1 /**
2 * Licensed to the Apache Software Foundation (ASF) under one
3 * or more contributor license agreements. See the NOTICE file
4 * distributed with this work for additional information
5 * regarding copyright ownership. The ASF licenses this file
6 * to you under the Apache License, Version 2.0 (the
7 * "License"); you may not use this file except in compliance
8 * with the License. You may obtain a copy of the License at
9 *
10 * http://www.apache.org/licenses/LICENSE-2.0
11 *
12 * Unless required by applicable law or agreed to in writing, software
13 * distributed under the License is distributed on an "AS IS" BASIS,
14 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15 * See the License for the specific language governing permissions and
16 * limitations under the License.
17 */
18 package org.apache.hadoop.hbase.util;
19
20 import org.mortbay.jetty.security.Constraint;
21 import org.mortbay.jetty.security.ConstraintMapping;
22 import org.mortbay.jetty.security.SecurityHandler;
23 import org.mortbay.jetty.servlet.Context;
24
25 /**
26 * HttpServer utility.
27 */
28 public class HttpServerUtil {
29 /**
30 * Add constraints to a Jetty Context to disallow undesirable Http methods.
31 * @param context The context to modify
32 */
33 public static void constrainHttpMethods(Context context) {
34 Constraint c = new Constraint();
35 c.setAuthenticate(true);
36
37 ConstraintMapping cmt = new ConstraintMapping();
38 cmt.setConstraint(c);
39 cmt.setMethod("TRACE");
40 cmt.setPathSpec("/*");
41
42 ConstraintMapping cmo = new ConstraintMapping();
43 cmo.setConstraint(c);
44 cmo.setMethod("OPTIONS");
45 cmo.setPathSpec("/*");
46
47 SecurityHandler sh = new SecurityHandler();
48 sh.setConstraintMappings(new ConstraintMapping[]{ cmt, cmo });
49
50 context.addHandler(sh);
51 }
52 }