removed tiles dependency

added better error handling for problems when loading webgoat properties

Author: lawson89

java/org/owasp/webgoat/HammerHead.java

@@ -245,7 +245,7 @@ public void init() throws ServletException {
         logger.info("Initializing main webgoat servlet");
         httpDateFormat = new SimpleDateFormat("EEE, dd MMM yyyyy HH:mm:ss z", Locale.US);
         httpDateFormat.setTimeZone(TimeZone.getTimeZone("GMT"));
-        propertiesPath = getServletContext().getRealPath("./WEB-INF/webgoat.properties");
+        propertiesPath = getServletContext().getRealPath("/WEB-INF/webgoat.properties");
         webgoatContext = new WebgoatContext(this);
     }
 

java/org/owasp/webgoat/session/Course.java

@@ -13,6 +13,8 @@
 import org.owasp.webgoat.HammerHead;
 import org.owasp.webgoat.lessons.AbstractLesson;
 import org.owasp.webgoat.lessons.Category;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
 
 /**
  * *************************************************************************************************
@@ -49,6 +51,8 @@
  */
 public class Course {
 
+    final Logger logger = LoggerFactory.getLogger(WebgoatProperties.class);
+
     private List<AbstractLesson> lessons = new LinkedList<AbstractLesson>();
 
     private final static String PROPERTIES_FILENAME = HammerHead.propertiesPath;
@@ -63,8 +67,7 @@ public Course() {
         try {
             properties = new WebgoatProperties(PROPERTIES_FILENAME);
         } catch (IOException e) {
-            System.out.println("Error loading WebGoat properties");
-            e.printStackTrace();
+            logger.error("Error loading webgoat properties", e);
         }
     }
 

java/org/owasp/webgoat/session/WebgoatProperties.java

@@ -1,123 +1,119 @@
-
 package org.owasp.webgoat.session;
 
+import java.io.File;
 import java.io.FileInputStream;
 import java.io.IOException;
 import java.util.Properties;
-
-
-/***************************************************************************************************
- * 
- * 
- * This file is part of WebGoat, an Open Web Application Security Project utility. For details,
- * please see http://www.owasp.org/
- * 
+import org.owasp.webgoat.HammerHead;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+/**
+ * *************************************************************************************************
+ *
+ *
+ * This file is part of WebGoat, an Open Web Application Security Project
+ * utility. For details, please see http://www.owasp.org/
+ *
  * Copyright (c) 2002 - 2007 Bruce Mayhew
- * 
- * This program is free software; you can redistribute it and/or modify it under the terms of the
- * GNU General Public License as published by the Free Software Foundation; either version 2 of the
- * License, or (at your option) any later version.
- * 
- * This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without
- * even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
- * General Public License for more details.
- * 
- * You should have received a copy of the GNU General Public License along with this program; if
- * not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA
- * 02111-1307, USA.
- * 
+ *
+ * This program is free software; you can redistribute it and/or modify it under
+ * the terms of the GNU General Public License as published by the Free Software
+ * Foundation; either version 2 of the License, or (at your option) any later
+ * version.
+ *
+ * This program is distributed in the hope that it will be useful, but WITHOUT
+ * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
+ * FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
+ * details.
+ *
+ * You should have received a copy of the GNU General Public License along with
+ * this program; if not, write to the Free Software Foundation, Inc., 59 Temple
+ * Place - Suite 330, Boston, MA 02111-1307, USA.
+ *
  * Getting Source ==============
- * 
- * Source for this application is maintained at code.google.com, a repository for free software
- * projects.
- * 
+ *
+ * Source for this application is maintained at code.google.com, a repository
+ * for free software projects.
+ *
  * For details, please see http://code.google.com/p/webgoat/
  */
-public class WebgoatProperties extends Properties
-{
-
-	/**
-	 * 
-	 */
-	private static final long serialVersionUID = 4351681705558227918L;
-
-	public WebgoatProperties(String propertiesFileName) throws IOException
-	{
-		try
-		{
-			FileInputStream in = new FileInputStream(propertiesFileName);
-			load(in);
-		} catch (IOException e)
-		{
-			System.out.println("Warning: Unable to open webgoat.properties file");
-		}
-	}
-
-	public int getIntProperty(String key, int defaultValue)
-	{
-		int value = defaultValue;
-
-		String s = getProperty(key);
-		if (s != null)
-		{
-			value = Integer.parseInt(s);
-		}
-
-		return value;
-	}
-
-	public boolean getBooleanProperty(String key, boolean defaultValue)
-	{
-		boolean value = defaultValue;
-		key = this.trimLesson(key);
-
-		String s = getProperty(key);
-		if (s != null)
-		{
-			if (s.equalsIgnoreCase("true"))
-				value = true;
-			else if (s.equalsIgnoreCase("yes"))
-				value = true;
-			else if (s.equalsIgnoreCase("on"))
-				value = true;
-			else if (s.equalsIgnoreCase("false"))
-				value = false;
-			else if (s.equalsIgnoreCase("no"))
-				value = false;
-			else if (s.equalsIgnoreCase("off")) value = false;
-		}
-
-		return value;
-	}
-
-	private String trimLesson(String lesson)
-	{
-		String result = "";
-
-		if (lesson.startsWith("org.owasp.webgoat.lessons."))
-		{
-			result = lesson.substring("org.owasp.webgoat.lessons.".length(), lesson.length());
-		}
-		else
-		{
-			result = lesson;
-		}
-
-		return result;
-	}
-
-	public static void main(String[] args)
-	{
-		WebgoatProperties properties = null;
-		try
-		{
-			properties = new WebgoatProperties("C:\\webgoat.properties");
-		} catch (IOException e)
-		{
-			System.out.println("Error loading properties");
-			e.printStackTrace();
-		}
-		System.out.println(properties.getProperty("CommandInjection.category"));
-	}
+public class WebgoatProperties extends Properties {
+
+    /**
+     *
+     */
+    private static final long serialVersionUID = 4351681705558227918L;
+    final Logger logger = LoggerFactory.getLogger(WebgoatProperties.class);
+
+    public WebgoatProperties(String propertiesFileName) throws IOException {
+        if (propertiesFileName == null) {
+            throw new IOException("Path to webgoat.properties is null, initialization must have failed");
+        }
+        File propertiesFile = new File(propertiesFileName);
+        if (propertiesFile.exists() == false) {
+            throw new IOException("Unable to locate webgoat.properties at: " + propertiesFileName);
+        }
+        FileInputStream in = new FileInputStream(propertiesFile);
+        load(in);
+    }
+
+    public int getIntProperty(String key, int defaultValue) {
+        int value = defaultValue;
+
+        String s = getProperty(key);
+        if (s != null) {
+            value = Integer.parseInt(s);
+        }
+
+        return value;
+    }
+
+    public boolean getBooleanProperty(String key, boolean defaultValue) {
+        boolean value = defaultValue;
+        key = this.trimLesson(key);
+
+        String s = getProperty(key);
+        if (s != null) {
+            if (s.equalsIgnoreCase("true")) {
+                value = true;
+            } else if (s.equalsIgnoreCase("yes")) {
+                value = true;
+            } else if (s.equalsIgnoreCase("on")) {
+                value = true;
+            } else if (s.equalsIgnoreCase("false")) {
+                value = false;
+            } else if (s.equalsIgnoreCase("no")) {
+                value = false;
+            } else if (s.equalsIgnoreCase("off")) {
+                value = false;
+            }
+        }
+
+        return value;
+    }
+
+    private String trimLesson(String lesson) {
+        String result = "";
+
+        if (lesson.startsWith("org.owasp.webgoat.lessons.")) {
+            result = lesson.substring("org.owasp.webgoat.lessons.".length(), lesson.length());
+        } else {
+            result = lesson;
+        }
+
+        return result;
+    }
+
+    public static void main(String[] args) {
+        WebgoatProperties properties = null;
+        try {
+            properties = new WebgoatProperties("C:\\webgoat.properties");
+        } catch (IOException e) {
+            System.out.println("Error loading properties");
+            e.printStackTrace();
+        }
+        System.out.println(properties.getProperty("CommandInjection.category"));
+    }
 
 }

pom.xml

@@ -301,24 +301,6 @@
             <version>${tiles.version}</version>
             <type>jar</type>
         </dependency>
-        <dependency>
-            <groupId>org.apache.tiles</groupId>
-            <artifactId>tiles-template</artifactId>
-            <version>${tiles.version}</version>
-            <type>jar</type>
-        </dependency>
-        <dependency>
-            <groupId>org.apache.tiles</groupId>
-            <artifactId>tiles-servlet</artifactId>
-            <version>${tiles.version}</version>
-            <type>jar</type>
-        </dependency>
-        <dependency>
-            <groupId>org.apache.tiles</groupId>
-            <artifactId>tiles-jsp</artifactId>
-            <version>${tiles.version}</version>
-            <type>jar</type>
-        </dependency>
         <dependency>
             <groupId>org.slf4j</groupId>
             <artifactId>slf4j-api</artifactId>