/*
    * Copyright 2006 the original author or authors.
    *
    * Licensed under the Apache License, Version 2.0 (the "License");
    * you may not use this file except in compliance with the License.
    * You may obtain a copy of the License at
    *
    *      http://www.apache.org/licenses/LICENSE-2.0
    *
   * Unless required by applicable law or agreed to in writing, software
   * distributed under the License is distributed on an "AS IS" BASIS,
   * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   * See the License for the specific language governing permissions and
   * limitations under the License.
   */
  
  package org.springframework.ws.server.endpoint.interceptor;
  
  import java.io.IOException;
  import javax.xml.transform.Source;
  import javax.xml.transform.TransformerException;
  
  import org.xml.sax.SAXException;
  import org.xml.sax.SAXParseException;
  
  import org.springframework.beans.factory.InitializingBean;
  import org.springframework.core.io.Resource;
  import org.springframework.util.Assert;
  import org.springframework.util.ObjectUtils;
  import org.springframework.util.StringUtils;
  import org.springframework.ws.WebServiceMessage;
  import org.springframework.ws.context.MessageContext;
  import org.springframework.ws.server.EndpointInterceptor;
  import org.springframework.ws.soap.SoapFault;
  import org.springframework.ws.soap.SoapMessage;
  import org.springframework.xml.transform.TransformerObjectSupport;
  import org.springframework.xml.validation.XmlValidator;
  import org.springframework.xml.validation.XmlValidatorFactory;
  import org.springframework.xml.xsd.XsdSchema;
  import org.springframework.xml.xsd.XsdSchemaCollection;
  
  /**
   * Abstract base class for <code>EndpointInterceptor</code> implementations that validate part of the message using a
   * schema. The exact message part is determined by the <code>getValidationRequestSource</code> and
   * <code>getValidationResponseSource</code> template methods.
   * <p/>
   * By default, only the request message is validated, but this behaviour can be changed using the
   * <code>validateRequest</code> and <code>validateResponse</code> properties.
   *
   * @author Arjen Poutsma
   * @see #getValidationRequestSource(org.springframework.ws.WebServiceMessage)
   * @see #getValidationResponseSource(org.springframework.ws.WebServiceMessage)
   * @since 1.0.0
   */
  public abstract class AbstractValidatingInterceptor extends TransformerObjectSupport
          implements EndpointInterceptor, InitializingBean {
  
      private String schemaLanguage = XmlValidatorFactory.SCHEMA_W3C_XML;
  
      private Resource[] schemas;
  
      private boolean validateRequest = true;
  
      private boolean validateResponse = false;
  
      private XmlValidator validator;
  
      public String getSchemaLanguage() {
          return schemaLanguage;
      }
  
      /**
       * Sets the schema language. Default is the W3C XML Schema: <code>http://www.w3.org/2001/XMLSchema"</code>.
       *
       * @see org.springframework.xml.validation.XmlValidatorFactory#SCHEMA_W3C_XML
       * @see org.springframework.xml.validation.XmlValidatorFactory#SCHEMA_RELAX_NG
       */
      public void setSchemaLanguage(String schemaLanguage) {
          this.schemaLanguage = schemaLanguage;
      }
  
      /** Returns the schema resources to use for validation. */
      public Resource[] getSchemas() {
          return schemas;
      }
  
      /**
       * Sets the schema resource to use for validation. Setting this property, {@link
       * #setXsdSchemaCollection(XsdSchemaCollection) xsdSchemaCollection}, {@link #setSchema(Resource) schema}, or {@link
       * #setSchemas(Resource[]) schemas} is required.
       */
      public void setSchema(Resource schema) {
          setSchemas(new Resource[]{schema});
      }
  
      /**
       * Sets the schema resources to use for validation. Setting this property, {@link
       * #setXsdSchemaCollection(XsdSchemaCollection) xsdSchemaCollection}, {@link #setSchema(Resource) schema}, or {@link
       * #setSchemas(Resource[]) schemas} is required.
      */
     public void setSchemas(Resource[] schemas) {
         Assert.notEmpty(schemas, "schemas must not be empty or null");
         for (int i = 0; i < schemas.length; i++) {
             Assert.notNull(schemas[i], "schema must not be null");
             Assert.isTrue(schemas[i].exists(), "schema \"" + schemas[i] + "\" does not exit");
         }
         this.schemas = schemas;
     }
 
     /**
      * Sets the {@link XsdSchema} to use for validation. Setting this property, {@link
      * #setXsdSchemaCollection(XsdSchemaCollection) xsdSchemaCollection}, {@link #setSchema(Resource) schema}, or {@link
      * #setSchemas(Resource[]) schemas} is required.
      *
      * @param schema the xsd schema to use
      * @throws IOException in case of I/O errors
      */
     public void setXsdSchema(XsdSchema schema) throws IOException {
         this.validator = schema.createValidator();
     }
 
     /**
      * Sets the {@link XsdSchemaCollection} to use for validation. Setting this property, {@link
      * #setXsdSchema(XsdSchema) xsdSchema}, {@link #setSchema(Resource) schema}, or {@link #setSchemas(Resource[])
      * schemas} is required.
      *
      * @param schemaCollection the xsd schema collection to use
      * @throws IOException in case of I/O errors
      */
     public void setXsdSchemaCollection(XsdSchemaCollection schemaCollection) throws IOException {
         this.validator = schemaCollection.createValidator();
     }
 
     /** Indicates whether the request should be validated against the schema. Default is <code>true</code>. */
     public void setValidateRequest(boolean validateRequest) {
         this.validateRequest = validateRequest;
     }
 
     /** Indicates whether the response should be validated against the schema. Default is <code>false</code>. */
     public void setValidateResponse(boolean validateResponse) {
         this.validateResponse = validateResponse;
     }
 
     public void afterPropertiesSet() throws Exception {
         if (validator == null && !ObjectUtils.isEmpty(schemas)) {
             Assert.hasLength(schemaLanguage, "schemaLanguage is required");
             for (int i = 0; i < schemas.length; i++) {
                 Assert.isTrue(schemas[i].exists(), "schema [" + schemas[i] + "] does not exist");
             }
             if (logger.isInfoEnabled()) {
                 logger.info("Validating using " + StringUtils.arrayToCommaDelimitedString(schemas));
             }
             validator = XmlValidatorFactory.createValidator(schemas, schemaLanguage);
         }
         Assert.notNull(validator, "Setting 'schema', 'schemas', 'xsdSchema', or 'xsdSchemaCollection' is required");
     }
 
     /**
      * Validates the request message in the given message context. Validation only occurs if
      * <code>validateRequest</code> is set to <code>true</code>, which is the default.
      * <p/>
      * Returns <code>true</code> if the request is valid, or <code>false</code> if it isn't. Additionally, when the
      * request message is a {@link SoapMessage}, a {@link SoapFault} is added as response.
      *
      * @param messageContext the message context
      * @return <code>true</code> if the message is valid; <code>false</code> otherwise
      * @see #setValidateRequest(boolean)
      */
     public boolean handleRequest(MessageContext messageContext, Object endpoint)
             throws IOException, SAXException, TransformerException {
         if (validateRequest) {
             Source requestSource = getValidationRequestSource(messageContext.getRequest());
             if (requestSource != null) {
                 SAXParseException[] errors = validator.validate(requestSource);
                 if (!ObjectUtils.isEmpty(errors)) {
                     return handleRequestValidationErrors(messageContext, errors);
                 }
                 else if (logger.isDebugEnabled()) {
                     logger.debug("Request message validated");
                 }
             }
         }
         return true;
     }
 
     /**
      * Template method that is called when the request message contains validation errors. Default implementation logs
      * all errors, and returns <code>false</code>, i.e. do not process the request.
      *
      * @param messageContext the message context
      * @param errors         the validation errors
      * @return <code>true</code> to continue processing the request, <code>false</code> (the default) otherwise
      */
     protected boolean handleRequestValidationErrors(MessageContext messageContext, SAXParseException[] errors)
             throws TransformerException {
         for (int i = 0; i < errors.length; i++) {
             logger.warn("XML validation error on request: " + errors[i].getMessage());
         }
         return false;
     }
 
     /**
      * Validates the response message in the given message context. Validation only occurs if
      * <code>validateResponse</code> is set to <code>true</code>, which is <strong>not</strong> the default.
      * <p/>
      * Returns <code>true</code> if the request is valid, or <code>false</code> if it isn't.
      *
      * @param messageContext the message context.
      * @return <code>true</code> if the response is valid; <code>false</code> otherwise
      * @see #setValidateResponse(boolean)
      */
     public boolean handleResponse(MessageContext messageContext, Object endpoint) throws IOException, SAXException {
         if (validateResponse) {
             Source responseSource = getValidationResponseSource(messageContext.getResponse());
             if (responseSource != null) {
                 SAXParseException[] errors = validator.validate(responseSource);
                 if (!ObjectUtils.isEmpty(errors)) {
                     return handleResponseValidationErrors(messageContext, errors);
                 }
                 else if (logger.isDebugEnabled()) {
                     logger.debug("Response message validated");
                 }
             }
         }
         return true;
     }
 
     /**
      * Template method that is called when the response message contains validation errors. Default implementation logs
      * all errors, and returns <code>false</code>, i.e. do not cot continue to process the respone interceptor chain.
      *
      * @param messageContext the message context
      * @param errors         the validation errors
      * @return <code>true</code> to continue the reponse interceptor chain, <code>false</code> (the default) otherwise
      */
     protected boolean handleResponseValidationErrors(MessageContext messageContext, SAXParseException[] errors) {
         for (int i = 0; i < errors.length; i++) {
             logger.error("XML validation error on response: " + errors[i].getMessage());
         }
         return false;
     }
 
     /** Does nothing by default. Faults are not validated. */
     public boolean handleFault(MessageContext messageContext, Object endpoint) throws Exception {
         return true;
     }
 
     /**
      * Abstract template method that returns the part of the request message that is to be validated.
      *
      * @param request the request message
      * @return the part of the message that is to validated, or <code>null</code> not to validate anything
      */
     protected abstract Source getValidationRequestSource(WebServiceMessage request);
 
     /**
      * Abstract template method that returns the part of the response message that is to be validated.
      *
      * @param response the response message
      * @return the part of the message that is to validated, or <code>null</code> not to validate anything
      */
     protected abstract Source getValidationResponseSource(WebServiceMessage response);
 }