The Perl and Raku Conference 2025: Greenville, South Carolina - June 27-29 Learn more

SULLR / Net-IMP-HTTP-0.525 / lib / Net / IMP / HTTP / Example / LogFormData.pm 

            

              
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200

              
# sample IMP plugin to log formulare data
# e.q query_string and POST data
use strict;
use warnings;
package Net::IMP::HTTP::Example::LogFormData;
use base 'Net::IMP::HTTP::Connection';
use fields (
    'rqbuf',  # buffered data from request
    'req',    # HTTP::Request object for request header
    'info',   # collection of infos for logging after request end
    'btype',  # content type from request body, eg. 
              # application/x-www-form-urlencoded or multipart/form-data
);
use Net::IMP qw(:DEFAULT :log); # constants
require HTTP::Request;
use Net::IMP::Debug;
sub RTYPES {
    # we don't change anything but need to analyze, so we can PREPASS
    # everything initially until Inf and later upgrade it to PASS
    # because we are only interested in request header and body, data 
    # from server can be passed from the beginning
    return ( 
        IMP_PREPASS,
        IMP_PASS,
        IMP_DENY,    # on parsing errors
        IMP_LOG,     # somewhere to log the info about form data
    );
}
sub new_analyzer {
    my ($class,%args) = @_;
    my $self = $class->SUPER::new_analyzer(%args);
    $self->run_callback(
        # prepass all from request
        [ IMP_PREPASS,0,IMP_MAXOFFSET ],
        # we don't even need to look at response
        [ IMP_PASS,1,IMP_MAXOFFSET ],
    );
    return $self;
}
sub request_hdr {
    my ($self,$hdr) = @_;
    my $req = $self->{req} = HTTP::Request->parse($hdr) or do {
        # failed to parse
        $self->run_callback(
            [ IMP_DENY,0,"failed to parse request header" ]);
        return;
    };
    $self->{rqbuf} = '';
    $self->{info} = undef;
    $self->{btype} = undef;
    if ( my @qp = $req->uri->query_form ) {
        #debug("got query_string @qp");
        my @param;
        for(my $i=0;$i<@qp;$i+=2 ) {
            push @param,[ $qp[$i], $qp[$i+1] ];
        }
        $self->{info}{'header.query_string'} = \@param
    }
    my $ct = $req->content_type;
    if ( $ct && $req->method eq 'POST' and 
        $ct eq 'application/x-www-form-urlencoded' || $ct eq 'multipart/form-data'
        ){
        #debug("got content-type $ct");
        $self->{btype} = $ct;
    } else {
        # no need to analyze further
        my $len = $req->content_length // 0;
        #debug("no or no interesting body");
        $self->_log_formdata() if $self->{info};
        $self->{rqbuf} = ''; # throw away
        $self->run_callback( [ IMP_PASS,0, $self->offset(0) + $len ]);
    }
}
sub request_body {
    my ($self,$data,$offset) = @_;
    $offset and die "gaps should not happen";
    if (( $data//'') eq '' ) {
        # eof
        # parse body if necessary
        #debug("eof on $dir");
        if ( ! $self->{btype} ) {
        } elsif ( $self->{btype} eq 'application/x-www-form-urlencoded' ) {
            my @param;
            for( split( /\&/,$self->{rqbuf}) ) {
                my ($k,$v) = split('=',$_,2);
                for($k,$v) {
                    defined($_) or next;
                    s{\+}{ }g;
                    s{%([\da-fA-F]{2})}{ chr(hex($1)) }esg;
                }
                push @param,[$k,$v];
            }
            $self->{info}{'body.urlencoded'} = \@param;
             
        } elsif ( $self->{btype} eq 'multipart/form-data' ) {
            my (undef,$boundary) = $self->{req}->header('content-type') 
                =~m{;\s*boundary=(\"?)([^";,]+)\1}i;
            if ( ! $boundary ) {
                $self->run_callback([
                    IMP_DENY,0,
                    "missing boundary for multipart/form-data"
                ]);
            }
            # we might use MIME:: heere, but this would be yet another non-CORE
            # dependency :(
            # this is quick and dirty and we just skip param on errors, but 
            # this is just a demo!
            my @param;
            for my $part ( split( 
                m{^--\Q$boundary\E(?:--)?\r?\n}m, 
                $self->{rqbuf} )) {
                $part =~m{\A(.*?(\r?\n))\2(.*)}s or next;
                my ($hdr,$v) = ($1,$3);
                my ($cd) = $hdr =~m{^Content-Disposition:[ \t]*(.*(?:\r?\n[ \t].*)*)}mi
                    or do {
                    debug("no content-disposition in multipart header: $hdr");
                    next;
                };
                $cd =~s{\r?\n}{}g;
                my $name = $cd =~m{;\s*name=(?:\"([^\"]+)\"|([^\s\";]+))} && ($1||$2);
                $name or do {
                    debug("no name in content-disposition in multipart header: $hdr");
                    next;
                };
                my $fname = $cd =~m{;\s*filename=(?:\"([^\"]+)\"|([^\s\";]+))} && ($1||$2);
                $v =~s{\r?\n\Z}{};
                $v = "UPLOAD:$fname (".length($v)." bytes)" if $fname; # don't display content of file
                push @param, [$name,$v];
            }
            $self->{info}{'body.multipart'} = \@param;
        } else {
            # should not happen, we set btype only if we can handle the type
            die "unhandled POST content-type $self->{btype}"
        }
        $self->_log_formdata();
    } elsif ( $self->{btype} ) {
        # add to buf to analyze later
        $self->{rqbuf} .= $data;
    }
}
# these should not be reached
sub response_hdr {}
sub response_body {}
sub any_data {}
sub chunk_header {}
sub chunk_trailer {}
sub _log_formdata {
    my $self = shift;
    my $info = $self->{info} or return;
    # report form information if any, preferable as YAML, but fall back to
    # Data::Dumper, which is in core
    my $text;
    if ( eval { require YAML } ) {
        $text = YAML::Dump($info)
    } elsif ( eval { require YAML::Tiny } ) {
        $text = YAML::Tiny::Dump($info)
    } elsif ( eval { require Data::Dumper }) {
        $text = Data::Dumper->new([$info])->Terse(1)->Dump;
    } else {
        # Data::Dumper is perl core!
        die "WTF, not even Data::Dumper is installed?";
    }
    $self->run_callback([ IMP_LOG,0,0,0,IMP_LOG_INFO,$text ]);
    $self->{info} = undef;
}
__END__
=head1 NAME
Net::IMP::HTTP::Example::LogFormData - IMP plugin to log formular uploads
=head1 DESCRIPTION
This plugin analyses HTTP requests for formular uploads, e.g. POSTs with
content-types application/x-www-form-urlencoded or multipart/form-data and GETs
with a query_string.
Information about fields and their values will be extracted and logged using 
IMP_LOG with priority INFO. For file uploads only intended filename and file
size will be logged.
=head1 AUTHOR
Steffen Ullrich <sullr@cpan.org>