structurizr-dsl: Deprecates setRestricted(boolean) in favour of finer-grained features.

Author: simonbrowndotje

changelog.md

@@ -20,6 +20,7 @@
 - structurizr-dsl: PlantUML, Mermaid, and Kroki image views can now be defined by an inline source block.
 - structurizr-dsl: Constants and variables are inherited when extending a DSL workspace.
 - structurizr-dsl: DSL source is only stored in the JSON workspace when the DSL is deemed as "portable" (i.e. no files, plugins, scripts).
+- structurizr-dsl: Deprecates `setRestricted(boolean)` in favour of finer-grained features.
 - structurizr-export: Removes support for deprecated enterprise and location concepts.
 - structurizr-export: PlantUML exporters - replaces skinparams with styles.
 - structurizr-export: PlantUML exporters - adds support for dark mode exports.

structurizr-client/build.gradle

@@ -2,8 +2,8 @@ dependencies {
 
     api project(':structurizr-core')
 
-    api 'com.fasterxml.jackson.core:jackson-databind:2.18.3'
-    api 'org.apache.httpcomponents.client5:httpclient5:5.4.3'
+    api 'com.fasterxml.jackson.core:jackson-databind:2.20.0'
+    api 'org.apache.httpcomponents.client5:httpclient5:5.5.1'
     api 'javax.xml.bind:jaxb-api:2.4.0-b180830.0359'
 
 }

structurizr-client/src/main/java/com/structurizr/http/HttpClient.java

@@ -0,0 +1,129 @@
+package com.structurizr.http;
+
+import org.apache.hc.client5.http.classic.methods.HttpGet;
+import org.apache.hc.client5.http.config.ConnectionConfig;
+import org.apache.hc.client5.http.impl.classic.CloseableHttpClient;
+import org.apache.hc.client5.http.impl.classic.CloseableHttpResponse;
+import org.apache.hc.client5.http.impl.classic.HttpClientBuilder;
+import org.apache.hc.client5.http.impl.io.BasicHttpClientConnectionManager;
+import org.apache.hc.core5.http.io.entity.EntityUtils;
+
+import java.util.HashMap;
+import java.util.HashSet;
+import java.util.Map;
+import java.util.Set;
+import java.util.concurrent.TimeUnit;
+
+/**
+ * Wrapper for the HTTPClient in Apache HttpComponents, with optional caching and allowed URLs (via regexes).
+ */
+public class HttpClient {
+
+    public static final String CONTENT_TYPE_IMAGE_PNG = "image/png";
+
+    private static final int HTTP_OK_STATUS = 200;
+
+    private int timeout = 10000; // milliseconds
+    private final Set<String> allowedUrlRegexes = new HashSet<>();
+
+    private final Map<String,RemoteContent> contentCache = new HashMap<>();
+
+    public HttpClient() {
+    }
+
+    /**
+     * Sets the timeout in milliseconds.
+     *
+     * @param timeoutInMilliseconds     the timeout in milliseconds
+     */
+    public void setTimeout(int timeoutInMilliseconds) {
+        if (timeoutInMilliseconds < 0) {
+            throw new IllegalArgumentException("Timeout must be a positive integer");
+        }
+
+        this.timeout = timeoutInMilliseconds;
+    }
+
+    /**
+     * HTTP GET of a URL, without caching.
+     *
+     * @param url       the URL, as a String
+     * @return          a RemoteContent object representing the response
+     */
+    public RemoteContent get(String url) {
+        return get(url, false);
+    }
+
+    /**
+     * HTTP GET of a URL.
+     *
+     * @param url       the URL, as a String
+     * @param cache     true if the result should be cached, false otherwise
+     * @return          a RemoteContent object representing the response
+     */
+    public RemoteContent get(String url, boolean cache) {
+        if (!isAllowed(url)) {
+            throw new RuntimeException("Access to " + url + " is not permitted");
+        }
+
+        RemoteContent remoteContent = contentCache.get(url);
+        if (remoteContent == null) {
+            ConnectionConfig connectionConfig = ConnectionConfig.custom()
+                    .setConnectTimeout(timeout, TimeUnit.MILLISECONDS)
+                    .setSocketTimeout(timeout, TimeUnit.MILLISECONDS)
+                    .build();
+
+            BasicHttpClientConnectionManager cm = new BasicHttpClientConnectionManager();
+            cm.setConnectionConfig(connectionConfig);
+
+            try (CloseableHttpClient httpClient = HttpClientBuilder.create()
+                    .useSystemProperties()
+                    .setConnectionManager(cm)
+                    .build()) {
+
+                HttpGet httpGet = new HttpGet(url);
+                CloseableHttpResponse response = httpClient.execute(httpGet);
+
+                int httpStatus = response.getCode();
+                if (httpStatus == HTTP_OK_STATUS) {
+                    String contentType = response.getEntity().getContentType();
+                    if (CONTENT_TYPE_IMAGE_PNG.equals(contentType)) {
+                        remoteContent = new RemoteContent(EntityUtils.toByteArray(response.getEntity()), contentType);
+                    } else {
+                        remoteContent = new RemoteContent(EntityUtils.toString(response.getEntity()), contentType);
+                    }
+
+                    if (cache) {
+                        contentCache.put(url, remoteContent);
+                    }
+                } else {
+                    throw new RuntimeException("The content from " + url + " could not be loaded: HTTP status=" + httpStatus);
+                }
+            } catch (Exception ioe) {
+                throw new RuntimeException("The content from " + url + " could not be loaded: " + ioe.getMessage());
+            }
+        }
+
+        return remoteContent;
+    }
+
+    /**
+     * Adds an allowed URL regex.
+     *
+     * @param regex     the regex to allow
+     */
+    public void allow(String regex) {
+        allowedUrlRegexes.add(regex);
+    }
+
+    private boolean isAllowed(String url) {
+        for (String regex : allowedUrlRegexes) {
+            if (url.matches(regex)) {
+                return true;
+            }
+        }
+
+        return false;
+    }
+
+}

structurizr-client/src/main/java/com/structurizr/http/RemoteContent.java

@@ -0,0 +1,38 @@
+package com.structurizr.http;
+
+/**
+ * Wrapper for remote content loaded via HTTP.
+ */
+public final class RemoteContent {
+
+    public static final String CONTENT_TYPE_JSON = "application/json";
+
+    private final String content;
+    private final byte[] bytes;
+    private final String contentType;
+
+    RemoteContent(String content, String contentType) {
+        this.content = content;
+        this.bytes = null;
+        this.contentType = contentType;
+    }
+
+    RemoteContent(byte[] content, String contentType) {
+        this.content = null;
+        this.bytes = content;
+        this.contentType = contentType;
+    }
+
+    public String getContentAsString() {
+        return content;
+    }
+
+    public byte[] getContentAsBytes() {
+        return bytes;
+    }
+
+    public String getContentType() {
+        return contentType;
+    }
+
+}

structurizr-client/src/main/java/com/structurizr/view/ThemeUtils.java

@@ -5,32 +5,22 @@
 import com.fasterxml.jackson.databind.ObjectMapper;
 import com.fasterxml.jackson.databind.SerializationFeature;
 import com.structurizr.Workspace;
+import com.structurizr.http.HttpClient;
+import com.structurizr.http.RemoteContent;
 import com.structurizr.io.WorkspaceWriterException;
-import com.structurizr.model.Relationship;
 import com.structurizr.util.ImageUtils;
 import com.structurizr.util.StringUtils;
 import com.structurizr.util.Url;
-import org.apache.hc.client5.http.classic.methods.HttpGet;
-import org.apache.hc.client5.http.config.ConnectionConfig;
-import org.apache.hc.client5.http.impl.classic.CloseableHttpClient;
-import org.apache.hc.client5.http.impl.classic.CloseableHttpResponse;
-import org.apache.hc.client5.http.impl.classic.HttpClientBuilder;
-import org.apache.hc.client5.http.impl.classic.HttpClients;
-import org.apache.hc.client5.http.impl.io.BasicHttpClientConnectionManager;
-import org.apache.hc.core5.http.io.entity.EntityUtils;
 
 import java.io.*;
 import java.nio.charset.StandardCharsets;
 import java.nio.file.Files;
-import java.util.concurrent.TimeUnit;
 
 /**
  * Some utility methods for exporting themes to JSON.
  */
 public final class ThemeUtils {
 
-    private static final int HTTP_OK_STATUS = 200;
-
     private static final int DEFAULT_TIMEOUT_IN_MILLISECONDS = 10000;
 
     /**
@@ -90,27 +80,38 @@ public static void loadThemes(Workspace workspace) throws Exception {
      * @throws Exception    if something goes wrong
      */
     public static void loadThemes(Workspace workspace, int timeoutInMilliseconds) throws Exception {
+        HttpClient httpClient = new HttpClient();
+        httpClient.setTimeout(timeoutInMilliseconds);
+
+        loadThemes(workspace, httpClient);
+    }
+
+    public static void loadThemes(Workspace workspace, HttpClient httpClient) throws Exception {
         for (String themeLocation : workspace.getViews().getConfiguration().getThemes()) {
             if (Url.isUrl(themeLocation)) {
-                String json = loadFrom(themeLocation, timeoutInMilliseconds);
-                Theme theme = fromJson(json);
-                String baseUrl = themeLocation.substring(0, themeLocation.lastIndexOf('/') + 1);
-
-                for (ElementStyle elementStyle : theme.getElements()) {
-                    String icon = elementStyle.getIcon();
-                    if (!StringUtils.isNullOrEmpty(icon)) {
-                        if (icon.startsWith("http")) {
-                            // okay, image served over HTTP
-                        } else if (icon.startsWith("data:image")) {
-                            // also okay, data URI
-                        } else {
-                            // convert the relative icon filename into a full URL
-                            elementStyle.setIcon(baseUrl + icon);
+                RemoteContent remoteContent = httpClient.get(themeLocation);
+                if (remoteContent.getContentType().equals(RemoteContent.CONTENT_TYPE_JSON)) {
+                    Theme theme = fromJson(remoteContent.getContentAsString());
+                    String baseUrl = themeLocation.substring(0, themeLocation.lastIndexOf('/') + 1);
+
+                    for (ElementStyle elementStyle : theme.getElements()) {
+                        String icon = elementStyle.getIcon();
+                        if (!StringUtils.isNullOrEmpty(icon)) {
+                            if (Url.isHttpUrl(icon) || Url.isHttpsUrl(icon)) {
+                                // okay, image served over HTTP or HTTPS
+                            } else if (icon.startsWith("data:image")) {
+                                // also okay, data URI
+                            } else {
+                                // convert the relative icon filename into a full URL
+                                elementStyle.setIcon(baseUrl + icon);
+                            }
                         }
                     }
-                }
 
-                workspace.getViews().getConfiguration().getStyles().addStylesFromTheme(theme);
+                    workspace.getViews().getConfiguration().getStyles().addStylesFromTheme(theme);
+                } else {
+                    throw new RuntimeException(String.format("%s - expected content type of %s, actual content type is %s", themeLocation, RemoteContent.CONTENT_TYPE_JSON, remoteContent.getContentType()));
+                }
             }
         }
     }
@@ -144,31 +145,6 @@ public static void inlineTheme(Workspace workspace, File file) throws Exception
         workspace.getViews().getConfiguration().getStyles().inlineTheme(theme);
     }
 
-    private static String loadFrom(String url, int timeoutInMilliseconds) throws Exception {
-        ConnectionConfig connectionConfig = ConnectionConfig.custom()
-                .setConnectTimeout(timeoutInMilliseconds, TimeUnit.MILLISECONDS)
-                .setSocketTimeout(timeoutInMilliseconds, TimeUnit.MILLISECONDS)
-                .build();
-
-        BasicHttpClientConnectionManager cm = new BasicHttpClientConnectionManager();
-        cm.setConnectionConfig(connectionConfig);
-
-        try (CloseableHttpClient httpClient = HttpClientBuilder.create()
-                .useSystemProperties()
-                .setConnectionManager(cm)
-                .build()) {
-
-            HttpGet httpGet = new HttpGet(url);
-
-            CloseableHttpResponse response = httpClient.execute(httpGet);
-            if (response.getCode() == HTTP_OK_STATUS) {
-                return EntityUtils.toString(response.getEntity());
-            }
-        }
-
-        return "";
-    }
-
     private static Theme fromJson(String json) throws Exception {
         ObjectMapper objectMapper = new ObjectMapper();
         objectMapper.enable(DeserializationFeature.ACCEPT_EMPTY_STRING_AS_NULL_OBJECT);

structurizr-client/src/test/java/com/structurizr/http/HttpClientTests.java

@@ -0,0 +1,50 @@
+package com.structurizr.http;
+
+import org.junit.jupiter.api.Tag;
+import org.junit.jupiter.api.Test;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+
+public class HttpClientTests {
+
+    @Test
+    @Tag("IntegrationTest")
+    void get_WhenNoAllowedUrlsAreConfigured() {
+        HttpClient httpClient = new HttpClient();
+
+        try {
+            httpClient.get("https://static.structurizr.com/themes/microsoft-azure-2024.07.15/icons.json");
+        } catch (Exception e) {
+            assertEquals("Access to https://static.structurizr.com/themes/microsoft-azure-2024.07.15/icons.json is not permitted", e.getMessage());
+        }
+    }
+
+    @Test
+    @Tag("IntegrationTest")
+    void get_WithAllowedUrl() {
+        HttpClient httpClient = new HttpClient();
+        httpClient.allow("https://static.structurizr.com/themes/amazon-web-services.*");
+
+        httpClient.get("https://static.structurizr.com/themes/amazon-web-services-2023.01.31/icons.json");
+
+        try {
+            httpClient.get("https://static.structurizr.com/themes/microsoft-azure-2024.07.15/icons.json");
+        } catch (Exception e) {
+            assertEquals("Access to https://static.structurizr.com/themes/microsoft-azure-2024.07.15/icons.json is not permitted", e.getMessage());
+        }
+    }
+
+    @Test
+    @Tag("IntegrationTest")
+    void get_WithDisallowedUrl() {
+        HttpClient httpClient = new HttpClient();
+        httpClient.allow("https://static.structurizr.com/.*");
+
+        try {
+            httpClient.get("https://example.com");
+        } catch (Exception e) {
+            assertEquals("Access to https://example.com is not permitted", e.getMessage());
+        }
+    }
+
+}

structurizr-core/build.gradle

@@ -1,6 +1,6 @@
 dependencies {
 
-    api 'com.fasterxml.jackson.core:jackson-annotations:2.18.3'
+    api 'com.fasterxml.jackson.core:jackson-annotations:2.20'
     api 'com.google.code.findbugs:jsr305:3.0.2'
     api 'commons-logging:commons-logging:1.3.5'
 

structurizr-core/src/main/java/com/structurizr/util/FeatureNotEnabledException.java

@@ -0,0 +1,13 @@
+package com.structurizr.util;
+
+public final class FeatureNotEnabledException extends RuntimeException {
+
+    public FeatureNotEnabledException(String feature) {
+        super("Feature " + feature + " is not enabled");
+    }
+
+    public FeatureNotEnabledException(String feature, String message) {
+        super(String.format("%s (feature %s is not enabled)", message, feature));
+    }
+
+}