1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
|
/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.catalina;
/**
* Global constants that are applicable to multiple packages within Catalina.
*
* @author Craig R. McClanahan
*/
public final class Globals {
// ------------------------------------------------- Request attribute names
public static final String ASYNC_SUPPORTED_ATTR = "org.apache.catalina.ASYNC_SUPPORTED";
public static final String GSS_CREDENTIAL_ATTR = "org.apache.catalina.realm.GSS_CREDENTIAL";
/**
* Request dispatcher state.
*/
public static final String DISPATCHER_TYPE_ATTR = "org.apache.catalina.core.DISPATCHER_TYPE";
/**
* Request dispatcher path.
*/
public static final String DISPATCHER_REQUEST_PATH_ATTR = "org.apache.catalina.core.DISPATCHER_REQUEST_PATH";
/**
* The request attribute under which we store the servlet name on a named dispatcher request.
*/
public static final String NAMED_DISPATCHER_ATTR = "org.apache.catalina.NAMED";
/**
* The request attribute that is set to {@code Boolean.TRUE} if some request parameters have been ignored during
* request parameters parsing. It can happen, for example, if there is a limit on the total count of parseable
* parameters, or if parameter cannot be decoded, or any other error happened during parameter parsing.
*/
public static final String PARAMETER_PARSE_FAILED_ATTR = "org.apache.catalina.parameter_parse_failed";
/**
* The reason that the parameter parsing failed.
*/
public static final String PARAMETER_PARSE_FAILED_REASON_ATTR = "org.apache.catalina.parameter_parse_failed_reason";
/**
* The request attribute set by the RemoteIpFilter, RemoteIpValve (and may be set by other similar components) that
* identifies for the connector the remote IP address claimed to be associated with this request when a request is
* received via one or more proxies. It is typically provided via the X-Forwarded-For HTTP header. Duplicated here
* for neater code in the catalina packages.
*/
public static final String REMOTE_ADDR_ATTRIBUTE = org.apache.coyote.Constants.REMOTE_ADDR_ATTRIBUTE;
/**
* The request attribute that is set to the value of {@code Boolean.TRUE} by the RemoteIpFilter, RemoteIpValve (and
* other similar components) that identifies a request which been forwarded via one or more proxies.
*/
public static final String REQUEST_FORWARDED_ATTRIBUTE = "org.apache.tomcat.request.forwarded";
/**
* The request attribute that is set to the value of {@code Boolean.TRUE} if connector processing this request
* supports use of sendfile. Duplicated here for neater code in the catalina packages.
*/
public static final String SENDFILE_SUPPORTED_ATTR = org.apache.coyote.Constants.SENDFILE_SUPPORTED_ATTR;
/**
* The request attribute that is set to the value of {@code Boolean.TRUE} if
* {@link org.apache.catalina.filters.RemoteIpFilter} determines that this request was submitted via a secure
* channel.
*/
public static final String REMOTE_IP_FILTER_SECURE = "org.apache.catalina.filters.RemoteIpFilter.secure";
/**
* The request attribute that can be used by a servlet to pass to the connector the name of the file that is to be
* served by sendfile. The value should be {@code String} that is {@code File.getCanonicalPath()} of the file to be
* served. Duplicated here for neater code in the catalina packages.
*/
public static final String SENDFILE_FILENAME_ATTR = org.apache.coyote.Constants.SENDFILE_FILENAME_ATTR;
/**
* The request attribute that can be used by a servlet to pass to the connector the start offset of the part of a
* file that is to be served by sendfile. The value should be {@code Long}. To serve complete file the value should
* be {@code Long.valueOf(0)}. Duplicated here for neater code in the catalina packages.
*/
public static final String SENDFILE_FILE_START_ATTR = org.apache.coyote.Constants.SENDFILE_FILE_START_ATTR;
/**
* The request attribute that can be used by a servlet to pass to the connector the end offset (not including) of
* the part of a file that is to be served by sendfile. The value should be {@code java.lang.Long}. To serve
* complete file the value should be equal to the length of the file. Duplicated here for neater code in the
* catalina packages.
*/
public static final String SENDFILE_FILE_END_ATTR = org.apache.coyote.Constants.SENDFILE_FILE_END_ATTR;
/**
* The request attribute under which we store the array of X509Certificate objects representing the certificate
* chain presented by our client, if any.
*/
public static final String CERTIFICATES_ATTR = "jakarta.servlet.request.X509Certificate";
/**
* The request attribute under which we store the name of the cipher suite being used on an SSL connection (as an
* object of type {@link String}).
*/
public static final String CIPHER_SUITE_ATTR = "jakarta.servlet.request.cipher_suite";
/**
* The request attribute under which we store the key size being used for this SSL connection (as an object of type
* {@link Integer}).
*/
public static final String KEY_SIZE_ATTR = "jakarta.servlet.request.key_size";
/**
* The request attribute under which we store the session id being used for this SSL connection (as an object of
* type {@link String}).
*/
public static final String SSL_SESSION_ID_ATTR = "jakarta.servlet.request.ssl_session_id";
/**
* The request attribute key for the session manager. This one is a Tomcat extension to the Servlet spec.
*/
public static final String SSL_SESSION_MGR_ATTR = "jakarta.servlet.request.ssl_session_mgr";
// ------------------------------------------------- Session attribute names
/**
* The subject under which the AccessControlContext is running.
*
* @deprecated Will be removed from Tomcat 11 onwards when support for the SecurityManager is removed.
*/
@Deprecated
public static final String SUBJECT_ATTR = "javax.security.auth.subject";
// ------------------------------------------ ServletContext attribute names
/**
* The servlet context attribute under which we store the alternate deployment descriptor for this web application
*/
public static final String ALT_DD_ATTR = "org.apache.catalina.deploy.alt_dd";
/**
* The servlet context attribute under which we store the class path for our application class loader (as an object
* of type String), delimited with the appropriate path delimiter for this platform.
*/
public static final String CLASS_PATH_ATTR = "org.apache.catalina.jsp_classpath";
/**
* Name of the ServletContext attribute under which we store the context Realm's CredentialHandler (if both the
* Realm and the CredentialHandler exist).
*/
public static final String CREDENTIAL_HANDLER = "org.apache.catalina.CredentialHandler";
/**
* The WebResourceRoot which is associated with the context. This can be used to manipulate static files.
*/
public static final String RESOURCES_ATTR = "org.apache.catalina.resources";
/**
* Name of the ServletContext attribute under which we store the web application version string (the text that
* appears after ## when parallel deployment is used).
*/
public static final String WEBAPP_VERSION = "org.apache.catalina.webappVersion";
// --------------------------- ServletContext initialisation parameter names
/**
* Name of the ServletContext init-param that determines if the JSP engine should validate *.tld files when parsing
* them.
* <p>
* This must be kept in sync with org.apache.jasper.Constants
*/
public static final String JASPER_XML_VALIDATION_TLD_INIT_PARAM = "org.apache.jasper.XML_VALIDATE_TLD";
/**
* Name of the ServletContext init-param that determines if the JSP engine will block external entities from being
* used in *.tld, *.jspx, *.tagx and tagplugin.xml files.
* <p>
* This must be kept in sync with org.apache.jasper.Constants
*/
public static final String JASPER_XML_BLOCK_EXTERNAL_INIT_PARAM = "org.apache.jasper.XML_BLOCK_EXTERNAL";
// --------------------------------------------------- System property names
/**
* Name of the system property containing the tomcat product installation path
*/
public static final String CATALINA_HOME_PROP = org.apache.catalina.startup.Constants.CATALINA_HOME_PROP;
/**
* Name of the system property containing the tomcat instance installation path
*/
public static final String CATALINA_BASE_PROP = org.apache.catalina.startup.Constants.CATALINA_BASE_PROP;
// -------------------------------------------------------- Global constants
/**
* The flag which controls strict servlet specification compliance. Setting this flag to {@code true} will change
* the defaults for other settings.
*/
public static final boolean STRICT_SERVLET_COMPLIANCE =
Boolean.getBoolean("org.apache.catalina.STRICT_SERVLET_COMPLIANCE");
/**
* Has security been turned on?
*/
public static final boolean IS_SECURITY_ENABLED = (System.getSecurityManager() != null);
/**
* Default domain for MBeans if none can be determined
*/
public static final String DEFAULT_MBEAN_DOMAIN = "Catalina";
// ----------------------------------------- Specification related constants
public static final String CONTENT_TYPE_FORM_URL_ENCODING = "application/x-www-form-urlencoded";
}
|
