WindowsUserNameSecurityTokenAuthenticator.cs source code in C# .NET

                        
Code:
                         / 4.0 / 4.0 / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / cdf / src / WCF / IdentityModel / System / IdentityModel / Selectors / WindowsUserNameSecurityTokenAuthenticator.cs / 1305376 / WindowsUserNameSecurityTokenAuthenticator.cs
                        

                        
                            //------------------------------------------------------------ 
// Copyright (c) Microsoft Corporation.  All rights reserved.
//-----------------------------------------------------------

namespace System.IdentityModel.Selectors 
{
    using System.Collections.ObjectModel; 
    using System.ComponentModel; 
    using System.IdentityModel.Claims;
    using System.IdentityModel.Policy; 
    using System.IdentityModel.Tokens;
    using System.Runtime.InteropServices;
    using System.Security;
    using System.Security.Principal; 

    public class WindowsUserNameSecurityTokenAuthenticator : UserNameSecurityTokenAuthenticator 
    { 
        bool includeWindowsGroups;
 
        public WindowsUserNameSecurityTokenAuthenticator()
            : this(WindowsClaimSet.DefaultIncludeWindowsGroups)
        {
        } 

        public WindowsUserNameSecurityTokenAuthenticator(bool includeWindowsGroups) 
        { 
            this.includeWindowsGroups = includeWindowsGroups;
        } 

        protected override ReadOnlyCollection ValidateUserNamePasswordCore(string userName, string password)
        {
            string domain = null; 
            string[] strings = userName.Split('\\');
            if (strings.Length != 1) 
            { 
                if (strings.Length != 2 || String.IsNullOrEmpty(strings[0]))
                { 
                    // Only support one slash and domain cannot be empty (consistent with windowslogon).
                    throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgument(SR.GetString(SR.IncorrectUserNameFormat));
                }
 
                // This is the downlevel case - domain\userName
                userName = strings[1]; 
                domain = strings[0]; 
            }
 
            const uint LOGON32_PROVIDER_DEFAULT = 0;
            const uint LOGON32_LOGON_NETWORK_CLEARTEXT = 8;
            SafeCloseHandle tokenHandle = null;
            try 
            {
                if (!NativeMethods.LogonUser(userName, domain, password, LOGON32_LOGON_NETWORK_CLEARTEXT, LOGON32_PROVIDER_DEFAULT, out tokenHandle)) 
                { 
                    int error = Marshal.GetLastWin32Error();
                    throw  DiagnosticUtility.ExceptionUtility.ThrowHelperError(new SecurityTokenValidationException(SR.GetString(SR.FailLogonUser, userName), new Win32Exception(error))); 
                }

                WindowsIdentity windowsIdentity = new WindowsIdentity(tokenHandle.DangerousGetHandle(), SecurityUtils.AuthTypeBasic);
                WindowsClaimSet claimSet = new WindowsClaimSet(windowsIdentity, SecurityUtils.AuthTypeBasic, this.includeWindowsGroups, false); 
                return SecurityUtils.CreateAuthorizationPolicies(claimSet, claimSet.ExpirationTime);
            } 
            finally 
            {
                if (tokenHandle != null) 
                    tokenHandle.Close();
            }
        }
    } 
}

// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
//------------------------------------------------------------ 
// Copyright (c) Microsoft Corporation.  All rights reserved.
//-----------------------------------------------------------

namespace System.IdentityModel.Selectors 
{
    using System.Collections.ObjectModel; 
    using System.ComponentModel; 
    using System.IdentityModel.Claims;
    using System.IdentityModel.Policy; 
    using System.IdentityModel.Tokens;
    using System.Runtime.InteropServices;
    using System.Security;
    using System.Security.Principal; 

    public class WindowsUserNameSecurityTokenAuthenticator : UserNameSecurityTokenAuthenticator 
    { 
        bool includeWindowsGroups;
 
        public WindowsUserNameSecurityTokenAuthenticator()
            : this(WindowsClaimSet.DefaultIncludeWindowsGroups)
        {
        } 

        public WindowsUserNameSecurityTokenAuthenticator(bool includeWindowsGroups) 
        { 
            this.includeWindowsGroups = includeWindowsGroups;
        } 

        protected override ReadOnlyCollection ValidateUserNamePasswordCore(string userName, string password)
        {
            string domain = null; 
            string[] strings = userName.Split('\\');
            if (strings.Length != 1) 
            { 
                if (strings.Length != 2 || String.IsNullOrEmpty(strings[0]))
                { 
                    // Only support one slash and domain cannot be empty (consistent with windowslogon).
                    throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgument(SR.GetString(SR.IncorrectUserNameFormat));
                }
 
                // This is the downlevel case - domain\userName
                userName = strings[1]; 
                domain = strings[0]; 
            }
 
            const uint LOGON32_PROVIDER_DEFAULT = 0;
            const uint LOGON32_LOGON_NETWORK_CLEARTEXT = 8;
            SafeCloseHandle tokenHandle = null;
            try 
            {
                if (!NativeMethods.LogonUser(userName, domain, password, LOGON32_LOGON_NETWORK_CLEARTEXT, LOGON32_PROVIDER_DEFAULT, out tokenHandle)) 
                { 
                    int error = Marshal.GetLastWin32Error();
                    throw  DiagnosticUtility.ExceptionUtility.ThrowHelperError(new SecurityTokenValidationException(SR.GetString(SR.FailLogonUser, userName), new Win32Exception(error))); 
                }

                WindowsIdentity windowsIdentity = new WindowsIdentity(tokenHandle.DangerousGetHandle(), SecurityUtils.AuthTypeBasic);
                WindowsClaimSet claimSet = new WindowsClaimSet(windowsIdentity, SecurityUtils.AuthTypeBasic, this.includeWindowsGroups, false); 
                return SecurityUtils.CreateAuthorizationPolicies(claimSet, claimSet.ExpirationTime);
            } 
            finally 
            {
                if (tokenHandle != null) 
                    tokenHandle.Close();
            }
        }
    } 
}

// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
                        

                        

                        
                        

Link Menu

This book is available now!
Buy at Amazon US or
Buy at Amazon UK

• Win32PrintDialog.cs
• BitmapSource.cs
• WebBrowserBase.cs
• TypedDatasetGenerator.cs
• OleDbFactory.cs
• SpotLight.cs
• PerformanceCounterManager.cs
• PriorityQueue.cs
• DetailsViewInsertedEventArgs.cs
• DispatcherExceptionEventArgs.cs
• Rect.cs
• SystemSounds.cs
• SafeSystemMetrics.cs
• DefaultObjectMappingItemCollection.cs
• MessageAction.cs
• SignedXml.cs
• ClientSponsor.cs
• MimeWriter.cs
• compensatingcollection.cs
• GridItemPattern.cs
• TaiwanLunisolarCalendar.cs
• IfElseDesigner.xaml.cs
• NoneExcludedImageIndexConverter.cs
• ObjectStateFormatter.cs
• DataIdProcessor.cs
• ListViewDesigner.cs
• WSSecureConversationDec2005.cs
• ClientApiGenerator.cs
• FormViewUpdateEventArgs.cs
• Soap12ProtocolReflector.cs
• XmlArrayItemAttributes.cs
• MenuItemStyleCollection.cs
• Bind.cs
• StringSource.cs
• DataGridViewColumnHeaderCell.cs
• File.cs
• DynamicMetaObject.cs
• ConfigXmlComment.cs
• ManagementObject.cs
• EntityContainerRelationshipSetEnd.cs
• WebResourceAttribute.cs
• TemplateField.cs
• CloseSequence.cs
• ByteStream.cs
• DatatypeImplementation.cs
• BitmapSizeOptions.cs
• PropertyDescriptor.cs
• GeometryHitTestParameters.cs
• TargetInvocationException.cs
• EtwTrace.cs
• RuntimeConfigLKG.cs
• StorageComplexTypeMapping.cs
• PointCollection.cs
• AppDomainGrammarProxy.cs
• EdgeModeValidation.cs
• RoleManagerEventArgs.cs
• WmlControlAdapter.cs
• XmlSignificantWhitespace.cs
• Registry.cs
• DataGrid.cs
• FilterableAttribute.cs
• TextPointer.cs
• XmlDownloadManager.cs
• UrlAuthorizationModule.cs
• StringPropertyBuilder.cs
• CachedPathData.cs
• CodeTypeParameter.cs
• LinkedList.cs
• BitmapCodecInfo.cs
• SystemGatewayIPAddressInformation.cs
• LinkedResourceCollection.cs
• MULTI_QI.cs
• ControlAdapter.cs
• ReadOnlyActivityGlyph.cs
• PatternMatchRules.cs
• RegistrySecurity.cs
• WebFaultException.cs
• MasterPage.cs
• EventLogPermissionEntry.cs
• Column.cs
• BitmapEffectOutputConnector.cs
• TableCellAutomationPeer.cs
• DesignerDataTableBase.cs
• QueryResponse.cs
• InputEventArgs.cs
• hwndwrapper.cs
• UrlMappingsModule.cs
• RegexCapture.cs
• HttpPostedFile.cs
• DateTimeValueSerializer.cs
• CodeSubDirectory.cs
• DataServiceQueryContinuation.cs
• StandardBindingElementCollection.cs
• columnmapfactory.cs
• TransactionManager.cs
• DragEventArgs.cs
• ColorBlend.cs
• ObfuscationAttribute.cs
• RIPEMD160Managed.cs
• SecurityContextSecurityTokenParameters.cs