etesync-android/app/src/main/java/at/bitfire/davdroid/HttpClient.java

/*
 * Copyright © 2013 – 2015 Ricki Hirner (bitfire web engineering).
 * All rights reserved. This program and the accompanying materials
 * are made available under the terms of the GNU Public License v3.0
 * which accompanies this distribution, and is available at
 * http://www.gnu.org/licenses/gpl.html
 */

package at.bitfire.davdroid;

import android.accounts.Account;
import android.content.Context;
import android.os.Build;
import android.support.annotation.NonNull;

import java.io.IOException;
import java.text.SimpleDateFormat;
import java.util.Date;
import java.util.Locale;
import java.util.concurrent.TimeUnit;
import java.util.logging.Level;
import java.util.logging.Logger;

import at.bitfire.dav4android.BasicDigestAuthenticator;
import lombok.RequiredArgsConstructor;
import okhttp3.Credentials;
import okhttp3.Interceptor;
import okhttp3.OkHttpClient;
import okhttp3.Request;
import okhttp3.Response;
import okhttp3.logging.HttpLoggingInterceptor;

public class HttpClient {
    private static final OkHttpClient client = new OkHttpClient();
    private static final UserAgentInterceptor userAgentInterceptor = new UserAgentInterceptor();

    private static final String userAgent;
    static {
        String date = new SimpleDateFormat("yyyy/MM/dd", Locale.US).format(new Date(BuildConfig.buildTime));
        userAgent = "DAVdroid/" + BuildConfig.VERSION_NAME + " (" + date + "; dav4android; okhttp3) Android/" + Build.VERSION.RELEASE;
    }

    private HttpClient() {
    }

    public static OkHttpClient create(Context context, Account account, @NonNull final Logger logger) {
        OkHttpClient.Builder builder = client.newBuilder();

        // use MemorizingTrustManager to manage self-signed certificates
        if (App.getSslSocketFactoryCompat() != null)
            builder.sslSocketFactory(App.getSslSocketFactoryCompat());
        if (App.getHostnameVerifier() != null)
            builder.hostnameVerifier(App.getHostnameVerifier());

        // set timeouts
        builder.connectTimeout(30, TimeUnit.SECONDS);
        builder.writeTimeout(30, TimeUnit.SECONDS);
        builder.readTimeout(120, TimeUnit.SECONDS);

        // don't allow redirects, because it would break PROPFIND handling
        builder.followRedirects(false);

        // add User-Agent to every request
        builder.addNetworkInterceptor(userAgentInterceptor);

        // add cookie store for non-persistent cookies (some services like Horde use cookies for session tracking)
        builder.cookieJar(MemoryCookieStore.INSTANCE);

        if (context != null && account != null) {
            // use account settings for authentication and logging
            AccountSettings settings = new AccountSettings(context, account);

            if (settings.preemptiveAuth())
                builder.addNetworkInterceptor(new PreemptiveAuthenticationInterceptor(settings.username(), settings.password()));
            else
                builder.authenticator(new BasicDigestAuthenticator(null, settings.username(), settings.password()));
        }

        if (logger.isLoggable(Level.FINEST)) {
            HttpLoggingInterceptor loggingInterceptor = new HttpLoggingInterceptor(new HttpLoggingInterceptor.Logger() {
                @Override
                public void log(String message) {
                    logger.finest(message);
                }
            });
            loggingInterceptor.setLevel(HttpLoggingInterceptor.Level.BODY);
            builder.addInterceptor(loggingInterceptor);
        }

        return builder.build();
    }

    public static OkHttpClient create(Context context, Account account) {
        return create(context, account, App.log);
    }

    private static OkHttpClient.Builder addAuthentication(@NonNull OkHttpClient.Builder builder, @NonNull String username, @NonNull String password, boolean preemptive) {
        if (preemptive)
            builder.addNetworkInterceptor(new PreemptiveAuthenticationInterceptor(username, password));
        else
            builder.authenticator(new BasicDigestAuthenticator(null, username, password));
        return builder;
    }

    public static OkHttpClient addAuthentication(@NonNull OkHttpClient client, @NonNull String username, @NonNull String password, boolean preemptive) {
        OkHttpClient.Builder builder = client.newBuilder();
        addAuthentication(builder, username, password, preemptive);
        return builder.build();
    }

    public static OkHttpClient addAuthentication(@NonNull OkHttpClient client, @NonNull String host, @NonNull String username, @NonNull String password) {
        return client.newBuilder()
                .authenticator(new BasicDigestAuthenticator(host, username, password))
                .build();
    }


    static class UserAgentInterceptor implements Interceptor {
        @Override
        public Response intercept(Chain chain) throws IOException {
            Locale locale = Locale.getDefault();
            Request request = chain.request().newBuilder()
                    .header("User-Agent", userAgent)
                    .header("Accept-Language", locale.getLanguage() + "-" + locale.getCountry() + ", " + locale.getLanguage() + ";q=0.7, *;q=0.5")
                    .build();
            return chain.proceed(request);
        }
    }

    @RequiredArgsConstructor
    static class PreemptiveAuthenticationInterceptor implements Interceptor {
        final String username, password;

        @Override
        public Response intercept(Chain chain) throws IOException {
            App.log.fine("Adding basic authorization header for user " + username);
            Request request = chain.request().newBuilder()
                    .header("Authorization", Credentials.basic(username, password))
                    .build();
            return chain.proceed(request);
        }
    }

}
-												Resource detection with dav4android

* handle authentication (only Basic auth yet)
* rewrite DavResourceFinder to use dav4android

											
										
										
											9 years ago
+								/*
 								 * Copyright © 2013 – 2015 Ricki Hirner (bitfire web engineering).
 								 * All rights reserved. This program and the accompanying materials
 								 * are made available under the terms of the GNU Public License v3.0
 								 * which accompanies this distribution, and is available at
 								 * http://www.gnu.org/licenses/gpl.html
 								 */
 								package at.bitfire.davdroid;
-												Refactoring

* move AccountSettings up to package context
* HttpClient: take authentication from AccountSettings in the constructor
* App: provide global instance of MemorizingTrustManager
* App: provide global Java logger, optionally with verbose and external file logging
* LoginCredentials: moved from inner-class into setup package

											
										
										
											8 years ago
+								import android.accounts.Account;
-												Integrate MemorizingTrustManager by Georg Lukas

											
										
										
											9 years ago
+								import android.content.Context;
-												Contact synchronization logic

* use VERSION_CODE and buildTime from BuildConfig
* new HTTP User-Agent, VCard PRODID values
* contact sync: store CTag in SyncState
* sync logic: upload contacts, check CTag, multiget

											
										
										
											9 years ago
+								import android.os.Build;
-												Use java.util.logging instead of sl4fj

											
										
										
											8 years ago
+								import android.support.annotation.NonNull;
-												Contact synchronization logic

* use VERSION_CODE and buildTime from BuildConfig
* new HTTP User-Agent, VCard PRODID values
* contact sync: store CTag in SyncState
* sync logic: upload contacts, check CTag, multiget

											
										
										
											9 years ago
-												Resource detection with dav4android

* handle authentication (only Basic auth yet)
* rewrite DavResourceFinder to use dav4android

											
										
										
											9 years ago
+								import java.io.IOException;
-												Contact synchronization logic

* use VERSION_CODE and buildTime from BuildConfig
* new HTTP User-Agent, VCard PRODID values
* contact sync: store CTag in SyncState
* sync logic: upload contacts, check CTag, multiget

											
										
										
											9 years ago
+								import java.text.SimpleDateFormat;
-												BuildConfig: use build time instead of current time for timestamp

											
										
										
											9 years ago
+								import java.util.Date;
-												Version 0.9 ready!

* fix lint warnings
* line-break too long messages of network trace logs
* DebugInfoActivity "send": attach log file instead if sending it as plain text
* revert to ez-vcard 0.9.6 because of https://github.com/mangstadt/ez-vcard/issues/33
* German translations

											
										
										
											9 years ago
+								import java.util.Locale;
-												Resource detection with dav4android

* handle authentication (only Basic auth yet)
* rewrite DavResourceFinder to use dav4android

											
										
										
											9 years ago
+								import java.util.concurrent.TimeUnit;
-												Refactoring

* move AccountSettings up to package context
* HttpClient: take authentication from AccountSettings in the constructor
* App: provide global instance of MemorizingTrustManager
* App: provide global Java logger, optionally with verbose and external file logging
* LoginCredentials: moved from inner-class into setup package

											
										
										
											8 years ago
+								import java.util.logging.Level;
 								import java.util.logging.Logger;
-												Resource detection with dav4android

* handle authentication (only Basic auth yet)
* rewrite DavResourceFinder to use dav4android

											
										
										
											9 years ago
-												Support Basic and Digest auth

											
										
										
											9 years ago
+								import at.bitfire.dav4android.BasicDigestAuthenticator;
-												Resource detection with dav4android

* handle authentication (only Basic auth yet)
* rewrite DavResourceFinder to use dav4android

											
										
										
											9 years ago
+								import lombok.RequiredArgsConstructor;
-												Service database

* HttpClient: authentication that is limited to a host name is never preemptive
* DavResourceFinder: service configuration == null means that this service is not available
* new SQLite database for CalDAV/CardDAV services
* added AccountDetailsFragment, which asks for account name and then finishes account creation
* updated AccountListFragment

											
										
										
											9 years ago
+								import okhttp3.Credentials;
 								import okhttp3.Interceptor;
 								import okhttp3.OkHttpClient;
 								import okhttp3.Request;
 								import okhttp3.Response;
 								import okhttp3.logging.HttpLoggingInterceptor;
-												Resource detection with dav4android

* handle authentication (only Basic auth yet)
* rewrite DavResourceFinder to use dav4android

											
										
										
											9 years ago
-												Upgrade to okhttp3

											
										
										
											9 years ago
+								public class HttpClient {
 								    private static final OkHttpClient client = new OkHttpClient();
 								    private static final UserAgentInterceptor userAgentInterceptor = new UserAgentInterceptor();
-												Contact synchronization logic

* use VERSION_CODE and buildTime from BuildConfig
* new HTTP User-Agent, VCard PRODID values
* contact sync: store CTag in SyncState
* sync logic: upload contacts, check CTag, multiget

											
										
										
											9 years ago
-												Upgrade to okhttp3

											
										
										
											9 years ago
+								    private static final String userAgent;
-												Contact synchronization logic

* use VERSION_CODE and buildTime from BuildConfig
* new HTTP User-Agent, VCard PRODID values
* contact sync: store CTag in SyncState
* sync logic: upload contacts, check CTag, multiget

											
										
										
											9 years ago
+								    static {
-												BuildConfig: use build time instead of current time for timestamp

											
										
										
											9 years ago
+								        String date = new SimpleDateFormat("yyyy/MM/dd", Locale.US).format(new Date(BuildConfig.buildTime));
-												Upgrade to okhttp3

											
										
										
											9 years ago
+								        userAgent = "DAVdroid/" + BuildConfig.VERSION_NAME + " (" + date + "; dav4android; okhttp3) Android/" + Build.VERSION.RELEASE;
-												Contact synchronization logic

* use VERSION_CODE and buildTime from BuildConfig
* new HTTP User-Agent, VCard PRODID values
* contact sync: store CTag in SyncState
* sync logic: upload contacts, check CTag, multiget

											
										
										
											9 years ago
+								    }
-												Resource detection with dav4android

* handle authentication (only Basic auth yet)
* rewrite DavResourceFinder to use dav4android

											
										
										
											9 years ago
-												Upgrade to okhttp3

											
										
										
											9 years ago
+								    private HttpClient() {
 								    }
-												Resource detection with dav4android

* handle authentication (only Basic auth yet)
* rewrite DavResourceFinder to use dav4android

											
										
										
											9 years ago
-												Use java.util.logging instead of sl4fj

											
										
										
											8 years ago
+								    public static OkHttpClient create(Context context, Account account, @NonNull final Logger logger) {
-												Upgrade to okhttp3

											
										
										
											9 years ago
+								        OkHttpClient.Builder builder = client.newBuilder();
-												Integrate MemorizingTrustManager by Georg Lukas

											
										
										
											9 years ago
-												Refactoring

* move AccountSettings up to package context
* HttpClient: take authentication from AccountSettings in the constructor
* App: provide global instance of MemorizingTrustManager
* App: provide global Java logger, optionally with verbose and external file logging
* LoginCredentials: moved from inner-class into setup package

											
										
										
											8 years ago
+								        // use MemorizingTrustManager to manage self-signed certificates
 								        if (App.getSslSocketFactoryCompat() != null)
 								            builder.sslSocketFactory(App.getSslSocketFactoryCompat());
 								        if (App.getHostnameVerifier() != null)
 								            builder.hostnameVerifier(App.getHostnameVerifier());
-												Integrate MemorizingTrustManager by Georg Lukas

											
										
										
											9 years ago
-												Contacts sync logic

* download external resources (contact images)
* improve ETag handling
* contacts: set UNGROUPED_VISIBLE to 1

											
										
										
											9 years ago
+								        // set timeouts
-												Upgrade to okhttp3

											
										
										
											9 years ago
+								        builder.connectTimeout(30, TimeUnit.SECONDS);
 								        builder.writeTimeout(30, TimeUnit.SECONDS);
 								        builder.readTimeout(120, TimeUnit.SECONDS);
 								        // don't allow redirects, because it would break PROPFIND handling
 								        builder.followRedirects(false);
-												Contact synchronization logic

* use VERSION_CODE and buildTime from BuildConfig
* new HTTP User-Agent, VCard PRODID values
* contact sync: store CTag in SyncState
* sync logic: upload contacts, check CTag, multiget

											
										
										
											9 years ago
 								        // add User-Agent to every request
-												Upgrade to okhttp3

											
										
										
											9 years ago
+								        builder.addNetworkInterceptor(userAgentInterceptor);
-												Contacts sync logic

* download external resources (contact images)
* improve ETag handling
* contacts: set UNGROUPED_VISIBLE to 1

											
										
										
											9 years ago
-												Add basic support for cookies

* add basic support for cookies (doesn't work for URLs with ports: https://code.google.com/p/android/issues/detail?id=193475)
* MemorizingTrustManager: log reason for inaccessible key store files

											
										
										
											9 years ago
+								        // add cookie store for non-persistent cookies (some services like Horde use cookies for session tracking)
-												Upgrade to okhttp3

											
										
										
											9 years ago
+								        builder.cookieJar(MemoryCookieStore.INSTANCE);
-												Add basic support for cookies

* add basic support for cookies (doesn't work for URLs with ports: https://code.google.com/p/android/issues/detail?id=193475)
* MemorizingTrustManager: log reason for inaccessible key store files

											
										
										
											9 years ago
-												Refactoring

* move AccountSettings up to package context
* HttpClient: take authentication from AccountSettings in the constructor
* App: provide global instance of MemorizingTrustManager
* App: provide global Java logger, optionally with verbose and external file logging
* LoginCredentials: moved from inner-class into setup package

											
										
										
											8 years ago
+								        if (context != null && account != null) {
 								            // use account settings for authentication and logging
 								            AccountSettings settings = new AccountSettings(context, account);
 								            if (settings.preemptiveAuth())
 								                builder.addNetworkInterceptor(new PreemptiveAuthenticationInterceptor(settings.username(), settings.password()));
 								            else
 								                builder.authenticator(new BasicDigestAuthenticator(null, settings.username(), settings.password()));
 								        }
-												Use java.util.logging instead of sl4fj

											
										
										
											8 years ago
+								        if (logger.isLoggable(Level.FINEST)) {
 								            HttpLoggingInterceptor loggingInterceptor = new HttpLoggingInterceptor(new HttpLoggingInterceptor.Logger() {
 								                @Override
 								                public void log(String message) {
 								                    logger.finest(message);
 								                }
 								            });
 								            loggingInterceptor.setLevel(HttpLoggingInterceptor.Level.BODY);
 								            builder.addInterceptor(loggingInterceptor);
 								        }
-												Refactoring

* move AccountSettings up to package context
* HttpClient: take authentication from AccountSettings in the constructor
* App: provide global instance of MemorizingTrustManager
* App: provide global Java logger, optionally with verbose and external file logging
* LoginCredentials: moved from inner-class into setup package

											
										
										
											8 years ago
-												Upgrade to okhttp3

											
										
										
											9 years ago
+								        return builder.build();
-												Resource detection with dav4android

* handle authentication (only Basic auth yet)
* rewrite DavResourceFinder to use dav4android

											
										
										
											9 years ago
+								    }
-												Use java.util.logging instead of sl4fj

											
										
										
											8 years ago
+								    public static OkHttpClient create(Context context, Account account) {
 								        return create(context, account, App.log);
 								    }
-												Refactoring

* move AccountSettings up to package context
* HttpClient: take authentication from AccountSettings in the constructor
* App: provide global instance of MemorizingTrustManager
* App: provide global Java logger, optionally with verbose and external file logging
* LoginCredentials: moved from inner-class into setup package

											
										
										
											8 years ago
+								    private static OkHttpClient.Builder addAuthentication(@NonNull OkHttpClient.Builder builder, @NonNull String username, @NonNull String password, boolean preemptive) {
-												Sync manager optimization

* allow cancellation of synchronization within appropriate time
* sync error notification: use loader, show all accounts, show whether JB Workaround is installed, reorder

											
										
										
											9 years ago
+								        if (preemptive)
-												Upgrade to okhttp3

											
										
										
											9 years ago
+								            builder.addNetworkInterceptor(new PreemptiveAuthenticationInterceptor(username, password));
-												Sync manager optimization

* allow cancellation of synchronization within appropriate time
* sync error notification: use loader, show all accounts, show whether JB Workaround is installed, reorder

											
										
										
											9 years ago
+								        else
-												Upgrade to okhttp3

											
										
										
											9 years ago
+								            builder.authenticator(new BasicDigestAuthenticator(null, username, password));
-												Refactoring

* move AccountSettings up to package context
* HttpClient: take authentication from AccountSettings in the constructor
* App: provide global instance of MemorizingTrustManager
* App: provide global Java logger, optionally with verbose and external file logging
* LoginCredentials: moved from inner-class into setup package

											
										
										
											8 years ago
+								        return builder;
-												Sync manager optimization

* allow cancellation of synchronization within appropriate time
* sync error notification: use loader, show all accounts, show whether JB Workaround is installed, reorder

											
										
										
											9 years ago
+								    }
-												Refactoring

* move AccountSettings up to package context
* HttpClient: take authentication from AccountSettings in the constructor
* App: provide global instance of MemorizingTrustManager
* App: provide global Java logger, optionally with verbose and external file logging
* LoginCredentials: moved from inner-class into setup package

											
										
										
											8 years ago
+								    public static OkHttpClient addAuthentication(@NonNull OkHttpClient client, @NonNull String username, @NonNull String password, boolean preemptive) {
 								        OkHttpClient.Builder builder = client.newBuilder();
 								        addAuthentication(builder, username, password, preemptive);
 								        return builder.build();
-												Proof of concept: create remote address books, delete remote collections

											
										
										
											8 years ago
+								    }
-												Refactoring

* move AccountSettings up to package context
* HttpClient: take authentication from AccountSettings in the constructor
* App: provide global instance of MemorizingTrustManager
* App: provide global Java logger, optionally with verbose and external file logging
* LoginCredentials: moved from inner-class into setup package

											
										
										
											8 years ago
+								    public static OkHttpClient addAuthentication(@NonNull OkHttpClient client, @NonNull String host, @NonNull String username, @NonNull String password) {
 								        return client.newBuilder()
-												Upgrade to okhttp3

											
										
										
											9 years ago
+								                .authenticator(new BasicDigestAuthenticator(host, username, password))
 								                .build();
 								    }
-												Contact synchronization logic

* use VERSION_CODE and buildTime from BuildConfig
* new HTTP User-Agent, VCard PRODID values
* contact sync: store CTag in SyncState
* sync logic: upload contacts, check CTag, multiget

											
										
										
											9 years ago
 								    static class UserAgentInterceptor implements Interceptor {
 								        @Override
 								        public Response intercept(Chain chain) throws IOException {
-												Rewrite initial configuration detection

* HttpClient: add Accept-Language header
* HttpClient: fix MemoryCookieStore NullPointerException
* DavResourceFinder: check for home sets, too

											
										
										
											9 years ago
+								            Locale locale = Locale.getDefault();
-												Contact synchronization logic

* use VERSION_CODE and buildTime from BuildConfig
* new HTTP User-Agent, VCard PRODID values
* contact sync: store CTag in SyncState
* sync logic: upload contacts, check CTag, multiget

											
										
										
											9 years ago
+								            Request request = chain.request().newBuilder()
 								                    .header("User-Agent", userAgent)
-												Rewrite initial configuration detection

* HttpClient: add Accept-Language header
* HttpClient: fix MemoryCookieStore NullPointerException
* DavResourceFinder: check for home sets, too

											
										
										
											9 years ago
+								                    .header("Accept-Language", locale.getLanguage() + "-" + locale.getCountry() + ", " + locale.getLanguage() + ";q=0.7, *;q=0.5")
-												Contact synchronization logic

* use VERSION_CODE and buildTime from BuildConfig
* new HTTP User-Agent, VCard PRODID values
* contact sync: store CTag in SyncState
* sync logic: upload contacts, check CTag, multiget

											
										
										
											9 years ago
+								                    .build();
 								            return chain.proceed(request);
 								        }
-												Resource detection with dav4android

* handle authentication (only Basic auth yet)
* rewrite DavResourceFinder to use dav4android

											
										
										
											9 years ago
+								    }
 								    @RequiredArgsConstructor
 								    static class PreemptiveAuthenticationInterceptor implements Interceptor {
 								        final String username, password;
 								        @Override
 								        public Response intercept(Chain chain) throws IOException {
-												Improve resource detection

* honour calendar-proxy-read/write-for property
* ignore errors when quering member groups for home sets
* remove home sets and collections from the service database not only on 404, but 403, 404 and 410
* fix crash bug when <displayname> was defined, but empty

											
										
										
											8 years ago
+								            App.log.fine("Adding basic authorization header for user " + username);
-												Contact synchronization logic

* use VERSION_CODE and buildTime from BuildConfig
* new HTTP User-Agent, VCard PRODID values
* contact sync: store CTag in SyncState
* sync logic: upload contacts, check CTag, multiget

											
										
										
											9 years ago
+								            Request request = chain.request().newBuilder()
-												Resource detection with dav4android

* handle authentication (only Basic auth yet)
* rewrite DavResourceFinder to use dav4android

											
										
										
											9 years ago
+								                    .header("Authorization", Credentials.basic(username, password))
 								                    .build();
 								            return chain.proceed(request);
 								        }
 								    }
 								}