堆栈内存溢出
  简体   繁体   English

如何关闭与Netty CorsHandler的连接

[英]How to close connection with netty CorsHandler

 原文  2017-09-26 20:20:11       java/ cors/ netty

问题描述

How do you make netty's CorsHandler close its connection? 如何使nettyCorsHandler关闭其连接? It closes by default when the origin passes but it does not close when the origin is not allowed. 默认情况下,原点通过时关闭,但不允许原点时不关闭。 I setup a server like this with the CorsHandler instance. 我使用CorsHandler实例设置了这样的服务器。 

import io.netty.bootstrap.ServerBootstrap;
import io.netty.channel.*;
import io.netty.channel.nio.NioEventLoopGroup;
import io.netty.channel.socket.nio.NioServerSocketChannel;
import io.netty.handler.codec.http.HttpMethod;
import io.netty.handler.codec.http.HttpObjectAggregator;
import io.netty.handler.codec.http.HttpServerCodec;
import io.netty.handler.codec.http.cors.CorsConfigBuilder;
import io.netty.handler.codec.http.cors.CorsHandler;
import io.netty.handler.logging.LogLevel;
import io.netty.handler.logging.LoggingHandler;

/**
 * Runs netty with a CORS handler on 8080
 */
public class NettyCorsApp {
    private static final int PORT = 8080;

    public static void main(String[] args) throws Exception {
        EventLoopGroup eventLoopGroup = new NioEventLoopGroup();
        try {
            ServerBootstrap bootstrap = new ServerBootstrap()
                    .group(eventLoopGroup)
                    .handler(new LoggingHandler(LogLevel.INFO))
                    .childHandler(new ChannelInitializer<Channel>() {
                        @Override
                        protected void initChannel(Channel ch) throws Exception {
                            ChannelPipeline pipeline = ch.pipeline();
                            pipeline.addLast(new HttpServerCodec());
                            pipeline.addLast(new HttpObjectAggregator(1024 * 1024)); // 1MB
                            pipeline.addLast(new CorsHandler(
                                    CorsConfigBuilder.forOrigin("http://example.com")
                                            .allowedRequestMethods(HttpMethod.POST)
                                            .build())
                            );
                        }
                    })
                    .channel(NioServerSocketChannel.class);
            Channel channel = bootstrap.bind(PORT).sync().channel();
            channel.closeFuture().sync();
        } finally {
            eventLoopGroup.shutdownGracefully();
        }
    }
}

When you request from an origin that passes the CORS check, the CorsHandler closes the connection like you would expect. 当您从通过CORS检查的来源请求时,CorsHandler会像您期望的那样关闭连接。 

$ curl -sv -X OPTIONS -H 'Origin: http://example.com' -H 'Access-Control-Request-Method: POST' http://localhost:8080
* Rebuilt URL to: http://localhost:8080/
*   Trying ::1...
* TCP_NODELAY set
* Connected to localhost (::1) port 8080 (#0)
> OPTIONS / HTTP/1.1
> Host: localhost:8080
> User-Agent: curl/7.54.0
> Accept: */*
> Origin: http://example.com
> Access-Control-Request-Method: POST
>
< HTTP/1.1 200 OK
< access-control-allow-origin: http://example.com
< vary: origin
< access-control-allow-methods: POST
< access-control-allow-headers:
< access-control-max-age: 0
< date: "Tue, 26 Sep 2017 20:03:53 GMT"
< content-length: 0
<
* Connection #0 to host localhost left intact

But when you request from an origin that does not pass the CORS check, it does not close the connection. 但是,当您从未通过CORS检查的来源请求时,它不会关闭连接。 

$ curl -sv -X OPTIONS -H 'Origin: http://invalid.com' -H 'Access-Control-Request-Method: POST' http://localhost:8080
* Rebuilt URL to: http://localhost:8080/
*   Trying ::1...
* TCP_NODELAY set
* Connected to localhost (::1) port 8080 (#0)
> OPTIONS / HTTP/1.1
> Host: localhost:8080
> User-Agent: curl/7.54.0
> Accept: */*
> Origin: http://invalid.com
> Access-Control-Request-Method: POST
>
< HTTP/1.1 200 OK
* no chunk, no close, no size. Assume close to signal end
<

This may be a bug in netty, if so I will submit it there. 这可能是netty的错误,如果是的话,我将在那里提交。

1 个解决方案

解决方案1
 1 已采纳  2017-09-29 14:36:04

Following what @Ferrybig pointed out, CorsHandler is not closing the connection intentionally because there is no Connection: close header in the request. 遵循@Ferrybig指出的内容, CorsHandler并不是故意关闭连接,因为请求中没有Connection: close标头。 Http 1.0 assumes the tcp connection should be closed by default and http 1.1 (which curl defafdults to) should stay open by default. Http 1.0假定默认情况下应关闭tcp连接,而默认情况下应保持http 1.1(curl defafdults到)的打开状态。

The reason curl did not exit on a bad origin is because CorsHandler did not include a Content-Length header in its response, which is a bug. curl没有从错误的原点退出的原因是因为CorsHandler中没有包含Content-Length标头,这是一个错误。

https://github.com/netty/netty/pull/7261 https://github.com/netty/netty/pull/7261

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 在 Netty 中关闭客户端连接 - Close client connection in Netty 如何使用Netty Reactor关闭TcpClient连接? - How can I close a TcpClient connection using Netty Reactor? 如何在netty中设置不关闭连接的读取超时? - How to set a read timeout in netty that does not close the connection? 如何保护Netty连接? - How to secure Netty connection? Netty客户端连接关闭太慢 - Netty client side connection close too slow Netty:如果它是一个“保持活跃”的连接,我应该关闭频道吗? - Netty: Should I close the Channel if it's a 'keep-alive' connection? 如何使用Netty关闭AsyncHttpClient以获取异步Http请求? - How to close AsyncHttpClient with Netty for an asynchronous Http request? 客户端关闭连接时,Netty 偶尔会产生“Connection reset by peer”异常 - Netty occasionally generates "Connection reset by peer" exception when client close connection 如何在没有工作组终止的情况下正确关闭 netty 通道 - How to correcly close netty channel without workgroup termination 如何在 Netty 中的 ssl 握手之前优雅地关闭通道? - How to close a channel gracefully before ssl handshake in Netty?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM