CIS 455/555: Internet and Web Systems



Similar documents
Java Servlet 3.0. Rajiv Mordani Spec Lead

Crawl Proxy Installation and Configuration Guide

Install guide for Websphere 7.0

Servlet 3.0. Alexis Moussine-Pouchkine. mercredi 13 avril 2011

Ch-03 Web Applications

SSC - Web applications and development Introduction and Java Servlet (II)

Web Development on the SOEN 6011 Server

The Server.xml File. Containers APPENDIX A. The Server Container

Web Applications. Originals of Slides and Source Code for Examples:

Sonatype CLM Enforcement Points - Continuous Integration (CI) Sonatype CLM Enforcement Points - Continuous Integration (CI)

Java Web Programming with Eclipse

Web Applications. For live Java training, please see training courses at

Workshop for WebLogic introduces new tools in support of Java EE 5.0 standards. The support for Java EE5 includes the following technologies:

Controlling Web Application Behavior

ACM Crossroads Student Magazine The ACM's First Electronic Publication

10. Java Servelet. Introduction

Web Container Components Servlet JSP Tag Libraries

Magento Search Extension TECHNICAL DOCUMENTATION

Introduction to J2EE Web Technologies

Please send your comments to:

Sonatype CLM for Maven. Sonatype CLM for Maven

CS108, Stanford Handout #33 Young. HW5 Web

COMP 112 Assignment 1: HTTP Servers

Glassfish, JAVA EE, Servlets, JSP, EJB

1 Recommended Readings. 2 Resources Required. 3 Compiling and Running on Linux

The HTTP Plug-in. Table of contents

Managing Data on the World Wide-Web

ArpViewer Manual Version Datum

SDK Code Examples Version 2.4.2

CDH installation & Application Test Report

Java 7 Recipes. Freddy Guime. vk» (,\['«** g!p#« Carl Dea. Josh Juneau. John O'Conner

Oracle Hyperion Financial Management Custom Pages Development Guide

Java EE Introduction, Content. Component Architecture: Why and How Java EE: Enterprise Java

Arjun V. Bala Page 20

Oracle Hyperion Financial Management Developer and Customization Guide

INTRODUCTION TO WEB TECHNOLOGY

Integrating the F5 BigIP with Blackboard

Installation Guide for contineo

Web Application Architecture (based J2EE 1.4 Tutorial)

PowerTier Web Development Tools 4

OpenTOSCA Release v1.1. Contact: Documentation Version: March 11, 2014 Current version:

ServletExec TM 6.0 Installation Guide. for Microsoft Internet Information Server SunONE Web Server Sun Java System Web Server and Apache HTTP Server

Web Server Configuration Guide

INSIDE SERVLETS. Server-Side Programming for the Java Platform. An Imprint of Addison Wesley Longman, Inc.

Server Setup and Configuration

White Paper March 1, Integrating AR System with Single Sign-On (SSO) authentication systems

Configuring the LCDS Load Test Tool

In this chapter, we lay the foundation for all our further discussions. We start

Introduction. Installation of SE S AM E BARCODE virtual machine distribution. (Windows / Mac / Linux)

JBoss SOAP Web Services User Guide. Version: M5

Building Java Servlets with Oracle JDeveloper

Novell Identity Manager

Tutorial 5: Developing Java applications

Supplement IV.E: Tutorial for Tomcat. For Introduction to Java Programming By Y. Daniel Liang

Content. Development Tools 2(63)

DeskNow. Ventia Pty. Ltd. Advanced setup. Version : 3.2 Date : 4 January 2007

D5.4.4 Integrated SemaGrow Stack API components

11.1 Web Server Operation

User Guide for VMware Adapter for SAP LVM VERSION 1.2

Jenkins on Windows with StreamBase

Installing and Running Tomcat 5.5

SOA Software: Troubleshooting Guide for Agents

DreamFactory & Modus Create Case Study

Wolfr am Lightweight Grid M TM anager USER GUIDE

In this chapter the concept of Servlets, not the entire Servlet specification, is

Struts 2 - Practical examples

Volume 1: Core Technologies Marty Hall Larry Brown. An Overview of Servlet & JSP Technology

MIGS Payment Client Installation Guide. EGate User Manual

HP Operations Orchestration Software

An Overview of Servlet & JSP Technology

Hadoop Tutorial. General Instructions

JMETER - MONITOR TEST PLAN

Application Servers - BEA WebLogic. Installing the Application Server

ReSTful OSGi Web Applications Tutorial. Khawaja Shams & Jeff Norris

ServletExec TM 5.0 User Guide

Desktop : Ubuntu Desktop, Ubuntu Desktop Server : RedHat EL 5, RedHat EL 6, Ubuntu Server, Ubuntu Server, CentOS 5, CentOS 6

Web Server Manual. Mike Burns Greg Pettyjohn Jay McCarthy November 20, 2006

Apache Tomcat. Load-balancing and Clustering. Mark Thomas, 20 November Pivotal Software, Inc. All rights reserved.

Tomcat 5 New Features

Kollaborate Server Installation Guide!! 1. Kollaborate Server! Installation Guide!

Web Services for Management Perl Library VMware ESX Server 3.5, VMware ESX Server 3i version 3.5, and VMware VirtualCenter 2.5

NetBeans IDE Field Guide

Secure Web Development Teaching Modules 1. Security Testing. 1.1 Security Practices for Software Verification

A Tool for Evaluation and Optimization of Web Application Performance

ZeroTurnaround License Server User Manual 1.4.0

SysPatrol - Server Security Monitor

LabVIEW Internet Toolkit User Guide

JAMF Software Server Installation Guide for Linux. Version 8.6

Builder User Guide. Version 5.4. Visual Rules Suite - Builder. Bosch Software Innovations

Microsoft Exchange Server

latest Release 0.2.6

Copyright 2013 Consona Corporation. All rights reserved

Hudson configuration manual

Transcription:

CIS 455/555: Internet and Web Systems Fall 2015 Assignment 1: Web and Application Server Milestone 1 due September 21, 2015, at 10:00pm EST Milestone 2 due October 6, 2015, at 10:00pm EST 1. Background We are all familiar with how one accesses a Web server via a browser. The big question is what is going on under the covers of the Web server: how does it serve data?, how does it manage multiple requests? what is necessary in order to provide the notion of sessions?, how is it extended?, and so on. This assignment focuses on developing an application server, i.e., a Web (HTTP) server that runs Java servlets, in two stages. In the first stage, you will implement a simple HTTP server for static content (i.e., files like images, style sheets, and HTML pages). In the second stage, you will expand this work to emulate a full-fledged application server that runs servlets. Java servlets are a popular method for writing dynamic Web applications. They provide a cleaner and much more powerful interface to the Web server and Web browser than previous methods, such as CGI scripts. If you have taken CIS 450/550, you may already be familiar with servlet programming; if you have not, it should not be too difficult to catch up. A Java servlet is simply a Java class that extends the class HttpServlet. It typically overrides the doget and dopost methods from that class to generate a web page in response to a request from a Web browser. An XML file, web.xml, lets the servlet developer specify a mapping from URLs to class names; this is how the server knows which class to invoke in response to an HTTP request. Further details about servlets, including links to tutorials and an API reference, as well as sample servlets and a corresponding web.xml file, are available on the course web site on the Assignments page. We have also given you code to parse web.xml. 2. Developing and running your code We strongly recommend that you do the following before you start writing code: 1. Carefully read the entire assignment (both milestones) from front to back and make a list of the features you need to implement. 2. Read the debugging tips slides we have prepared, for hints on how to approach testing and debugging. 3. Check out the project ProducerConsumerDemo from Bitbucket (refer to HW0 instructions for Importing from Git; use the clone URL git@bitbucket.org:upenncis455/producerconsumerdemo.git) and see if you can understand how it (1) uses synchronization and (2) uses logging. 1/11

4. Think about how the key features will work. For instance, before you start with MS2, go through the steps the server will need to perform to handle a request. If you still have questions, have a look at some of the extra material on the assignments page, or ask one of us during office hours. 5. Spend at least some time thinking about the design of your solution. What classes will you need? How many threads will there be? What will their interfaces look like? Which data structures need synchronization? And so on. 6. Regularly check your changes into your subversion repository. This will give you many useful features, including a recent backup and the ability to roll back any changes that have mysteriously broken your code. We recommend that you continue using the VM image we provided for HW0. This image should already contain the tools you will need for HW1. You can check out the framework code for HW1 (clone URL git@bitbucket.org:upenn-cis455/hw1.git) using the same process as for HW0 (there should now be an additional "HW1" folder). Of course, you are free to use any other Java IDE you like, or no IDE at all, and you do not have to use any of the tools we provide. However, to ensure efficient grading, your submission must meet the requirements specified in Sections 3.4 and 4.7 below - in particular, it must build and run correctly in the original VM image and have an ant build script. The VM image, and ant, will be the 'gold standard' for grading. During submission, we will attempt to vet your code and let you know if there are any issues, but we cannot promise that this pre-screening will be 100% effective. We strongly recommend that you regularly check the discussions on Piazza for clarifications and solutions to common problems. 2.1. Testing your server as you go Again, please take a look at the Debugging Tips slide set we have provided, just as a reminder of how to chase down the inevitable bugs. Make liberal use of log4j as you go. To test your server, you have a variety of options: You can use the Web Console in Firefox to inspect the HTTP headers. Open the "Tools" menu, choose "Web Developers", and click on "Web Console". This should pop up a new window, which will list all the HTTP requests processed by Firefox (click on a request for extra details). If you want to check whether you are using the correct headers, you may find the site websniffer.net useful. You can use the telnet command to directly interact with the server. Just run telnet localhost 8080, type in the request, and hit Enter twice; you should see the server's response. (If your server is running on a different port, replace '8080' with the port number.) More advanced tools, as you have a mature server and want to see how well it does: You may also want to consider using the curl command-line utility to do some automated testing of your server. curl makes it easy to test HTTP/1.1 compliance by sending HTTP requests that are purposefully invalid - e.g., sending an HTTP/1.1 request without a Host header. 'man curl' lists a great many flags. To stress-test your server, you can use Apachebench: o Run sudo apt-get install apache2-utils 2/11

o Apachebench (ab) can be configured to make many requests concurrently, which will help you find concurrency problems, deadlocks, etc. We suggest that you use multiple options for testing; if you only use Firefox, for instance, there is a risk that you hard-code assumptions about Firefox, so your solution won't work with curl or ab. You may also want to compare your server's behavior (NOT performance!) with that of a known-good server, e.g., the CIS web server. Please do test your solution carefully! Also, please do NOT run Apachebench across major Web sites, as you will likely make them angry for doing what looks like a DoS attach on them! 3. Milestone 1: Multithreaded HTTP Server (due September 21st) For the first milestone, your task is relatively simple. You will develop a Web server that can be invoked from the command line, taking the following parameters, in this order: 1. Port to listen for connections on. Port 80 is the default HTTP port, but it is often blocked by firewalls, so your server should be able to run on any other port (e.g., 8080). 2. Root directory of the static web pages. For example, if this is set to the directory /var/www, a request for /mydir/index.html will return the file /var/www/mydir/index.html. (do not hard-code any part of the path in your code - your server needs to work on a different machine, which may have completely different directories!) By default we have included a subdirectory called www, but you shouldn t assume this is the only possible Web home directory. So, for instance, java cp workspace/hw1/bin edu.cis.upenn.cis455.webserver.httpserver 8080 /home/cis455/myweb should run your server. We have included a runtest.sh shell script that you should run from your Terminal window (in your workspace directory) to validate that your program takes the correct arguments and returns a result. The script should show the control page described in Section 3.2. Note that the second milestone will add a third argument (see below). If your server is invoked without any command-line arguments, it must output your full name and SEAS login name. Your program will accept incoming GET and HEAD requests from a Web browser (such as the Firefox browser in the VM image), and it will make use of a thread pool (as discussed in class) to invoke a worker thread to process each request. The worker thread will parse the HTTP request, determine which file was requested (relative to the root directory specified above) and return the file. If a directory was requested, the request should return a listing of the files in the directory. Your server should return the correct MIME types for some basic file formats, based on the extension (.jpg,.gif,.png,.txt,.html); keep in mind that image files must be sent in binary form -- not with println or equivalent -- otherwise the browser will not be able to read them. If a GET or HEAD request is made that is not a valid UNIX path specification, if no file is found, or if the file is not accessible, you should return the appropriate HTTP error. See the HTTP Made Really Easy paper for more details. MAJOR SECURITY CONCERN: You should make sure that users are not allowed to request absolute paths or paths outside the root directory. We will validate, e.g., that we can't get hold of /etc/passwd! 3/11

3.1. HTTP protocol version and features Your application server must be HTTP 1.1 compliant, and it must support all the features described in HTTP Made Really Easy. This means that it must be able to support HTTP 1.0 clients as well as 1.1 clients. However: Persistent connections are suggested but not required for HTTP 1.1 servers. If you do not wish to support persistent connections, be sure to include Connection: close in the header of the response. Chunked encoding (sometimes called chunking) is also not required. Support for persistent connections and chunking is extra credit, described near the end of this assignment. HTTP Made Really Easy is not a complete specification, so you will occasionally need to look at RFC 2616 (the 'real' HTTP specification; http://www.ietf.org/rfc/rfc2616.txt) for protocol details. If you have a protocol-related question, please make an effort to find the answer in the spec before you post the question to Piazza! 3.2. Special URLs Your application server should implement two special URLs. If someone issues a GET /shutdown, your server should shut down immediately; however, any threads that are still busy handling requests must be aborted properly (do not just call System.exit!). If someone issues a GET /control, your server should return a 'control panel' web page, which must contain at least a) your full name and SEAS login, b) a list of all the threads in the thread pool, c) the status of each thread ('waiting' or the URL it is currently handling), and d) a button that shuts down the server, i.e., is linked to the special /shutdown URL. It must be possible to open the special URLs in a normal web browser. 3.3. Implementation techniques For efficiency, your application server must be implemented using a thread pool that you implement, as discussed in class. Specifically, there should be one thread that listens for incoming TCP requests and enqueues them, and some number of threads that process the requests from the queue and return the responses. We will examine your code to make sure it is free of race conditions and the potential for deadlock, so code carefully! We have given you a sample directory layout (as well as useful libraries such as log4j), in the HW1 repository in subversion. We expect you to write your own thread pool code, not use one from the Java system library or an external library. This includes the queue, which you should implement by yourself, using condition variables to block and wake up threads. You may not use the BlockingQueue that comes with Java, or any similar classes. 3.4. Requirements Your solution must meet the following requirements (please read carefully!): 1. Your main class must be called HttpServer, and it must be located in a package called edu.upenn.cis.cis455.webserver. 2. Please use runtest.sh to validate that your classpath and other settings are correct. If you implemented things correctly, you should get your control page and then your server should terminate. 3. Your submission must contain 4/11

a. the entire source code, as well as any supplementary files needed to build your solution b. an ant build script called build.xml (a template is included with the code in svn), c. a README file. The README file must contain 1) your full name and SEAS login name, 2) a description of features implemented, 3) any extra credit claimed, and 4) any special instructions for building or running. 4. When your submission is unpacked in the original VM image and the ant build script is run, your solution must compile correctly. Please test this before submitting! 5. Your server must accept the two command-line arguments specified above, and it must output your full name and SEAS login name when invoked without command-line arguments. 6. Your solution must be submitted before the deadline. Instructions will be provided for submission as we near the deadline. 7. Your code must contain a reasonable amount of useful documentation. You may not use any third-party code other than the standard Java libraries (exceptions noted in the assignment) and any code we provide. As the deadline nears, we will post to Piazza detailed instructions for submitting via Vocareum. 4. Milestone 2: Servlet Engine (due October 6th) The second milestone will build upon the Web server from Milestone 1, with support for POST and for invoking servlet code. Yes, you ll be building your own clone of Apache Tomcat (used all over the Web) or of Jetty! If you haven t used servlets before (they are typically a project option in CIS 450/550), they are in principle similar to Node.js and to PHP. Here, a Java class is provided that conforms to the servlet interface. When an HTTP request comes in, methods like doget (for GET requests) and dopost (for, surprise surprise, POST requests) are called. However, there are a few complexities around setting up configuration and environment parameters for the servlets (the same code can be triggered in multiple ways), for managing persistent state across requests, etc. To ease implementation, your application server will need to support only one web application at a time. Therefore, you can simply add the class files for the web application to the classpath when you invoke you application server from the command line, and pass the location of the web.xml file as an argument. Furthermore, you need not implement all of the methods in the various servlet classes; details as to what is required may be found below. 4.1. The Servlet A servlet is typically stored in a special war file (extension.war) which is essentially a jar file with a special layout. The configuration information for a servlet is specified in a file called web.xml, which is typically in the WEB-INF directory. The servlet s actual classes are typically in WEB-INF/classes. The web.xml file contains information about the servlet class to be invoked, its name for the app server, and various parameters to be passed to the servlet. See below for an example: <web-app xmlns="http://java.sun.com/xml/ns/j2ee" version="2.4"> <servlet> <servlet-name>helloworld</servlet-name> 5/11

<servlet-class>edu.upenn.helloworld</servlet-class> <init-param> <param-name>greeting</param-name> <param-value>bonjour!</param-value> </init-param> </servlet> <servlet-mapping> <servlet-name>helloworld</servlet-name> <url-pattern>/hello</url-pattern> </servlet-mapping> <context-param> <param-name>server</param-name> <param-value>my455server</param-value> </context-param> </web-app> The servlet and servlet-class elements are used to establish an internal name for your servlet, and which class it binds to. The servlet-mapping associates the servlet with a particular sub-url (http://my-server/myservlet or similar). There are two kinds of URL patterns to handle: 1. Exact pattern (must start with a /). This is the most common way of specifying a servlet. 2. Path mapping (starts with a / and ends with a *, meaning it should match on the prefix up to the *). This is used in a certain Web service scheme called REST (which we discuss later in the term). As a special case, /foo/* should match /foo (without the trailing forward slash). There are two ways that parameters can be specified from outside the servlet, e.g., to describe setup information such as usernames and passwords, servlet environment info, etc. These are through initparam elements, which appear within servlet elements and establish name-value pairs for the servlet configuration, and the context-param elements, which establish name-value pairs for the servlet context. We will discuss how these are accessed programmatically in a moment. 4.2. Basic Servlet Operation All servlets implement the javax.servlet.http.httpservlet interface, which extends the Servlet interface. You will need to build the wrapping that invokes the HttpServlet instance, calling the appropriate functions and passing in the appropriate objects. Servlet initialization, config, and context. When the servlet is first activated (by starting it in the app server), this calls the init() method, which is passed a ServletConfig object. This may request certain resources, open persistent connections, etc. The ServletConfig details information about the servlet setup, including its ServletContext. Both of these can be used to get parameters from web.xml. ServletConfig represents the information a servlet knows about itself. Calling getinitparameter() on the ServletConfig returns the servlet init-param parameters. The method getparameternames() returns the full set of these parameters. Finally, one can get the servlet s name (from web.xml) through this interface. ServletContext represents what the servlet sees about its related Web application. Calling getinitparameter() on the ServletContext returns the servlet context-param parameters. The method getparameternames() returns the full set of these parameters. Through the context, the servlet can also access resources that are within the.war file, and determine the real path for a given virtual path (i.e., a path relative to the servlet). Perhaps more important, the ServletContext provides a way of passing objects ( attributes that are 6/11

name-object pairs) among different parts of a Web application. You may ignore the context s logging capabilities. Service request and response. When a request is made of the servlet by an HTTP client, the app server calls the service() method with a javax.servlet.servletrequest parameter containing request info, and a javax.servlet.servletresponse parameter for return info. For an HTTP servlet (the only kind we are implementing), service() typically calls a handler for the type of HTTP request. The only ones we care about are doget() for GET requests, and dopost() for POST requests. (There are other kinds of calls, but these are seldom supported in practice.) Both doget() and dopost() are given parameter objects implementing javax.servlet.httpservletrequest and javax.servlet.httpservletresponse (which are subclassed from the original ServletRequest and ServletResponse). HttpServletRequest, naturally, contains information about the HTTP request, including headers, parameters, etc. You can get header information from getheader() and its related methods, and get form parameters through getparameter(). HttpSession is used to store state across servlet invocations. The getattribute() and related methods support storing name-value pairs. The session should time-out after the designated amount of time (specified as a default or in setmaxinactiveinterval()). HttpServletResponse contains an object that is used to return information to the Web browser or HTTP client. The getwriter() or getoutputstream() methods provide a means of directly sending data that goes onto the socket to the client. Also important are addheader(), which adds a name-value pair for the response header, and its sibling methods for adding header information. Note that there are a variety of important fields you can set this way, e.g., server, content-length, refresh rate, content-type, etc. Note that you should ensure that an HTTP response code (e.g., 200 OK ) is sent to the client before any output from the writer or output stream are returned. If the servlet throws an exception before sending output, you should return an error code such as 500 Internal Server Error. You should return a 302 Redirect if the servlet calls HttpServletResponse s sendredirect() method. Servlet shutdown. When the servlet is deactivated, this calls the servlet s destroy() method, which should release resources allocated by init(). 4.3. Invocation of the application server You should add a third command-line argument: the location of the web.xml file for your web application. In your submission, this file should be located in the conf subdirectory. You may accept additional optional arguments after the initial three (such as number of worker threads, for example), but the application should run with reasonable defaults if they are omitted. 4.4. Special URLs You should now augment the special URLs you implemented for Milestone 1. The /shutdown URL should properly shut down all the servlets, by invoking their destroy methods, and the /control URL should now provide a way to view the error log. It may provide other (e.g., extra-credit) features as you see fit. 4.5. Implementation techniques Dynamic loading of classes in Java which you will need to do since a servlet can have any arbitrary name, as specified in web.xml can be a bit tricky. Start by calling the method Class.forName, with the string name of the class as an argument, to get a Class object representing the class you want to instantiate (i.e. a specific servlet). Since your servlets do not define a constructor, you can then call the method newinstance() on that Class object, and typecast it to an instance of your servlet. Now you can call methods on this instance. 7/11

4.6. Required application server features Your application server must provide functional implementations of all of the non-deprecated methods in the interfaces HttpServletRequest, HttpServletResponse, ServletConfig, ServletContext, and HttpSession of the Servlet interface version 2.4 (see the URL on the first page of this assignment), with the following exceptions: ServletContext.log ServletContext.getMimeType (return null) ServletContext.getNamedDispatcher ServletContext.getResource ServletContext.getResourceAsStream ServletContext.getResourcePaths HttpServletRequest.getPathTranslated HttpServletRequest.getUserPrincipal HttpServletRequest.isUserInRole HttpServletRequest.getRequestDispatcher HttpServletRequest.getInputStream HttpServletResponse.getOutputStream HttpServletRequest.getLocales ServletContext.getNamedDispatcher ServletContext.getRequestDispatcher You can return null for the output of all of the above methods, as well as all deprecated methods. We will also make the following simplifications and clarifications of the spec: HttpRequest.getAuthType should always return BASIC AUTH ( BASIC ) HttpRequest.getPathInfo should always return the remainder of the URL request after the portion matched by the url-pattern in web-xml. It starts with a /. HttpRequest.getQueryString should return the HTTP GET query string, i.e., the portion after the? when a GET form is posted. HttpRequest.getCharacterEncoding should return ISO-8859-1 by default, and the results of setcharacterencoding if it was previously called. HttpRequest.getScheme should return http. HttpResponse.getCharacterEncoding should return ISO-8859-1. HttpResponse.getContentType should return text/html by default, and the results of setcontenttype if it was previously called. HttpServletRequest.getLocale should return null by default, or the results of setlocale if it was previously called. HttpServletRequest.isRequestedSessionIdFromUrl should always return false. This means that your application server will need to support cookies, sessions (using cookies you don t need to provide a fall-back like path encoding if the client doesn t support cookies), servlet contexts, initialization parameters (from the web.xml file) - in other words, all of the infrastructure needed to write real servlets. It also means that you won t need to do HTTP-based authentication, or implement the ServletInputStream and ServletOutputStream classes. We suggest you start by determining what you need to implement: 8/11

1. Print the JavaDocs for HttpServletRequest, HttpServletResponse, Servlet- Config, ServletContext, and HttpSession, from the URL given previously. 2. Create a skeleton class for each of the above, with methods that temporarily return null for each call. Be sure that your HttpServletRequest class inherits from the provided javax.servlet.httpservletrequest (in the.jar file), and so forth. 3. Print the sample web.xml from the extra/servlets/web/web-inf directory. There is very useful information in the comments, which will help you determine where certain methods get their data. You can find a simple parser for the web.xml file from the TestHarness code (see 5.1 and thecode in extra/testharness). For the ServletConfig and ServletContext, note the following: There is a single ServletContext per Web application, and a single ServletConfig per servlet page. (For the base version of Milestone 2, you will only need to run one application at a time.) Assuming a single application will likely simplify some of what you need to implement in ServletContext (e.g., getservletnames). Most of the important ServletConfig info servlet name, init parameter names, and init parameter list come directly from web.xml. The ServletContext init parameters come from the context-param elements in web.xml. The ServletContext attributes are essentially a hash map from name to value, and can be used, e.g., to communicate between multiple instances of the same servlet. By default, these can only be created programmatically by servlets themselves, unlike the initialization parameters, which are set in web.xml. The ServletContext name is set to the display name specified in web.xml. The real path of a file can be getting the canonical path of the path relative to the Web root. It is straightforward to return a stream to such a resource, as well. The URL to a relative path can similarly be generated relative to the Servlet s URL. 4.7. Requirements Your solution must meet the same requirements as MS1 (see 3.4 above), with two exceptions. First, your solution must now support three command-line arguments (the third is the location of web.xml), and second, you need to submit at least one test case for each of the major classes you implemented. 5. Resources The framework code in svn includes a JAR file containing version 2.4 of the servlet API, as well as (in the extra directory) the source code for a simple application server that accepts requests from the command line, calls a servlet, and prints results back out. It will give you a starting point, though many of the methods are just stubs, which you will need to implement. We have also provided a suite of simple test servlets and an associated web.xml file and directory of static content; it should put your application server through its paces. We will, however, test your application server with additional servlets. 5.1. TestHarness: A primitive app server TestHarness gives you a simple command-line interface to your servlets. It reads your web.xml file to find out about servlets. Thus, in order to test a servlet you need to add the appropriate entry in web.xml first (as you would do in order to deploy it). You can then specify a series of requests to servlets on the command line, which all get executed within a servlet session. 9/11

Suppose you have a servlet demo in your web.xml file. To run: 1. Put the TestHarness classes and the servlet code in the same Eclipse project. 2. Make sure the file servlet-api.jar has been added to the project as an external jar file. 3. Create a new run profile (Run! Run...), choose TestHarness as the main class, and give the command line arguments path/to/web.xml GET demo to have the TestHarness program run the demo servlet s doget method. The servlet output is printed to the screen as unprocessed HTML. You can set the profile s root directory if it makes writing the path to the web.xml easier; it defaults to the root of the Eclipse project. More interestingly, if you had a servlet called login, you could also run it with the arguments: path/to/web.xml POST login?login=aaa&passwd=bbb This will call the dopost method with the parameters login and passwd passed as if the servlet was invoked through Tomcat. Finally, TestHarness also supports sequences of servlets while maintaining session information that is passed between them. Suppose you had a servlet called listfeeds, which a used can run only after logging in. You can simulate this with the harness by doing: path/to/web.xml POST login?login=aaa&passwd=bbb GET listfeeds In general, since your servlets would normally expect to be passed the session object when executed, in order to test them with this harness you should simulate the steps that would be followed to get from the login page to that servlet. If for example after login you go to forma and enter some values and click a button to submit forma to servleta, and then you enter some more values in formb and click a button and go to servletb, to test servletb (assuming you use post everywhere) you would do: path/to/web.xml POST login?login=aaa&passwd=bbb POST servleta?... attributes-values of forma... POST servletb?...attributes-values of formb... 6. Extra credit 6.1. Persistent HTTP connections and chunked encoding (+10%, due with MS2) We do not require persistence or chunking in your basic HTTP 1.1 server. However, each of these will count for part of up to 10% extra credit. To get full credit for chunking support, your server needs to be able to both send and receive chunked messages. 6.2. Event-driven server (+15%, due with MS1) This extra-credit item is only available for MS1. To claim it, you must submit two working versions of your web server: One with a thread pool, and a second, event-driven one. The event handlers must be non-blocking, i.e., all I/O must be asynchronous (Java NIO). We recommend that you first implement the basic server and then refactor it to be event-driven. 6.3. Performance testing (+10%, due with MS2) The supplied servlet BusyServlet performs a computationally intensive task that should take a number of seconds to perform on a modern computer. Experimentally determine the effect of changing the thread pool size on performance of the application server when many requests for BusyServlet come in at the same time. Comment on any trends you see, and try to explain them. Suggest the ideal thread pool size and describe how you chose it. Include performance measures like tables, graphs, etc. 10/11

6.4. Multiple applications and dynamic loading (+25%, due with MS2) The project described above loads one web application and installs it at the root context. Extend it to dynamically load and unload other applications at different contexts. Add options to the main menu of the server to list installed applications, install new applications, and remove any installed applications. You ll need to take special care to ensure that static variables do not get shared between applications (i.e. the same class in two different applications can have different values for the same static variable). Each application should have its own servlet context as well. (Since each application may have its own classpath, be sure to add the capability to dynamically modify the classpath, too.) 6.5. Servlet test suite (+up to 10%, due Sep. 30th) Write a number of servlets that test various (nontrivial!) aspects of the servlet container, similar to the example servlets that were distributed with the homework. When your servlets are loaded and accessed with a browser, they should display a web page that describes which features are being tested, as well as UI elements (links, buttons,...) that start the test. The result should clearly describe whether the test succceeded, and if not, what went wrong. Submit your servlets by Feb 20 th (note this is prior to the Milestone 2 deadline) as a self-contained archive (with an ant build script) using hw1test as the project name. The number of points will be based on the number and complexity of the tests. All tests must pass with Tomcat or Jetty! 11/11

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information