John’s Technical Blog - ThreeLeaf.com

The onContextMenu Event Handler

January 26th, 2008

onContextMenu event does not fire on disabled fields

The onContextMenu event (right-click in Windows) is a proprietary handler in HTML, but is very useful for displaying custom context menus on web pages. For this particular article, I was investigating an application where the business owner wanted a context menu available on disabled fields. The problem specifically occurs because all click events are apparently ignored on disabled fields. Note that Opera apparently ignores the onContextMenu event completely, because it is not a W3C compliant attribute.

Regardless of the W3C non-compliance, the business still wanted this behavior (as far as we know everyone is using IE or FF). Try the following in your browser to see how it behaves.

PLAIN TEXT

JAVA:

<input id="input1" type="text" value="input1" oncontextmenu="alert('input1');return false;" />

Attempt 1: Nest it in a div

The first thing we tried was to wrap the input fields in a div element that had an onContextMenu attribute defined. We found that while this solved the problem in IE7, FF did not "bubble up" the event through the disabled input field. However, any text inside the div element did respond to the onContextMenu event. Try the following in your browser to see how it behaves.

PLAIN TEXT

JAVA:

<div oncontextmenu="alert('input3');return false;">Inside div, outside input3 field
<input id="input3" type="text" value="input3" />
</div>

Solution 1: Convert from disabled to read-only

After a little more research, I found another attribute named "readonly" that I had not used before. I tried it, and found that the onContextMenu event worked just fine in both IE7 and FF.

PLAIN TEXT

JAVA:

<input id="input5" type="text" value="input5" readonly="readonly" oncontextmenu="alert('input5');return false;" />

Solution 2: Make an external, clickable object

I definitely prefer W3C compliant code, however, so a compliant solution would have to involve an external, clickable element to trigger the event. The » symbol below has an onClick event, which works in IE, FF, and Opera.

PLAIN TEXT

JAVA:

<input id="input7" type="text" value="input7" disabled="disabled" /> <span onclick="alert('input7');return false;" style="cursor:pointer;">»</span>

There are some accessibility issues with this approach, of course. One might want to use a link instead of a span to underline the clickable element or choose a more obvious graphical symbol. There are other inherent accessibility issues with the entire context menu approach, but I will not go into those here.

Posted in XHTML, Browsers, JavaScript, Programming | No Comments »

JSP/Java Form Signature

May 16th, 2007

At long last I have been able to set up a form signature for a Java/JSP application. The application I developed uses the Faces framework, and I set up a custom tag to handle the functionality. I am including the important Java classes here. The first Java class is the most important since it contains the functions that generate the signature components. I have documented the code in the javadoc comments.

FormSignatureValidator.java

PLAIN TEXT

JAVA:

package com.threeleaf.jsf.components.formsignature;
import java.security.MessageDigest;
import java.text.SimpleDateFormat;
import java.util.Calendar;
import java.util.Date;
import javax.faces.application.FacesMessage;
import javax.faces.component.UIComponent;
import javax.faces.context.FacesContext;
import javax.faces.validator.Validator;
import javax.faces.validator.ValidatorException;
import javax.servlet.ServletContext;
import org.apache.log4j.Logger;
import com.threeleaf.agentguidedselling.model.StringEncrypter;
import com.threeleaf.agentguidedselling.model.StringEncrypter.EncryptionException;
/**
* Add a "random" but verifiable form field in Faces to prevent many kinds of
* scripted spam attacks. The idea is to tie a browser session to a web address
* during a given timeframe. The goal is to make sure that 1) no generated
* script will be valid for more than an hour 2) robots to different machines
* cannot be spawned. The technique can be worked around, but the hope is that
* spammers will not find it worth their while to do so. If stronger prevention
* is needed, then captchas can be used.
*
* @author John A. Marsh
*
*/
public class FormSignatureValidator implements Validator {
private Logger logger = Logger.getLogger(this.getClass().getName());
/*
* Generates the variable to be used in the form signature input tag. The
* value changes every hour. It is assumed
* that no single form will ever take an hour to fill out and submit. Every
* hour, the length of the random variable will change. The object is to
* twart script robots. It is not perfect, but it works well without
* requiring captchas.
*
* @param optional calendar object with which to calculate the field.
* Overloaded to default to the current time.
*
* @return a reproducable "random" string to be used as a form field name.
*
* @author John A. Marsh
*
*/
public static String formSignatureID(Calendar now) {
// The filed name will change once an hour
SimpleDateFormat formatter = new SimpleDateFormat("hhdDEEEEFMMMMyyyyzzzz");
String fieldName = formatter.format(now.getTime());
// We want to have the string be between 7 and 14 characters in a
// reproducably "random" manner
int stringLength = 7 + fieldName.length() % 7;
fieldName = md5(fieldName);
/*
* We want the first character to begin with a letter, not a number, to
* guarantee browser and language compatibilty We want to start as close
* to the beginning as possible. It is highly improbably that one of the
* hex letters would not be found closer to the beginning than the first
* calculation, but it is there just in case.
*/
int firstCharacter = 31 - stringLength;
if (fieldName.indexOf("a")> -1)
firstCharacter = Math.min(firstCharacter, fieldName.indexOf("a"));
if (fieldName.indexOf("b")> -1)
firstCharacter = Math.min(firstCharacter, fieldName.indexOf("b"));
if (fieldName.indexOf("c")> -1)
firstCharacter = Math.min(firstCharacter, fieldName.indexOf("c"));
if (fieldName.indexOf("d")> -1)
firstCharacter = Math.min(firstCharacter, fieldName.indexOf("d"));
if (fieldName.indexOf("e")> -1)
firstCharacter = Math.min(firstCharacter, fieldName.indexOf("e"));
if (fieldName.indexOf("f")> -1)
firstCharacter = Math.min(firstCharacter, fieldName.indexOf("f"));
fieldName = fieldName.substring(firstCharacter, firstCharacter + stringLength);
return fieldName;
}
public static String formSignatureID() {
Calendar now = Calendar.getInstance();
return formSignatureID(now);
}
/*
* Create a form signature. This is basically a timestamp. The time in
* milliseconds is hashed and then paired with the encrypted value. On the
* other side, the time is unencrypted and compared with the hashed value.
*
* @param seed Optional "password" for the form
*
* @return the generated key
*
* @trows EncryptionException
*
* @author John A. Marsh
*
*/
public static String formSignatureGenerate(String seed) throws EncryptionException {
Logger logger = Logger.getLogger("FormSignatureValidator.formSignatureGenerate(\"" + seed + "\")");
Date currentDate = new Date();
String millitime = Long.toString(currentDate.getTime());
StringEncrypter encrypter = new StringEncrypter("DES", seed);
if(logger.isDebugEnabled()) {
logger.debug("Time in milliseconds: " + millitime);
logger.debug("md5(millitime): " + md5(millitime));
logger.debug("encrypter.encrypt(millitime): " + encrypter.encrypt(millitime));
}
return md5(millitime) + encrypter.encrypt(millitime);
}
public static String formSignatureGenerate() {
ServletContext context = (ServletContext) FacesContext.getCurrentInstance().getExternalContext().getContext();
Logger logger = Logger.getLogger("FormSignatureValidator.formSignatureGenerate()");
String seed = context.getServerInfo();
logger.debug("Generated seed: " + seed);
try {
return formSignatureGenerate(seed);
} catch (EncryptionException e) {
return "error";
}
}
public static String md5(String string) {
try {
MessageDigest md = MessageDigest.getInstance("MD5");
md.update(string.getBytes());
byte[] digest = md.digest();
String hexString = hexify(digest);
return hexString;
} catch (Exception e) {
e.printStackTrace();
return null;
}
}
static private String[] HEX = { "0", "1", "2", "3", "4", "5", "6", "7", "8", "9", "a", "b", "c", "d", "e", "f" };
static public String hexify(byte byValue) {
int nValue = (int) byValue + 128;
return HEX[nValue / 16] + HEX[nValue % 16];
}
static public String hexify(byte[] bytes) {
String hexed = "";
for (int i = 0; i <bytes.length; i++) {
hexed += hexify(bytes[i]);
}
return hexed;
}
}

The following code is used to render the custom tag in Faces.

FormSignatureRenderer.java

PLAIN TEXT

JAVA:

package com.threeleaf.jsf.components.formsignature;
import java.io.IOException;
import java.util.Map;
import javax.faces.component.UIComponent;
import javax.faces.component.UIInput;
import javax.faces.context.FacesContext;
import javax.faces.context.ResponseWriter;
import javax.faces.render.Renderer;
/**
* Dictates how the HTML element is to be rendered.
* The form signature is a hidden field in a form. Its name and
* value are auto generated using the formulas in FormSignatureValidator.
*
* @author John A. Marsh
* @see FormSignatureValidator
*
*/
public class FormSignatureRenderer extends Renderer {
public FormSignatureRenderer() {
super();
}
/* (non-Javadoc)
*
* This method is responsible for taking any parameters that were passed in from a form post and setting the value on the component.
*
* @see javax.faces.render.Renderer#decode(javax.faces.context.FacesContext, javax.faces.component.UIComponent)
*/
public void decode(FacesContext context, UIComponent component) {
assertValidInput(context, component);
if (component instanceof UIInput) {
UIInput input = (UIInput) component;
String clientId = input.getClientId(context);
Map requestMap = context.getExternalContext().getRequestParameterMap();
String newValue = (String) requestMap.get(clientId);
if (null != newValue) {
input.setSubmittedValue(newValue);
}
}
}
/* (non-Javadoc)
* @see javax.faces.render.Renderer#encodeEnd(javax.faces.context.FacesContext, javax.faces.component.UIComponent)
*/
public void encodeEnd(FacesContext context, UIComponent component)
throws IOException {
assertValidInput(context, component);
String formSignature = "";
ResponseWriter writer = context.getResponseWriter();
writer.startElement("input", component);
writer.writeAttribute("type", "hidden", null);
String id = FormSignatureValidator.formSignatureID();
writer.writeAttribute("id", component.getParent().getId() + ":" + id, "id");
writer.writeAttribute("name", id, "id");
formSignature = FormSignatureValidator.formSignatureGenerate();
writer.writeAttribute("value", formSignature, "value");
writer.endElement("input");
}
/**
* Verify that the context and the component are not null.
* Every Faces Renderer component should do this.
*
* @author John A. Marsh
* @param context
* @param component
*
*/
private void assertValidInput(FacesContext context, UIComponent component) {
if (context == null) {
throw new NullPointerException("context should not be null");
} else if (component == null) {
throw new NullPointerException("component should not be null");
}
}
}

FormSignatureTag.java

PLAIN TEXT

JAVA:

package com.threeleaf.jsf.components.formsignature;
import javax.faces.component.UIComponent;
import javax.faces.context.FacesContext;
import javax.faces.webapp.UIComponentTag;
/**
* Code to create the form signature tag
*
* @author John A. Marsh
*
*/
public class FormSignatureTag extends UIComponentTag {
private static final String FORM_SIGNATURE_COMPONENT_TYPE = "FORM_SIGNATURE_INPUT";
private static final String FORM_SIGNATURE_RENDER_TYPE = "FORM_SIGNATURE_RENDERER";
/* (non-Javadoc)
* @see javax.faces.webapp.UIComponentTag#getComponentType()
*/
public String getComponentType() {
return FORM_SIGNATURE_COMPONENT_TYPE;
}
/* (non-Javadoc)
* @see javax.faces.webapp.UIComponentTag#getRendererType()
*/
public String getRendererType() {
// TODO Auto-generated method stub
return FORM_SIGNATURE_RENDER_TYPE;
}
protected void setProperties(UIComponent component) {
FacesContext context = FacesContext.getCurrentInstance();
super.setProperties(component);
/*if (null != value) {
if (isValueReference(value)) {
ValueBinding vb = context.getApplication().createValueBinding(
value);
component.setValueBinding("value", vb);
} else {
((UIInput) component).setValue(value);
}
}*/
}
}

UIFormSignature.java

PLAIN TEXT

JAVA:

package com.threeleaf.jsf.components.formsignature;
import javax.faces.component.UIInput;
/**
* Sets up the user interface compontent for the form signature.
*
* @author John A. Marsh
*/
public class UIFormSignature extends UIInput {
public static final String FORM_SIGNATURE_FAMILY = "FSFAMILY";
/**
* Adding the validator directly to the component, so it does not need to be specified separately.
*/
public UIFormSignature() {
super();
addValidator(new FormSignatureValidator());
}
public String getFamily() {
return FORM_SIGNATURE_FAMILY;
}
}

Posted in Example / Tutorial, Java, Web, Programming, Uncategorized | No Comments »

Zip Code Distance Calculations in MySQL and UDB

March 31st, 2007

I am currently involved in a project where the program I am writing is supposed to return a list of the 10 doctors nearest to a visitor's zip code. Note that this is not the same as doctors in a given radius (say 10 miles), but it does use the same basic formula. This article will be the first of a two part series and lays the groundwork for calculating what is nearest to a zip code. In the second part I intend to show how I integrate this logic with a list of doctors with addresses.

Below you will find the results of my experimental queries that compare the classic radius methodology with my own "10 nearest" methodology. My production program uses a UDB (DB2) database, and I thought of the performance contrasts between UDB and MySQL was interesting, so I am going to show all the comparisons below. Finally, I wanted to show what differences there were between the more accurate "Haversine Formula" as compared to the less intensive "Spherical Law of Cosines" when calculating the distance between two points on a sphere. These examples should give you plenty of real life code you can use in your own programs.

The company I work for subscribes to the zip code database (referred to here as ZipUSA) from http://www.zipdatafiles.com/data/ The data comes from the United States Postal Service and other sources, but I have occasionally found strange geocoding results. I will probably write a different article about that using a different application that I have written.

Within 10 miles

Haversine Formula

The following finds the zip codes within 10 miles of 27712 using the haversine (great circle) equation. The field names are based on the ZipUSA tables.

SELECT DISTINCT
	destination.zip_code,
	3956 * 2 * ASIN(SQRT(
		POWER(SIN((origin.lat - destination.lat) * 0.0174532925 / 2), 2) +
		COS(origin.lat * 0.0174532925) *
		COS(destination.lat * 0.0174532925) *
		POWER(SIN((origin.lng - destination.lng) * 0.0174532925 / 2), 2)
	)) distance
 
FROM
	tblZipUSA origin,
	tblZipUSA destination
 
WHERE
	origin.zip_code = '27712'
	AND
	3956 * 2 * ASIN(SQRT(
		POWER(SIN((origin.lat - destination.lat) * 0.0174532925 / 2), 2) +
		COS(origin.lat * 0.0174532925) *
		COS(destination.lat * 0.0174532925) *
		POWER(SIN((origin.lng - destination.lng) * 0.0174532925 / 2), 2)
	)) < 10
 
ORDER BY
	distance, zip_code

The ZipUSA database was set up with the same indexes in MySQL and UDB (DB2). Queries in MySQL were run in the phpAdmin tool. The UDB/DB2 queries were run in Quest.

MySQL

zip_code	distance
27712	0
27704	4.75326962990057
27705	5.34287681627437
27708	5.57383981806715
27503	5.58564401941337
27701	6.41245709075393
27706	6.58029004252293
27709	6.59449266010451
27702	6.61586916445661
27710	6.61586916445661
27711	6.61586916445661
27715	6.61586916445661
27717	6.61586916445661
27722	6.61586916445661
27707	8.57121741472298
27703	9.5828790270889
27278	9.58552637370736
27564	9.72570727493623
27509	9.80777888765073

Showing rows 0 - 18 (19 total, Query took 2.1139 sec)

DB2/UDB

zip_code	distance
27712	0
27704	4.75326962990023
27705	5.34287681627435
27708	5.57383981806714
27503	5.58564401941335
27701