ClickHouse/dbms/src/IO/HTTPCommon.cpp

#include <DB/IO/HTTPCommon.h>

#include <Poco/Net/AcceptCertificateHandler.h>
#include <Poco/Net/Context.h>
#include <Poco/Net/HTTPServerResponse.h>
#include <Poco/Net/InvalidCertificateHandler.h>
#include <Poco/Net/PrivateKeyPassphraseHandler.h>
#include <Poco/Net/RejectCertificateHandler.h>
#include <Poco/Net/SSLManager.h>
#include <Poco/Util/Application.h>
#include <Poco/Util/Application.h>
#include <Poco/Version.h>


namespace DB
{

void setResponseDefaultHeaders(Poco::Net::HTTPServerResponse & response)
{
	if (!response.getKeepAlive())
		return;

	Poco::Timespan keep_alive_timeout(Poco::Util::Application::instance().config().getInt("keep_alive_timeout", 10), 0);
	if (keep_alive_timeout.totalSeconds())
		response.set("Keep-Alive", "timeout=" + std::to_string(keep_alive_timeout.totalSeconds()));
}

std::once_flag client_ssl_init_once;

void clientSSLInit()
{
	// http://stackoverflow.com/questions/18315472/https-request-in-c-using-poco
	Poco::Net::initializeSSL();
	bool insecure = Poco::Util::Application::instance().config().getBool("https_client_insecure", false);
	Poco::SharedPtr<Poco::Net::InvalidCertificateHandler> ptr_handler(insecure
			? dynamic_cast<Poco::Net::InvalidCertificateHandler *>(new Poco::Net::AcceptCertificateHandler(true))
			: dynamic_cast<Poco::Net::InvalidCertificateHandler *>(new Poco::Net::RejectCertificateHandler(true)));
	Poco::Net::Context::Ptr ptr_context(new Poco::Net::Context(Poco::Net::Context::CLIENT_USE,
		"",
		"",
		"",
		insecure ? Poco::Net::Context::VERIFY_NONE : Poco::Net::Context::VERIFY_RELAXED,
		9,
		true));
	ptr_context->enableSessionCache(true);
#if POCO_VERSION >= 0x01070000
	ptr_context->disableProtocols(Poco::Net::Context::PROTO_SSLV2 | Poco::Net::Context::PROTO_SSLV3);
	ptr_context->preferServerCiphers();
#endif
	Poco::Net::SSLManager::instance().initializeClient(nullptr, ptr_handler, ptr_context);
}

}
Add header Keep-Alive: timeout=.. to http server responce [#METR-23933] 2016-12-30 20:52:56 +00:00			`#include <DB/IO/HTTPCommon.h>`

HTTPDictionarySource support HTTPS (#510) * https support in dictionaries * Style 2017-02-27 21:07:57 +00:00			`#include <Poco/Net/AcceptCertificateHandler.h>`
			`#include <Poco/Net/Context.h>`
Moved code to .cpp [#CLICKHOUSE-2027]. 2017-01-30 05:13:58 +00:00			`#include <Poco/Net/HTTPServerResponse.h>`
HTTPDictionarySource support HTTPS (#510) * https support in dictionaries * Style 2017-02-27 21:07:57 +00:00			`#include <Poco/Net/InvalidCertificateHandler.h>`
			`#include <Poco/Net/PrivateKeyPassphraseHandler.h>`
			`#include <Poco/Net/RejectCertificateHandler.h>`
			`#include <Poco/Net/SSLManager.h>`
			`#include <Poco/Util/Application.h>`
			`#include <Poco/Util/Application.h>`
			`#include <Poco/Version.h>`
Moved code to .cpp [#CLICKHOUSE-2027]. 2017-01-30 05:13:58 +00:00
Add header Keep-Alive: timeout=.. to http server responce [#METR-23933] 2016-12-30 20:52:56 +00:00
			`namespace DB`
			`{`

Fixed style [#METR-23933]. 2016-12-31 02:05:37 +00:00			`void setResponseDefaultHeaders(Poco::Net::HTTPServerResponse & response)`
			`{`
Add header Keep-Alive: timeout=.. to http server responce [#METR-23933] 2016-12-30 20:52:56 +00:00			`if (!response.getKeepAlive())`
			`return;`

			`Poco::Timespan keep_alive_timeout(Poco::Util::Application::instance().config().getInt("keep_alive_timeout", 10), 0);`
			`if (keep_alive_timeout.totalSeconds())`
			`response.set("Keep-Alive", "timeout=" + std::to_string(keep_alive_timeout.totalSeconds()));`
			`}`

HTTPDictionarySource support HTTPS (#510) * https support in dictionaries * Style 2017-02-27 21:07:57 +00:00			`std::once_flag client_ssl_init_once;`

			`void clientSSLInit()`
			`{`
			`// http://stackoverflow.com/questions/18315472/https-request-in-c-using-poco`
			`Poco::Net::initializeSSL();`
http server: allow custom root response (#553) * http server: allow custom root responce * fix configs * Update Server.cpp 2017-03-04 02:00:21 +00:00			`bool insecure = Poco::Util::Application::instance().config().getBool("https_client_insecure", false);`
HTTPDictionarySource support HTTPS (#510) * https support in dictionaries * Style 2017-02-27 21:07:57 +00:00			`Poco::SharedPtr<Poco::Net::InvalidCertificateHandler> ptr_handler(insecure`
			`? dynamic_cast<Poco::Net::InvalidCertificateHandler *>(new Poco::Net::AcceptCertificateHandler(true))`
			`: dynamic_cast<Poco::Net::InvalidCertificateHandler *>(new Poco::Net::RejectCertificateHandler(true)));`
			`Poco::Net::Context::Ptr ptr_context(new Poco::Net::Context(Poco::Net::Context::CLIENT_USE,`
			`"",`
			`"",`
			`"",`
			`insecure ? Poco::Net::Context::VERIFY_NONE : Poco::Net::Context::VERIFY_RELAXED,`
			`9,`
			`true));`
			`ptr_context->enableSessionCache(true);`
			`#if POCO_VERSION >= 0x01070000`
			`ptr_context->disableProtocols(Poco::Net::Context::PROTO_SSLV2 \| Poco::Net::Context::PROTO_SSLV3);`
			`ptr_context->preferServerCiphers();`
			`#endif`
			`Poco::Net::SSLManager::instance().initializeClient(nullptr, ptr_handler, ptr_context);`
			`}`

Add header Keep-Alive: timeout=.. to http server responce [#METR-23933] 2016-12-30 20:52:56 +00:00			`}`