Code:
/ 4.0 / 4.0 / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / cdf / src / WCF / IdentityModel / System / IdentityModel / Tokens / RsaSecurityToken.cs / 1305376 / RsaSecurityToken.cs
//------------------------------------------------------------ // Copyright (c) Microsoft Corporation. All rights reserved. //----------------------------------------------------------- namespace System.IdentityModel.Tokens { using System.Collections.Generic; using System.Collections.ObjectModel; using System.ComponentModel; using System.Diagnostics; using System.Runtime.InteropServices; using System.Security.Cryptography; using System.Runtime.CompilerServices; public class RsaSecurityToken : SecurityToken { string id; DateTime effectiveTime; ReadOnlyCollectionrsaKey; RSA rsa; CspKeyContainerInfo keyContainerInfo; GCHandle rsaHandle; public RsaSecurityToken(RSA rsa) : this(rsa, SecurityUniqueId.Create().Value) { } public RsaSecurityToken(RSA rsa, string id) { if (rsa == null) throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa"); if (id == null) throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("id"); this.rsa = rsa; this.id = id; this.effectiveTime = DateTime.UtcNow; GC.SuppressFinalize(this); } // This is defense-in-depth. // Rsa finalizer can throw and bring down the process if in finalizer context. // This internal ctor is used by SM's IssuedSecurityTokenProvider. // If ownsRsa=true, this class will take ownership of the Rsa object and provides // a reliable finalizing/disposing of Rsa object. The GCHandle is used to ensure // order in finalizer sequence. RsaSecurityToken(RSACryptoServiceProvider rsa, bool ownsRsa) { if (rsa == null) throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa"); this.rsa = rsa; this.id = SecurityUniqueId.Create().Value; this.effectiveTime = DateTime.UtcNow; if (ownsRsa) { // This also key pair generation. // This must be called before PersistKeyInCsp to avoid a handle to go out of scope. this.keyContainerInfo = rsa.CspKeyContainerInfo; // We will handle key file deletion rsa.PersistKeyInCsp = true; this.rsaHandle = GCHandle.Alloc(rsa); } else { GC.SuppressFinalize(this); } } ~RsaSecurityToken() { Dispose(false); } internal void Dispose() { Dispose(true); GC.SuppressFinalize(this); } void Dispose(bool disposing) { if (this.rsaHandle.IsAllocated) { try { // keyContainerInfo is a wrapper over a member of Rsa. // this is to be safe that rsa.Dispose won't clean up that member. string keyContainerName = this.keyContainerInfo.KeyContainerName; string providerName = this.keyContainerInfo.ProviderName; uint providerType = (uint)this.keyContainerInfo.ProviderType; ((IDisposable)this.rsa).Dispose(); // Best effort delete key file in user context SafeProvHandle provHandle; if (!NativeMethods.CryptAcquireContextW(out provHandle, keyContainerName, providerName, providerType, NativeMethods.CRYPT_DELETEKEYSET)) { int error = Marshal.GetLastWin32Error(); try { throw DiagnosticUtility.ExceptionUtility.ThrowHelperError( new InvalidOperationException(SR.GetString(SR.FailedToDeleteKeyContainerFile), new Win32Exception(error))); } catch (InvalidOperationException ex) { if (DiagnosticUtility.ShouldTraceWarning) { DiagnosticUtility.ExceptionUtility.TraceHandledException(ex, TraceEventType.Warning); } } } System.ServiceModel.Diagnostics.Utility.CloseInvalidOutSafeHandle(provHandle); } finally { this.rsaHandle.Free(); } } } internal static RsaSecurityToken CreateSafeRsaSecurityToken(int keySize) { RsaSecurityToken token; RSACryptoServiceProvider rsa = null; RuntimeHelpers.PrepareConstrainedRegions(); try { try { } finally { rsa = new RSACryptoServiceProvider(keySize); } token = new RsaSecurityToken(rsa, true); rsa = null; } finally { if (rsa != null) { ((IDisposable)rsa).Dispose(); } } return token; } public override string Id { get { return this.id; } } public override DateTime ValidFrom { get { return this.effectiveTime; } } public override DateTime ValidTo { // Never expire get { return SecurityUtils.MaxUtcDateTime; } } public override ReadOnlyCollection SecurityKeys { get { if (this.rsaKey == null) { List keys = new List (1); keys.Add(new RsaSecurityKey(this.rsa)); this.rsaKey = keys.AsReadOnly(); } return this.rsaKey; } } public RSA Rsa { get { return this.rsa; } } public override bool CanCreateKeyIdentifierClause () { return typeof(T) == typeof(RsaKeyIdentifierClause); } public override T CreateKeyIdentifierClause () { if (typeof(T) == typeof(RsaKeyIdentifierClause)) return (T)((object)new RsaKeyIdentifierClause(this.rsa)); throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(new NotSupportedException( SR.GetString(SR.TokenDoesNotSupportKeyIdentifierClauseCreation, GetType().Name, typeof(T).Name))); } public override bool MatchesKeyIdentifierClause(SecurityKeyIdentifierClause keyIdentifierClause) { RsaKeyIdentifierClause rsaKeyIdentifierClause = keyIdentifierClause as RsaKeyIdentifierClause; if (rsaKeyIdentifierClause != null) return rsaKeyIdentifierClause.Matches(this.rsa); return false; } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007. //------------------------------------------------------------ // Copyright (c) Microsoft Corporation. All rights reserved. //----------------------------------------------------------- namespace System.IdentityModel.Tokens { using System.Collections.Generic; using System.Collections.ObjectModel; using System.ComponentModel; using System.Diagnostics; using System.Runtime.InteropServices; using System.Security.Cryptography; using System.Runtime.CompilerServices; public class RsaSecurityToken : SecurityToken { string id; DateTime effectiveTime; ReadOnlyCollection rsaKey; RSA rsa; CspKeyContainerInfo keyContainerInfo; GCHandle rsaHandle; public RsaSecurityToken(RSA rsa) : this(rsa, SecurityUniqueId.Create().Value) { } public RsaSecurityToken(RSA rsa, string id) { if (rsa == null) throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa"); if (id == null) throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("id"); this.rsa = rsa; this.id = id; this.effectiveTime = DateTime.UtcNow; GC.SuppressFinalize(this); } // This is defense-in-depth. // Rsa finalizer can throw and bring down the process if in finalizer context. // This internal ctor is used by SM's IssuedSecurityTokenProvider. // If ownsRsa=true, this class will take ownership of the Rsa object and provides // a reliable finalizing/disposing of Rsa object. The GCHandle is used to ensure // order in finalizer sequence. RsaSecurityToken(RSACryptoServiceProvider rsa, bool ownsRsa) { if (rsa == null) throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa"); this.rsa = rsa; this.id = SecurityUniqueId.Create().Value; this.effectiveTime = DateTime.UtcNow; if (ownsRsa) { // This also key pair generation. // This must be called before PersistKeyInCsp to avoid a handle to go out of scope. this.keyContainerInfo = rsa.CspKeyContainerInfo; // We will handle key file deletion rsa.PersistKeyInCsp = true; this.rsaHandle = GCHandle.Alloc(rsa); } else { GC.SuppressFinalize(this); } } ~RsaSecurityToken() { Dispose(false); } internal void Dispose() { Dispose(true); GC.SuppressFinalize(this); } void Dispose(bool disposing) { if (this.rsaHandle.IsAllocated) { try { // keyContainerInfo is a wrapper over a member of Rsa. // this is to be safe that rsa.Dispose won't clean up that member. string keyContainerName = this.keyContainerInfo.KeyContainerName; string providerName = this.keyContainerInfo.ProviderName; uint providerType = (uint)this.keyContainerInfo.ProviderType; ((IDisposable)this.rsa).Dispose(); // Best effort delete key file in user context SafeProvHandle provHandle; if (!NativeMethods.CryptAcquireContextW(out provHandle, keyContainerName, providerName, providerType, NativeMethods.CRYPT_DELETEKEYSET)) { int error = Marshal.GetLastWin32Error(); try { throw DiagnosticUtility.ExceptionUtility.ThrowHelperError( new InvalidOperationException(SR.GetString(SR.FailedToDeleteKeyContainerFile), new Win32Exception(error))); } catch (InvalidOperationException ex) { if (DiagnosticUtility.ShouldTraceWarning) { DiagnosticUtility.ExceptionUtility.TraceHandledException(ex, TraceEventType.Warning); } } } System.ServiceModel.Diagnostics.Utility.CloseInvalidOutSafeHandle(provHandle); } finally { this.rsaHandle.Free(); } } } internal static RsaSecurityToken CreateSafeRsaSecurityToken(int keySize) { RsaSecurityToken token; RSACryptoServiceProvider rsa = null; RuntimeHelpers.PrepareConstrainedRegions(); try { try { } finally { rsa = new RSACryptoServiceProvider(keySize); } token = new RsaSecurityToken(rsa, true); rsa = null; } finally { if (rsa != null) { ((IDisposable)rsa).Dispose(); } } return token; } public override string Id { get { return this.id; } } public override DateTime ValidFrom { get { return this.effectiveTime; } } public override DateTime ValidTo { // Never expire get { return SecurityUtils.MaxUtcDateTime; } } public override ReadOnlyCollection SecurityKeys { get { if (this.rsaKey == null) { List keys = new List (1); keys.Add(new RsaSecurityKey(this.rsa)); this.rsaKey = keys.AsReadOnly(); } return this.rsaKey; } } public RSA Rsa { get { return this.rsa; } } public override bool CanCreateKeyIdentifierClause () { return typeof(T) == typeof(RsaKeyIdentifierClause); } public override T CreateKeyIdentifierClause () { if (typeof(T) == typeof(RsaKeyIdentifierClause)) return (T)((object)new RsaKeyIdentifierClause(this.rsa)); throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(new NotSupportedException( SR.GetString(SR.TokenDoesNotSupportKeyIdentifierClauseCreation, GetType().Name, typeof(T).Name))); } public override bool MatchesKeyIdentifierClause(SecurityKeyIdentifierClause keyIdentifierClause) { RsaKeyIdentifierClause rsaKeyIdentifierClause = keyIdentifierClause as RsaKeyIdentifierClause; if (rsaKeyIdentifierClause != null) return rsaKeyIdentifierClause.Matches(this.rsa); return false; } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- CollectionEditVerbManager.cs
- ThreadInterruptedException.cs
- __FastResourceComparer.cs
- XmlQueryOutput.cs
- InheritanceRules.cs
- Attributes.cs
- XmlNamespaceMapping.cs
- Brush.cs
- RankException.cs
- TimeSpanStorage.cs
- SqlCacheDependencySection.cs
- SoapFormatter.cs
- FlowLayoutPanel.cs
- SubMenuStyleCollection.cs
- DynamicFilterExpression.cs
- Decoder.cs
- TrustLevelCollection.cs
- XamlStyleSerializer.cs
- RuntimeConfig.cs
- _NetRes.cs
- PointHitTestParameters.cs
- ItemsPresenter.cs
- SQLByteStorage.cs
- Int32AnimationBase.cs
- DecoratedNameAttribute.cs
- SqlFlattener.cs
- HwndTarget.cs
- TextParaClient.cs
- CodeDOMProvider.cs
- RegexInterpreter.cs
- ControlPager.cs
- TextViewSelectionProcessor.cs
- PresentationSource.cs
- CultureInfo.cs
- ColorIndependentAnimationStorage.cs
- DetailsViewPagerRow.cs
- MouseButton.cs
- DiagnosticTrace.cs
- Int64Storage.cs
- MatrixTransform.cs
- SqlConnectionString.cs
- XpsStructure.cs
- XPathScanner.cs
- ErrorLog.cs
- RegexFCD.cs
- ControlLocalizer.cs
- RawStylusInput.cs
- SqlDataSourceRefreshSchemaForm.cs
- SubstitutionDesigner.cs
- AbstractDataSvcMapFileLoader.cs
- MasterPageBuildProvider.cs
- IdentityValidationException.cs
- CodeAttributeDeclarationCollection.cs
- Repeater.cs
- BasicExpandProvider.cs
- HttpClientProtocol.cs
- DefaultProxySection.cs
- RadioButton.cs
- DeferredElementTreeState.cs
- Composition.cs
- AbstractSvcMapFileLoader.cs
- DataGridViewAccessibleObject.cs
- PEFileEvidenceFactory.cs
- CacheForPrimitiveTypes.cs
- IxmlLineInfo.cs
- PtsContext.cs
- CreateUserErrorEventArgs.cs
- ReflectionUtil.cs
- Config.cs
- ResourceLoader.cs
- DefaultSection.cs
- HtmlInputText.cs
- _Rfc2616CacheValidators.cs
- SatelliteContractVersionAttribute.cs
- ModuleBuilder.cs
- X509SecurityTokenProvider.cs
- InputManager.cs
- TreeWalkHelper.cs
- ConditionValidator.cs
- AutomationPatternInfo.cs
- SystemWebExtensionsSectionGroup.cs
- AudioLevelUpdatedEventArgs.cs
- BooleanStorage.cs
- Console.cs
- WmlLinkAdapter.cs
- StreamHelper.cs
- BitmapSizeOptions.cs
- TextContainer.cs
- wmiprovider.cs
- ArgumentNullException.cs
- DbConnectionHelper.cs
- XmlArrayAttribute.cs
- StdValidatorsAndConverters.cs
- SerializableTypeCodeDomSerializer.cs
- DesignTimeValidationFeature.cs
- CommandField.cs
- CodeMethodInvokeExpression.cs
- RuleSettingsCollection.cs
- SecurityContext.cs
- EntitySqlQueryBuilder.cs