Code:
/ 4.0 / 4.0 / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / cdf / src / WCF / IdentityModel / System / IdentityModel / Tokens / RsaSecurityToken.cs / 1305376 / RsaSecurityToken.cs
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.IdentityModel.Tokens
{
using System.Collections.Generic;
using System.Collections.ObjectModel;
using System.ComponentModel;
using System.Diagnostics;
using System.Runtime.InteropServices;
using System.Security.Cryptography;
using System.Runtime.CompilerServices;
public class RsaSecurityToken : SecurityToken
{
string id;
DateTime effectiveTime;
ReadOnlyCollection rsaKey;
RSA rsa;
CspKeyContainerInfo keyContainerInfo;
GCHandle rsaHandle;
public RsaSecurityToken(RSA rsa)
: this(rsa, SecurityUniqueId.Create().Value)
{
}
public RsaSecurityToken(RSA rsa, string id)
{
if (rsa == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa");
if (id == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("id");
this.rsa = rsa;
this.id = id;
this.effectiveTime = DateTime.UtcNow;
GC.SuppressFinalize(this);
}
// This is defense-in-depth.
// Rsa finalizer can throw and bring down the process if in finalizer context.
// This internal ctor is used by SM's IssuedSecurityTokenProvider.
// If ownsRsa=true, this class will take ownership of the Rsa object and provides
// a reliable finalizing/disposing of Rsa object. The GCHandle is used to ensure
// order in finalizer sequence.
RsaSecurityToken(RSACryptoServiceProvider rsa, bool ownsRsa)
{
if (rsa == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa");
this.rsa = rsa;
this.id = SecurityUniqueId.Create().Value;
this.effectiveTime = DateTime.UtcNow;
if (ownsRsa)
{
// This also key pair generation.
// This must be called before PersistKeyInCsp to avoid a handle to go out of scope.
this.keyContainerInfo = rsa.CspKeyContainerInfo;
// We will handle key file deletion
rsa.PersistKeyInCsp = true;
this.rsaHandle = GCHandle.Alloc(rsa);
}
else
{
GC.SuppressFinalize(this);
}
}
~RsaSecurityToken()
{
Dispose(false);
}
internal void Dispose()
{
Dispose(true);
GC.SuppressFinalize(this);
}
void Dispose(bool disposing)
{
if (this.rsaHandle.IsAllocated)
{
try
{
// keyContainerInfo is a wrapper over a member of Rsa.
// this is to be safe that rsa.Dispose won't clean up that member.
string keyContainerName = this.keyContainerInfo.KeyContainerName;
string providerName = this.keyContainerInfo.ProviderName;
uint providerType = (uint)this.keyContainerInfo.ProviderType;
((IDisposable)this.rsa).Dispose();
// Best effort delete key file in user context
SafeProvHandle provHandle;
if (!NativeMethods.CryptAcquireContextW(out provHandle,
keyContainerName,
providerName,
providerType,
NativeMethods.CRYPT_DELETEKEYSET))
{
int error = Marshal.GetLastWin32Error();
try
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(
new InvalidOperationException(SR.GetString(SR.FailedToDeleteKeyContainerFile), new Win32Exception(error)));
}
catch (InvalidOperationException ex)
{
if (DiagnosticUtility.ShouldTraceWarning)
{
DiagnosticUtility.ExceptionUtility.TraceHandledException(ex, TraceEventType.Warning);
}
}
}
System.ServiceModel.Diagnostics.Utility.CloseInvalidOutSafeHandle(provHandle);
}
finally
{
this.rsaHandle.Free();
}
}
}
internal static RsaSecurityToken CreateSafeRsaSecurityToken(int keySize)
{
RsaSecurityToken token;
RSACryptoServiceProvider rsa = null;
RuntimeHelpers.PrepareConstrainedRegions();
try
{
try
{
}
finally
{
rsa = new RSACryptoServiceProvider(keySize);
}
token = new RsaSecurityToken(rsa, true);
rsa = null;
}
finally
{
if (rsa != null)
{
((IDisposable)rsa).Dispose();
}
}
return token;
}
public override string Id
{
get { return this.id; }
}
public override DateTime ValidFrom
{
get { return this.effectiveTime; }
}
public override DateTime ValidTo
{
// Never expire
get { return SecurityUtils.MaxUtcDateTime; }
}
public override ReadOnlyCollection SecurityKeys
{
get
{
if (this.rsaKey == null)
{
List keys = new List(1);
keys.Add(new RsaSecurityKey(this.rsa));
this.rsaKey = keys.AsReadOnly();
}
return this.rsaKey;
}
}
public RSA Rsa
{
get { return this.rsa; }
}
public override bool CanCreateKeyIdentifierClause()
{
return typeof(T) == typeof(RsaKeyIdentifierClause);
}
public override T CreateKeyIdentifierClause()
{
if (typeof(T) == typeof(RsaKeyIdentifierClause))
return (T)((object)new RsaKeyIdentifierClause(this.rsa));
throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(new NotSupportedException(
SR.GetString(SR.TokenDoesNotSupportKeyIdentifierClauseCreation, GetType().Name, typeof(T).Name)));
}
public override bool MatchesKeyIdentifierClause(SecurityKeyIdentifierClause keyIdentifierClause)
{
RsaKeyIdentifierClause rsaKeyIdentifierClause = keyIdentifierClause as RsaKeyIdentifierClause;
if (rsaKeyIdentifierClause != null)
return rsaKeyIdentifierClause.Matches(this.rsa);
return false;
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.IdentityModel.Tokens
{
using System.Collections.Generic;
using System.Collections.ObjectModel;
using System.ComponentModel;
using System.Diagnostics;
using System.Runtime.InteropServices;
using System.Security.Cryptography;
using System.Runtime.CompilerServices;
public class RsaSecurityToken : SecurityToken
{
string id;
DateTime effectiveTime;
ReadOnlyCollection rsaKey;
RSA rsa;
CspKeyContainerInfo keyContainerInfo;
GCHandle rsaHandle;
public RsaSecurityToken(RSA rsa)
: this(rsa, SecurityUniqueId.Create().Value)
{
}
public RsaSecurityToken(RSA rsa, string id)
{
if (rsa == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa");
if (id == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("id");
this.rsa = rsa;
this.id = id;
this.effectiveTime = DateTime.UtcNow;
GC.SuppressFinalize(this);
}
// This is defense-in-depth.
// Rsa finalizer can throw and bring down the process if in finalizer context.
// This internal ctor is used by SM's IssuedSecurityTokenProvider.
// If ownsRsa=true, this class will take ownership of the Rsa object and provides
// a reliable finalizing/disposing of Rsa object. The GCHandle is used to ensure
// order in finalizer sequence.
RsaSecurityToken(RSACryptoServiceProvider rsa, bool ownsRsa)
{
if (rsa == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa");
this.rsa = rsa;
this.id = SecurityUniqueId.Create().Value;
this.effectiveTime = DateTime.UtcNow;
if (ownsRsa)
{
// This also key pair generation.
// This must be called before PersistKeyInCsp to avoid a handle to go out of scope.
this.keyContainerInfo = rsa.CspKeyContainerInfo;
// We will handle key file deletion
rsa.PersistKeyInCsp = true;
this.rsaHandle = GCHandle.Alloc(rsa);
}
else
{
GC.SuppressFinalize(this);
}
}
~RsaSecurityToken()
{
Dispose(false);
}
internal void Dispose()
{
Dispose(true);
GC.SuppressFinalize(this);
}
void Dispose(bool disposing)
{
if (this.rsaHandle.IsAllocated)
{
try
{
// keyContainerInfo is a wrapper over a member of Rsa.
// this is to be safe that rsa.Dispose won't clean up that member.
string keyContainerName = this.keyContainerInfo.KeyContainerName;
string providerName = this.keyContainerInfo.ProviderName;
uint providerType = (uint)this.keyContainerInfo.ProviderType;
((IDisposable)this.rsa).Dispose();
// Best effort delete key file in user context
SafeProvHandle provHandle;
if (!NativeMethods.CryptAcquireContextW(out provHandle,
keyContainerName,
providerName,
providerType,
NativeMethods.CRYPT_DELETEKEYSET))
{
int error = Marshal.GetLastWin32Error();
try
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(
new InvalidOperationException(SR.GetString(SR.FailedToDeleteKeyContainerFile), new Win32Exception(error)));
}
catch (InvalidOperationException ex)
{
if (DiagnosticUtility.ShouldTraceWarning)
{
DiagnosticUtility.ExceptionUtility.TraceHandledException(ex, TraceEventType.Warning);
}
}
}
System.ServiceModel.Diagnostics.Utility.CloseInvalidOutSafeHandle(provHandle);
}
finally
{
this.rsaHandle.Free();
}
}
}
internal static RsaSecurityToken CreateSafeRsaSecurityToken(int keySize)
{
RsaSecurityToken token;
RSACryptoServiceProvider rsa = null;
RuntimeHelpers.PrepareConstrainedRegions();
try
{
try
{
}
finally
{
rsa = new RSACryptoServiceProvider(keySize);
}
token = new RsaSecurityToken(rsa, true);
rsa = null;
}
finally
{
if (rsa != null)
{
((IDisposable)rsa).Dispose();
}
}
return token;
}
public override string Id
{
get { return this.id; }
}
public override DateTime ValidFrom
{
get { return this.effectiveTime; }
}
public override DateTime ValidTo
{
// Never expire
get { return SecurityUtils.MaxUtcDateTime; }
}
public override ReadOnlyCollection SecurityKeys
{
get
{
if (this.rsaKey == null)
{
List keys = new List(1);
keys.Add(new RsaSecurityKey(this.rsa));
this.rsaKey = keys.AsReadOnly();
}
return this.rsaKey;
}
}
public RSA Rsa
{
get { return this.rsa; }
}
public override bool CanCreateKeyIdentifierClause()
{
return typeof(T) == typeof(RsaKeyIdentifierClause);
}
public override T CreateKeyIdentifierClause()
{
if (typeof(T) == typeof(RsaKeyIdentifierClause))
return (T)((object)new RsaKeyIdentifierClause(this.rsa));
throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(new NotSupportedException(
SR.GetString(SR.TokenDoesNotSupportKeyIdentifierClauseCreation, GetType().Name, typeof(T).Name)));
}
public override bool MatchesKeyIdentifierClause(SecurityKeyIdentifierClause keyIdentifierClause)
{
RsaKeyIdentifierClause rsaKeyIdentifierClause = keyIdentifierClause as RsaKeyIdentifierClause;
if (rsaKeyIdentifierClause != null)
return rsaKeyIdentifierClause.Matches(this.rsa);
return false;
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- ConnectionString.cs
- PackageRelationshipSelector.cs
- CodeComment.cs
- Cloud.cs
- VersionedStreamOwner.cs
- MeshGeometry3D.cs
- Operator.cs
- DiffuseMaterial.cs
- DataPagerCommandEventArgs.cs
- SafeHandle.cs
- Point.cs
- SafeNativeMemoryHandle.cs
- NominalTypeEliminator.cs
- BidOverLoads.cs
- InternalConfigEventArgs.cs
- ToolStripHighContrastRenderer.cs
- UniformGrid.cs
- lengthconverter.cs
- VirtualPathUtility.cs
- PointAnimationBase.cs
- IndentedWriter.cs
- PersonalizationEntry.cs
- ModelPropertyDescriptor.cs
- RtType.cs
- X509Chain.cs
- HostedTcpTransportManager.cs
- XmlDictionaryString.cs
- sqlstateclientmanager.cs
- ClassicBorderDecorator.cs
- BooleanExpr.cs
- DependencyPropertyKind.cs
- TextUtf8RawTextWriter.cs
- DelegateSerializationHolder.cs
- InstancePersistenceContext.cs
- ConfigurationValues.cs
- DefaultTypeArgumentAttribute.cs
- WebPartDisplayModeCollection.cs
- StringUtil.cs
- CTreeGenerator.cs
- BlockCollection.cs
- DocumentSchemaValidator.cs
- EdmProperty.cs
- DescendantQuery.cs
- SchemaEntity.cs
- UniqueIdentifierService.cs
- XmlMapping.cs
- AutoCompleteStringCollection.cs
- EntityConnectionStringBuilderItem.cs
- ProjectionPath.cs
- HwndAppCommandInputProvider.cs
- PassportAuthentication.cs
- RichTextBoxAutomationPeer.cs
- PrintDialog.cs
- DataControlCommands.cs
- Parser.cs
- SelectedPathEditor.cs
- ImmutablePropertyDescriptorGridEntry.cs
- SmiMetaData.cs
- CodeGenerator.cs
- SessionStateUtil.cs
- Component.cs
- Row.cs
- FixedSchema.cs
- PLINQETWProvider.cs
- SoapClientMessage.cs
- X509Certificate.cs
- SequenceDesigner.cs
- SafeArrayTypeMismatchException.cs
- LayeredChannelListener.cs
- OutputScopeManager.cs
- DeclaredTypeElement.cs
- ListControlBuilder.cs
- ColumnPropertiesGroup.cs
- ClickablePoint.cs
- ObjectConverter.cs
- WindowsScroll.cs
- behaviorssection.cs
- DataGridViewTextBoxCell.cs
- RuntimeDelegateArgument.cs
- FormClosingEvent.cs
- NameValuePermission.cs
- CommonDialog.cs
- GenericIdentity.cs
- DeadCharTextComposition.cs
- followingsibling.cs
- CellTreeSimplifier.cs
- LockRecoveryTask.cs
- ObjectStateEntryDbDataRecord.cs
- SerializationEventsCache.cs
- DeviceFiltersSection.cs
- BuiltInExpr.cs
- IncrementalCompileAnalyzer.cs
- RuleConditionDialog.cs
- CodeFieldReferenceExpression.cs
- ExtensibleClassFactory.cs
- OdbcStatementHandle.cs
- SqlTransaction.cs
- MultipleViewProviderWrapper.cs
- DataGridViewCellStyleChangedEventArgs.cs
- CodeEventReferenceExpression.cs