SpiderRedirectParser.java

/*
 * Zed Attack Proxy (ZAP) and its related class files.
 * 
 * ZAP is an HTTP/HTTPS proxy for assessing web application security.
 * 
 * Licensed under the Apache License, Version 2.0 (the "License"); 
 * you may not use this file except in compliance with the License. 
 * You may obtain a copy of the License at 
 * 
 *   http://www.apache.org/licenses/LICENSE-2.0 
 *   
 * Unless required by applicable law or agreed to in writing, software 
 * distributed under the License is distributed on an "AS IS" BASIS, 
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 
 * See the License for the specific language governing permissions and 
 * limitations under the License. 
 */
package org.zaproxy.zap.spider.parser;

import net.htmlparser.jericho.Source;

import org.parosproxy.paros.network.HttpHeader;
import org.parosproxy.paros.network.HttpMessage;
import org.parosproxy.paros.network.HttpStatusCode;

/**
 * The Class SpiderRedirectParser is used for parsing of HTTP Redirection messages.
 */
public class SpiderRedirectParser extends SpiderParser {

	@Override
	public boolean parseResource(HttpMessage message, Source source, int depth) {
		log.debug("Parsing an HTTP redirection resource...");

		if (message == null || message.getResponseHeader() == null) {
			return false;
		}

		String location = message.getResponseHeader().getHeader(HttpHeader.LOCATION);
		if (location != null && !location.isEmpty()) {
			// Include the base url as well as some applications send relative URLs instead of
			// absolute ones
			String baseURL = message.getRequestHeader().getURI().toString();
			processURL(message, depth, location, baseURL);
		}
		// We consider the message fully parsed
		return true;
	}

	@Override
	public boolean canParseResource(HttpMessage message, String path, boolean wasAlreadyParsed) {
		return HttpStatusCode.isRedirection(message.getResponseHeader().getStatusCode());
	}
}