java source code of PicqHttpServer

PicqBotX-master
- .github
  - ISSUE_TEMPLATE
    - -------bug-.md
    - feature_request.md
    - bug_report.md
  - workflows
    - maven.yml
- src
  - main
    - resources
      - splash
      - logging.properties
      - splash-precolored
    - java
      - taskeren
        extrabot
        components
        ExComponentRecord.java
        ExComponentLocation.java
        ExComponentRPS.java
        ExComponentFace.java
        ExComponentShare.java
        richs
        ExComponentRichMusic.java
        ExComponentRichNews.java
        ExComponentImage.java
        ExComponent.java
        ExComponentBFace.java
        ExComponentShake.java
        ExComponentSign.java
        ExComponentString.java
        ExComponentContact.java
        ExComponentRich.java
        ExComponentDice.java
        ExComponentAt.java
        ExComponentSendable.java
      - cc
        moecraft
        icq
        utils
        SHA1Utils.java
        NetUtils.java
        EventUtils.java
        HyArrayList.java
        MiscUtils.java
        StringUtils.java
        CQUtils.java
        receiver
        PicqHttpServer.java
        user
        GroupUser.java
        GroupManager.java
        GroupUserManager.java
        User.java
        UserManager.java
        Group.java
        PicqBotX.java
        PicqConfig.java
        listeners
        HyExpressionListener.java
        event
        EventManager.java
        IcqListener.java
        Event.java
        methodsets
        GroupEventMethods.java
        EventParser.java
        RegisteredListenerMethod.java
        ContentComparable.java
        EventHandler.java
        events
        message
        EventGroupOrDiscussMessage.java
        EventMessage.java
        EventGroupMessage.java
        EventPrivateMessage.java
        EventDiscussMessage.java
        request
        EventGroupAddRequest.java
        EventFriendRequest.java
        EventRequest.java
        EventGroupInviteRequest.java
        local
        EventLocal.java
        EventLocalSendMessage.java
        EventLocalSendGroupMessage.java
        EventLocalHttpFail.java
        EventLocalSendPrivateMessage.java
        EventLocalException.java
        EventLocalSendDiscussMessage.java
        EventLocalHttpReceive.java
        meta
        EventMetaLifecycle.java
        EventMetaHeartbeat.java
        EventMeta.java
        notice
        EventNoticeGroupUpload.java
        groupmember
        decrease
        EventNoticeGroupMemberKick.java
        EventNoticeGroupMemberKickBot.java
        EventNoticeGroupMemberDecrease.java
        EventNoticeGroupMemberLeave.java
        EventNoticeGroupMemberChange.java
        increase
        EventNoticeGroupMemberInvite.java
        EventNoticeGroupMemberIncrease.java
        EventNoticeGroupMemberApprove.java
        EventNoticeFriendAdd.java
        EventNoticeGroupBan.java
        groupadmin
        EventNoticeGroupAdminChange.java
        EventNoticeGroupAdminSet.java
        EventNoticeGroupAdminRemove.java
        EventNotice.java
        accounts
        AccountManager.java
        BotAccount.java
        AccountManagerListener.java
        exceptions
        VersionRecommendException.java
        VersionIncorrectException.java
        VerifyFailedException.java
        HttpServerException.java
        InvalidSendingURLException.java
        sender
        IcqHttpApi.java
        HttpApiNode.java
        message
        MessageBuilder.java
        components
        ComponentMusic.java
        ComponentShare.java
        ComponentRockPaperSissors.java
        ComponentAt.java
        ComponentEmoji.java
        ComponentRecord.java
        ComponentBFace.java
        ComponentShake.java
        ComponentFace.java
        ComponentSFace.java
        ComponentImageBase64.java
        ComponentImageNoCache.java
        ComponentImage.java
        ComponentDice.java
        MessageComponent.java
        returndata
        ReturnStatus.java
        returnpojo
        get
        RFriend.java
        RVersionInfo.java
        RGroup.java
        RGroupInfo.java
        RVipInfo.java
        RBoolean.java
        RGroupNotice.java
        RGroupMemberInfo.java
        RCsrfToken.java
        RStatus.java
        RCredentials.java
        RFile.java
        RLoginInfo.java
        RCookies.java
        RFriendList.java
        RStrangerInfo.java
        RGroupDetail.java
        send
        RMessageReturnData.java
        ReturnPojoBase.java
        RawReturnData.java
        ReturnListData.java
        ReturnData.java
        command
        CommandManager.java
        CommandArgs.java
        exceptions
        NotACommandException.java
        CommandNotFoundException.java
        CommandListener.java
        interfaces
        IcqCommand.java
        DiscussCommand.java
        GroupCommand.java
        PrivateCommand.java
        EverywhereCommand.java
        CommandArgsParser.java
        CommandProperties.java
        PicqConstants.java
  - test
    - java
      - cc
        moecraft
        test
        icq
        TestBot.java
        commands
        CommandKickSelf.java
        CommandTestSleep.java
        CommandRecallThis.java
        CommandCls.java
        CommandCmdList.java
        CommandTest.java
        CommandJS.java
        CommandVersion.java
        CommandBanSelf.java
        CommandTestErr.java
        listeners
        TestFilter.java
        TestListener.java
        ExceptionListener.java
        SimpleTextLoggingListener.java
        RequestListener.java
        features
        codec
        CommandEncode.java
        CommandDecode.java
        annoy
        CommandAnnoy.java
        AnnoyingListener.java
        say
        CommandSayRaw.java
        CommandSay.java
        antirecall
        CommandAntiRecallOut.java
        CommandAntiRecall.java
        AntiRecallListener.java
        minigames
        guess
        GuessSession.java
        CommandGuess.java
        GuessListener.java
        fools
        commands
        CommandSkills.java
        CommandRecent.java
        CommandSetid.java
        AFCommand.java
        CommandRanking.java
        CommandAnnounce.java
        CommandHelp.java
        CommandStats.java
        AprilFoolsBot.java
        general
        InvokeTest.java
        HttpApiTest.java
        lombok
        LombokBuilderTest.java
        StaticDebug.java
- JavaDocs-Config
- deprecated
  - HttpServerOld.java
  - PicqHttpServer.java
- pom.xml
- LICENSE
- README.md
- .gitignore
- docs
  - package-list
  - script.js
  - overview-summary.html
  - overview-frame.html
  - overview-tree.html
  - serialized-form.html
  - help-doc.html
  - constant-values.html
  - deprecated-list.html
  - index-files
    - index-14.html
    - index-16.html
    - index-7.html
    - index-17.html
    - index-10.html
    - index-2.html
    - index-3.html
    - index-12.html
    - index-9.html
    - index-18.html
    - index-5.html
    - index-11.html
    - index-6.html
    - index-13.html
    - index-1.html
    - index-8.html
    - index-4.html
    - index-20.html
    - index-19.html
    - index-15.html
  - allclasses-frame.html
  - allclasses-noframe.html
  - index.html
  - stylesheet.css
  - cc
    - moecraft
      - icq
        package-frame.html
        PicqConfig.html
        utils
        package-frame.html
        NetUtils.html
        package-tree.html
        StringUtils.html
        CQUtils.html
        EventUtils.html
        package-summary.html
        SHA1Utils.html
        MiscUtils.html
        receiver
        package-frame.html
        PicqHttpServer.html
        package-tree.html
        package-summary.html
        user
        package-frame.html
        User.html
        package-tree.html
        GroupManager.html
        UserManager.html
        Group.html
        package-summary.html
        GroupUser.html
        GroupUserManager.html
        package-tree.html
        listeners
        package-frame.html
        HyExpressionListener.html
        package-tree.html
        package-summary.html
        event
        package-frame.html
        EventHandler.html
        RegisteredListenerMethod.html
        Event.html
        package-tree.html
        ComparableConstants.html
        methodsets
        package-frame.html
        GroupEventMethods.html
        package-tree.html
        package-summary.html
        IcqListener.html
        EventParser.html
        ContentComparable.html
        EventManager.html
        package-summary.html
        events
        message
        package-frame.html
        EventMessage.html
        package-tree.html
        EventPrivateMessage.html
        EventDiscussMessage.html
        EventGroupOrDiscussMessage.html
        EventGroupMessage.Anonymous.html
        EventGroupMessage.html
        package-summary.html
        request
        package-frame.html
        EventGroupAddRequest.html
        EventGroupInviteRequest.html
        EventFriendRequest.html
        package-tree.html
        EventRequest.html
        package-summary.html
        local
        package-frame.html
        EventLocalSendPrivateMessage.html
        package-tree.html
        EventLocalSendMessage.html
        EventLocalSendGroupMessage.html
        EventLocalSendDiscussMessage.html
        EventLocalException.html
        EventLocal.html
        EventLocalHttpFail.html
        package-summary.html
        EventLocalHttpReceive.html
        EventLocalHttpFail.Reason.html
        meta
        package-frame.html
        EventMeta.html
        EventMetaHeartbeat.html
        package-tree.html
        EventMetaLifecycle.html
        EventMetaLifecycle.LifecycleType.html
        package-summary.html
        notice
        EventNoticeGroupUpload.html
        package-frame.html
        package-tree.html
        groupmember
        package-frame.html
        EventNoticeGroupMemberChange.html
        package-tree.html
        decrease
        package-frame.html
        EventNoticeGroupMemberLeave.html
        package-tree.html
        EventNoticeGroupMemberDecrease.html
        EventNoticeGroupMemberKick.html
        package-summary.html
        EventNoticeGroupMemberKickBot.html
        package-summary.html
        increase
        package-frame.html
        package-tree.html
        EventNoticeGroupMemberInvite.html
        EventNoticeGroupMemberIncrease.html
        EventNoticeGroupMemberApprove.html
        package-summary.html
        EventNotice.html
        EventNoticeFriendAdd.html
        EventNoticeGroupBan.html
        groupadmin
        package-frame.html
        EventNoticeGroupAdminChange.html
        package-tree.html
        EventNoticeGroupAdminSet.html
        EventNoticeGroupAdminRemove.html
        package-summary.html
        package-summary.html
        EventNoticeGroupBan.BanType.html
        EventNoticeGroupUpload.File.html
        PicqConstants.html
        accounts
        package-frame.html
        package-tree.html
        AccountManagerListener.html
        package-summary.html
        BotAccount.html
        AccountManager.html
        exceptions
        package-frame.html
        VersionRecommendException.html
        package-tree.html
        InvalidSendingURLException.html
        VerifyFailedException.html
        VersionIncorrectException.html
        HttpServerException.html
        package-summary.html
        sender
        package-frame.html
        package-tree.html
        HttpApiNode.html
        message
        package-frame.html
        MessageBuilder.html
        MessageComponent.html
        package-tree.html
        components
        package-frame.html
        ComponentRockPaperSissors.html
        ComponentImageNoCache.html
        package-tree.html
        ComponentSFace.html
        ComponentEmoji.html
        ComponentShare.html
        ComponentImage.html
        ComponentShake.html
        ComponentBFace.html
        ComponentRecord.html
        ComponentImageBase64.html
        ComponentMusic.MusicSourceType.html
        ComponentAt.html
        package-summary.html
        ComponentDice.html
        ComponentFace.html
        ComponentMusic.html
        package-summary.html
        package-summary.html
        returndata
        package-frame.html
        ReturnStatus.html
        package-tree.html
        returnpojo
        package-frame.html
        package-tree.html
        get
        package-frame.html
        RFriendList.Friend.html
        RGroupNotice.NoticeSettings.html
        RLoginInfo.html
        RGroupNotice.NoticeMessage.html
        RCsrfToken.html
        RBoolean.html
        package-tree.html
        RGroupInfo.html
        RFriend.html
        RStatus.PluginsGood.html
        RGroupDetail.Admin.html
        RStrangerInfo.html
        RCredentials.html
        RCookies.html
        RGroup.html
        RGroupMemberInfo.html
        RStatus.html
        RFriendList.html
        RGroupDetail.html
        RVipInfo.html
        RFile.html
        package-summary.html
        RVersionInfo.html
        RGroupNotice.html
        ReturnPojoBase.html
        send
        package-frame.html
        RMessageReturnData.html
        package-tree.html
        package-summary.html
        package-summary.html
        ReturnData.html
        ReturnListData.html
        package-summary.html
        RawReturnData.html
        IcqHttpApi.html
        PicqBotX.html
        command
        package-frame.html
        CommandProperties.html
        package-tree.html
        CommandArgsParser.html
        CommandManager.html
        exceptions
        NotACommandException.html
        package-frame.html
        package-tree.html
        CommandNotFoundException.html
        package-summary.html
        CommandListener.html
        interfaces
        DiscussCommand.html
        package-frame.html
        package-tree.html
        IcqCommand.html
        GroupCommand.html
        PrivateCommand.html
        package-summary.html
        EverywhereCommand.html
        package-summary.html
        CommandArgs.html
        package-summary.html

package cc.moecraft.icq.receiver;

import cc.moecraft.icq.PicqBotX;
import cc.moecraft.icq.event.events.local.EventLocalHttpFail;
import cc.moecraft.icq.event.events.local.EventLocalHttpFail.Reason;
import cc.moecraft.icq.exceptions.HttpServerException;
import cc.moecraft.icq.utils.SHA1Utils;
import cc.moecraft.logger.HyLogger;
import com.sun.net.httpserver.Headers;
import com.sun.net.httpserver.HttpExchange;
import com.sun.net.httpserver.HttpHandler;
import com.sun.net.httpserver.HttpServer;
import lombok.Getter;

import java.io.IOException;
import java.io.OutputStream;
import java.net.InetSocketAddress;

import static cc.moecraft.icq.PicqConstants.HTTP_API_VERSION_DETECTION;
import static cc.moecraft.icq.event.events.local.EventLocalHttpFail.Reason.*;
import static cc.moecraft.icq.utils.NetUtils.read;

/**
 * The class {@code PicqHttpServer} is a http server to receive and
 * parse the package sent from the http plugin of CoolQ.
 * <p>
 * Class created by the HyDEV Team on 2019-03-23!
 *
 * @author HyDEV Team (https://github.com/HyDevelop)
 * @author Hykilpikonna (https://github.com/hykilpikonna)
 * @author Vanilla (https://github.com/VergeDX)
 * @since 2019-03-23 12:55
 */
@Getter
public class PicqHttpServer
{
    /**
     * 端口号 (0~65535)
     */
    private final int port;

    /**
     * 机器人对象
     */
    private final PicqBotX bot;

    /**
     * 日志对象
     */
    protected final HyLogger logger;

    /**
     * HttpServer 对象
     */
    protected HttpServer server;

    /**
     * 构造一个Http服务器
     *
     * @param port 端口
     * @param bot 机器人
     */
    public PicqHttpServer(int port, PicqBotX bot)
    {
        this.port = port;
        this.bot = bot;

        logger = bot.getLogger();
    }

    /**
     * 启动 Http 服务器
     */
    public void start()
    {
        try
        {
            // 使用 Java SE 6 内置的 HttpServer
            server = HttpServer.create(new InetSocketAddress(port), 0);

            // 添加监听器
            server.createContext("/", new PicqHttpHandler());

            // 启动
            server.start();
        }
        catch (IOException e)
        {
            throw new HttpServerException(logger, e);
        }
    }

    /**
     * Http 监听器
     */
    private class PicqHttpHandler implements HttpHandler
    {
        @Override
        public void handle(HttpExchange exchange) throws IOException
        {
            // 是否暂停
            if (bot.getConfig().isHttpPaused())
            {
                respondAndClose(exchange, 503, "");
                return;
            }

            // 验证 HTTP头
            if (!validateHeader(exchange))
            {
                respondAndClose(exchange, 200, "Oh hi there! How are you?");
                return;
            }

            // 获取请求数据
            String data = read(exchange.getRequestBody());

            // 验证 SHA1
            if (!validateSHA1(exchange, data))
            {
                respondAndClose(exchange, 403, "");
                return;
            }

            // 输出Debug
            printDebug(exchange, data);

            // 调用事件
            bot.getEventManager().getEventParser().call(data);

            // 回复成功
            respondAndClose(exchange, 204, "");
        }
    }

    /**
     * 验证一个请求
     *
     * @param exchange 请求
     * @return 是否为 CoolQ Http 请求
     */
    private boolean validateHeader(HttpExchange exchange)
    {
        // 必须是 POST
        if (!exchange.getRequestMethod().toLowerCase().equals("post"))
        {
            return failed(INCORRECT_REQUEST_METHOD, "Not POST");
        }

        // 获取头
        Headers headers = exchange.getRequestHeaders();
        String contentType = headers.getFirst("content-type");
        String userAgent = headers.getFirst("user-agent");

        // 必须是 UTF-8
        if (!contentType.toLowerCase().contains("charset=utf-8"))
        {
            return failed(INCORRECT_CHARSET, "Not UTF-8");
        }

        // 必须是 JSON
        if (!contentType.contains("application/json"))
        {
            return failed(INCORRECT_APPLICATION_TYPE, "Not JSON");
        }

        // 判断版本
        if (!bot.getConfig().isNoVerify() && !userAgent.matches(HTTP_API_VERSION_DETECTION))
        {
            reportIncorrectVersion(userAgent);
            return failed(INCORRECT_VERSION, "Supported Version: " + HTTP_API_VERSION_DETECTION);
        }

        return true;
    }

    /**
     * 验证 HAMC SHA1 (如果有的话)
     *
     * @param exchange 请求
     * @param data 数据
     * @return 如果有, 是否验证成功
     */
    private boolean validateSHA1(HttpExchange exchange, String data)
    {
        // 是否启用验证
        if (bot.getConfig().getSecret().isEmpty())
        {
            return true;
        }

        // 获取 SHA1
        String signature = exchange.getRequestHeaders().getFirst("x-signature");

        // CoolQ HTTP 是否有发送 SHA1
        if (signature == null || signature.isEmpty())
        {
            return failed(INCORRECT_SHA1, "Signature Empty");
        }

        // 获取 SHA1 里面的 SHA1 嗯x
        signature = signature.replace("sha1=", "");

        // 生成 SHA1
        String generatedSignature = SHA1Utils.generateHAMCSHA1(data, bot.getConfig().getSecret());

        // 判断生成的和获取的是不是一样的
        if (!signature.equals(generatedSignature))
        {
            return failed(INCORRECT_SHA1, "Signature Mismatch: \n" +
                    "- Sent: " + signature + "\n- Generated: " + generatedSignature);
        }
        return true;
    }

    /**
     * 报告失败
     *
     * @param reason 失败原因
     */
    private boolean failed(Reason reason, String text)
    {
        getBot().getEventManager().call(new EventLocalHttpFail(reason));
        logger.debug("Http Failed: {}: {}", reason, text);
        return false;
    }

    /**
     * 报告版本错误
     *
     * @param currentVersion 当前版本
     */
    private void reportIncorrectVersion(String currentVersion)
    {
        logger.error("HTTP API请求版本不正确, 设置的兼容版本为: " + HTTP_API_VERSION_DETECTION);
        logger.error("当前版本为: " + currentVersion);
        logger.error("推荐更新这个类库或者HTTP API的版本");
        logger.error("如果要无视版本检查, 请修改 HTTP_API_VERSION_DETECTION");
    }

    /**
     * 回复输出
     *
     * @param exchange 请求
     * @param code HTTP返回码 (204 = CoolQ 处理成功)
     * @param response 回复
     */
    private void respondAndClose(HttpExchange exchange, int code, String response) throws IOException
    {
        byte[] bytes = response.getBytes();

        exchange.sendResponseHeaders(code, bytes.length == 0 ? -1 : bytes.length);

        OutputStream out = exchange.getResponseBody();
        out.write(bytes);
        out.close();
    }

    /**
     * 输出Debug消息
     *
     * @param exchange 请求
     * @param data 数据
     */
    private void printDebug(HttpExchange exchange, String data)
    {
        if (!bot.getConfig().isDebug()) return;

        logger.debug("收到新请求: {}", exchange.getRequestHeaders().getFirst("user-agent"));
        logger.debug("- 数据: {}", data);
    }
}