NOT ASSUME *ANYTHING* ABOUT THE STRUCTURE OF THESE MAPS/ENTRIES/FUNCTIONS--THEY CAN
10335 // AND *WILL* CHANGE IN THE FUTURE. CORRECT USAGE MANDATES THAT YOU USE THE MACROS PROVIDED.
10336 // ABSOLUTELY NO GUARANTEES ABOUT BACKWARD COMPATABILITY ARE MADE FOR MANUALLY DEFINED
10337 // HANDLERS OR FUNCTIONS.
10338 //===========================================================================================
10339
10340 typedef BOOL (*CREATEHANDLERFUNC)(IIsapiExtension *pExtension, IUnknown **ppOut);
10341 typedef BOOL (*INITHANDLERFUNC)(IHttpServerContext*, IIsapiExtension*);
10342 typedef void (*UNINITHANDLERFUNC)();
10343
10344 struct _HANDLER_ENTRY
10345 {
10346 LPCSTR szName;
10347 CREATEHANDLERFUNC pfnCreate;
10348 INITHANDLERFUNC pfnInit;
10349 UNINITHANDLERFUNC pfnUninit;
10350 };
10351 // definitions of data segments and _HANDLER_ENTRY delimiters
10352 #pragma section("ATLS$A", read, shared)
10353 #pragma section("ATLS$Z", read, shared)
10354 #pragma section("ATLS$C", read, shared)
10355 extern "C"
10356 {
10357 __declspec(selectany) __declspec(allocate("ATLS$A")) ATL::_HANDLER_ENTRY * __phdlrA = NULL;
10358 __declspec(selectany) __declspec(allocate("ATLS$Z")) ATL::_HANDLER_ENTRY * __phdlrZ = NULL;
10359 }
10360
10361 #if !defined(_M_IA64)
10362 #pragma comment(linker, "/merge:ATLS=.rdata")
10363 #endif
10364
10365 #ifndef HANDLER_ENTRY_PRAGMA
10366
10367 #if defined(_M_IX86)
10368 #define HANDLER_ENTRY_PRAGMA(class, line) __pragma(comment(linker, "/include:___phdlrEntry_" #class "_" #line));
10369 #elif defined(_M_IA64)
10370 #define HANDLER_ENTRY_PRAGMA(class, line) __pragma(comment(linker, "/include:__phdlrEntry_" #class "_" #line));
10371 #elif defined(_M_AMD64)
10372 #define HANDLER_ENTRY_PRAGMA(class, line) __pragma(comment(linker, "/include:__phdlrEntry_" #class "_" #line));
10373 #else
10374 #error Unknown Platform. define HANDLER_ENTRY_PRAGMA
10375 #endif
10376
10377 #endif // HANDLER_ENTRY_PRAGMA
10378
10379 // DECLARE_REQUEST_HANDLER macro
10380 #define __DECLARE_REQUEST_HANDLER_INTERNAL(handlerName, className, classQName, lineNum) \
10381 __declspec(selectany) ATL::_HANDLER_ENTRY __hdlrEntry_ ## className ## _ ## lineNum = { handlerName, classQName::CreateRequestHandler, classQName::InitRequestHandlerClass, classQName::UninitRequestHandlerClass }; \
10382 extern "C" __declspec(allocate("ATLS$C")) __declspec(selectany) \
10383 ATL::_HANDLER_ENTRY * const __phdlrEntry_ ## className ## _ ## lineNum = &__hdlrEntry_ ## className ## _ ## lineNum; \
10384 HANDLER_ENTRY_PRAGMA(className, lineNum) \
10385 __if_not_exists(GetAtlHandlerByName) \
10386 { \
10387 extern "C" ATL_NOINLINE inline BOOL __declspec(dllexport) __stdcall GetAtlHandlerByName(LPCSTR szHandlerName, IIsapiExtension *pExtension, IUnknown **ppHandler) throw() \
10388 { \
10389 *ppHandler = NULL; \
10390 ATL::_HANDLER_ENTRY **pEntry = &__phdlrA; \
10391 while (pEntry != &__phdlrZ) \
10392 { \
10393 if (*pEntry && (*pEntry)->szName) \
10394 { \
10395 if (strcmp((*pEntry)->szName, szHandlerName)==0) \
10396 { \
10397 return (*(*pEntry)->pfnCreate)(pExtension, ppHandler); \
10398 } \
10399 } \
10400 pEntry++; \
10401 } \
10402 return FALSE; \
10403 } \
10404 extern "C" ATL_NOINLINE inline BOOL __declspec(dllexport) __stdcall InitializeAtlHandlers(IHttpServerContext *pContext, IIsapiExtension *pExt) throw() \
10405 { \
10406 ATL::_HANDLER_ENTRY **pEntry = &__phdlrA; \
10407 BOOL bRet = TRUE; \
10408 while (pEntry != &__phdlrZ) \
10409 { \
10410 if (*pEntry && (*pEntry)->szName && (*pEntry)->pfnInit) \
10411 { \
10412 bRet = (*(*pEntry)->pfnInit)(pContext, pExt); \
10413 if (!bRet) \
10414 break; \
10415 } \
10416 pEntry++; \
10417 } \
10418 if (!bRet) \
10419 { \
10420 if (pEntry == &__phdlrA) \
10421 return FALSE; \
10422 do \
10423 { \
10424 pEntry--; \
10425 if(*pEntry) \
10426 (*(*pEntry)->pfnUninit)(); \
10427 } \
10428 while (pEntry != &__phdlrA); \
10429 } \
10430 return bRet; \
10431 } \
10432 extern "C" ATL_NOINLINE inline void __declspec(dllexport) __stdcall UninitializeAtlHandlers() throw() \
10433 {\
10434 ATL::_HANDLER_ENTRY **pEntry = &__phdlrA; \
10435 while (pEntry != &__phdlrZ) \
10436 { \
10437 if (*pEntry && (*pEntry)->szName && (*pEntry)->pfnUninit) \
10438 { \
10439 (*(*pEntry)->pfnUninit)(); \
10440 } \
10441 pEntry++; \
10442 } \
10443 } \
10444 }
10445
10446 #define __DECLARE_REQUEST_HANDLER(handlerName, className, classQName, lineNum) __DECLARE_REQUEST_HANDLER_INTERNAL(handlerName, className, classQName, lineNum)
10447 #define DECLARE_REQUEST_HANDLER(handlerName, className, classQName) __DECLARE_REQUEST_HANDLER(handlerName, className, classQName, __COUNTER__)
10448
10449 #define BEGIN_HANDLER_MAP()
10450 #define HANDLER_ENTRY(handlerName, className) DECLARE_REQUEST_HANDLER(handlerName, className, className)
10451 #define HANDLER_ENTRY_EX(handlerName, className, classQName) DECLARE_REQUEST_HANDLER(handlerName, className, classQName)
10452 #define END_HANDLER_MAP()
10453
10454 #define __HANDLER_ENTRY_SDL_INTERNAL(handlerString, handlerClass, handlerQClass, sdlClassName, lineNum)\
10455 _ATLSOAP_DECLARE_WSDL_SRF() \
10456 extern __declspec(selectany) const char const s_szClassName##sdlClassName##lineNum[]=handlerString;\
10457 typedef ATL::CSDLGenerator<handlerQClass, s_szClassName##sdlClassName##lineNum> sdlClassName; \
10458 HANDLER_ENTRY_EX(handlerString, handlerClass, handlerQClass)\
10459 HANDLER_ENTRY(#sdlClassName, sdlClassName)
10460
10461 #define __HANDLER_ENTRY_SDL(handlerString, handlerClass, handlerQClass, sdlClassName, lineNum) __HANDLER_ENTRY_SDL_INTERNAL(handlerString, handlerClass, handlerQClass, sdlClassName, lineNum)
10462 #define HANDLER_ENTRY_SDL(handlerString, handlerClass, handlerQClass, sdlClassName) __HANDLER_ENTRY_SDL(handlerString, handlerClass, handlerQClass, sdlClassName, __COUNTER__)
10463 //
10464 // Use this class to check the authorization level of a client who is making
10465 // a request to this application. This class checks for the stronger authentication
10466 // levels (NTLM and Negotiate). You can call it directly from an implementation
10467 // of HandleRequest to check authorization before handling a request.
10468 #define MAX_AUTH_TYPE 50
10469 #define MAX_NAME_LEN 255
10470
10471 template <class T>
10472 class CVerifyAuth
10473 {
10474 public:
10475 HTTP_CODE IsAuthorized(__in AtlServerRequest *pInfo, __in_opt const SID* psidAuthGroup)
10476 {
10477 ATLENSURE(pInfo);
10478 ATLENSURE(pInfo->pServerContext);
10479 ATLASSERT(psidAuthGroup);
10480 ATLASSERT(::IsValidSid((PSID) psidAuthGroup));
10481
10482 HTTP_CODE hcErr = HTTP_UNAUTHORIZED;
10483 char szAuthType[MAX_AUTH_TYPE];
10484 DWORD dwSize = MAX_AUTH_TYPE;
10485 _ATLTRY
10486 {
10487 if (pInfo->pServerContext->GetServerVariable("AUTH_TYPE",
10488 szAuthType, &dwSize))
10489 {
10490 if (szAuthType[0] && (!_stricmp(szAuthType, "NTLM")
10491 || !_stricmp(szAuthType, "Negotiate")))
10492 {
10493 // if we were passed a group name
10494 // we check to see that the logged on user is part
10495 // of that group, else we just return success.
10496 if (psidAuthGroup)
10497 {
10498 T* pT = static_cast<T*>(this);
10499 if (pT->CheckAccount(pInfo->pServerContext, psidAuthGroup))
10500 hcErr = HTTP_SUCCESS;
10501 else
10502 hcErr = pT->HandleError(pInfo);
10503 }
10504 else
10505 hcErr = HTTP_SUCCESS;
10506 }
10507 }
10508 }
10509 _ATLCATCHALL()
10510 {
10511 hcErr = HTTP_FAIL;
10512 }
10513
10514 return hcErr;
10515 }
10516
10517 virtual bool CheckAccount(IHttpServerContext *pContext, const SID *psidAuthGroup) throw()
10518 {
10519 (pContext); // unused
10520 (psidAuthGroup); // unused
10521 return false;
10522 }
10523
10524 HTTP_CODE HandleError(AtlServerRequest *pRequestInfo) throw()
10525 {
10526 pRequestInfo; // unused
10527 return HTTP_FAIL;
10528 }
10529
10530 __checkReturn bool CheckAuthAccount(__in IHttpServerContext *pContext, __in const SID* psidAuthGroup) throw()
10531 {
10532 ATLASSERT(pContext);
10533 ATLASSERT(psidAuthGroup);
10534 if (!pContext || !psidAuthGroup)
10535 return false;
10536
10537 HANDLE hToken = INVALID_HANDLE_VALUE;
10538 bool bIsMember;
10539 _ATLTRY
10540 {
10541 if (!pContext->GetImpersonationToken(&hToken) ||
10542 hToken == INVALID_HANDLE_VALUE)
10543 return false;
10544
10545 CAccessToken tok;
10546 tok.Attach(hToken);
10547 bool bRet = tok.CheckTokenMembership(CSid(psidAuthGroup), &bIsMember);
10548 tok.Detach();
10549
10550 if (!bRet)
10551 return false;
10552 }
10553 _ATLCATCHALL()
10554 {
10555 bIsMember = false;
10556 }
10557
10558 return bIsMember;
10559 }
10560 };
10561
10562 // Checks that the user that is logging on is in the required group
10563 class CDefaultAuth :
10564 public CVerifyAuth<CDefaultAuth>
10565 {
10566 public:
10567 virtual bool CheckAccount(__in IHttpServerContext *pContext, __in const SID* psidAuthGroup) throw()
10568 {
10569 return CheckAuthAccount(pContext, psidAuthGroup);
10570 }
10571
10572 HTTP_CODE HandleError(__in AtlServerRequest *pRequestInfo) throw()
10573 {
10574 ATLASSERT(pRequestInfo); // should always be valid
10575 if(!pRequestInfo)
10576 {
10577 return HTTP_FAIL;
10578 }
10579
10580 _ATLTRY
10581 {
10582 CHttpResponse response(pRequestInfo->pServerContext);
10583 response.Write(GetErrorResponse());
10584 response.Flush();
10585 }
10586 _ATLCATCHALL()
10587 {
10588 return HTTP_FAIL;
10589 }
10590
10591 return HTTP_SUCCESS_NO_PROCESS;
10592 }
10593
10594 virtual LPCSTR GetErrorResponse()
10595 {
10596 static const char *szResponse = "<html><body>"
10597 "<H1 align=center>NOT AUTHORIZED</H1><p>"
10598 "</body></html>";
10599 return szResponse;
10600 }
10601
10602 };
10603
10604 } // namespace ATL
10605 #pragma pack(pop)
10606
10607 #pragma warning(pop)
10608
10609 #endif // __ATLISAPI_H__
vsfilter mod based on vsfilter 2.39