/usr/include/xmltooling/io/HTTPResponse.h is in libxmltooling-dev 1.6.4-1ubuntu2.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 | /**
* Licensed to the University Corporation for Advanced Internet
* Development, Inc. (UCAID) under one or more contributor license
* agreements. See the NOTICE file distributed with this work for
* additional information regarding copyright ownership.
*
* UCAID licenses this file to you under the Apache License,
* Version 2.0 (the "License"); you may not use this file except
* in compliance with the License. You may obtain a copy of the
* License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
* either express or implied. See the License for the specific
* language governing permissions and limitations under the License.
*/
/**
* @file xmltooling/io/HTTPResponse.h
*
* Interface to HTTP responses.
*/
#ifndef __xmltooling_httpres_h__
#define __xmltooling_httpres_h__
#include <xmltooling/io/GenericResponse.h>
#include <string>
#include <vector>
namespace xmltooling {
#if defined (_MSC_VER)
#pragma warning( push )
#pragma warning( disable : 4251 )
#endif
/**
* Interface to HTTP response.
*
* <p>To supply information to the surrounding web server environment,
* a shim must be supplied in the form of this interface to adapt the
* library to different proprietary server APIs.
*
* <p>This interface need not be threadsafe.
*/
class XMLTOOL_API HTTPResponse : public GenericResponse {
protected:
HTTPResponse();
public:
virtual ~HTTPResponse();
void setContentType(const char* type);
/**
* Sets or clears a response header.
*
* @param name header name
* @param value value to set, or nullptr to clear
*/
virtual void setResponseHeader(const char* name, const char* value);
/**
* Sets a client cookie.
*
* @param name cookie name
* @param value value to set, or nullptr to clear
*/
virtual void setCookie(const char* name, const char* value);
/**
* Redirect the client to the specified URL and complete the response.
*
* <p>Any headers previously set will be sent ahead of the redirect.
*
* <p>The URL will be validated with the sanitizeURL method below.
*
* @param url location to redirect client
* @return a result code to return from the calling MessageEncoder
*/
virtual long sendRedirect(const char* url);
/** Some common HTTP status codes. */
enum status_t {
XMLTOOLING_HTTP_STATUS_OK = 200,
XMLTOOLING_HTTP_STATUS_MOVED = 302,
XMLTOOLING_HTTP_STATUS_NOTMODIFIED = 304,
XMLTOOLING_HTTP_STATUS_BADREQUEST = 400,
XMLTOOLING_HTTP_STATUS_UNAUTHORIZED = 401,
XMLTOOLING_HTTP_STATUS_FORBIDDEN = 403,
XMLTOOLING_HTTP_STATUS_NOTFOUND = 404,
XMLTOOLING_HTTP_STATUS_ERROR = 500
};
long sendError(std::istream& inputStream);
using GenericResponse::sendResponse;
long sendResponse(std::istream& inputStream);
/**
* Returns a modifiable array of schemes to permit in sanitized URLs.
*
* <p>Updates to this array must be externally synchronized with any use
* of this class or its subclasses.
*
* @return a mutable array of strings containing the schemes to permit
*/
static std::vector<std::string>& getAllowedSchemes();
/**
* Manually check for unsafe URLs vulnerable to injection attacks.
*
* @param url location to check
*/
static void sanitizeURL(const char* url);
private:
static std::vector<std::string> m_allowedSchemes;
};
#if defined (_MSC_VER)
#pragma warning( pop )
#endif
};
#endif /* __xmltooling_httpres_h__ */
|