Code:
/ 4.0 / 4.0 / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / cdf / src / WCF / IdentityModel / System / IdentityModel / Tokens / RsaSecurityToken.cs / 1305376 / RsaSecurityToken.cs
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.IdentityModel.Tokens
{
using System.Collections.Generic;
using System.Collections.ObjectModel;
using System.ComponentModel;
using System.Diagnostics;
using System.Runtime.InteropServices;
using System.Security.Cryptography;
using System.Runtime.CompilerServices;
public class RsaSecurityToken : SecurityToken
{
string id;
DateTime effectiveTime;
ReadOnlyCollection rsaKey;
RSA rsa;
CspKeyContainerInfo keyContainerInfo;
GCHandle rsaHandle;
public RsaSecurityToken(RSA rsa)
: this(rsa, SecurityUniqueId.Create().Value)
{
}
public RsaSecurityToken(RSA rsa, string id)
{
if (rsa == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa");
if (id == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("id");
this.rsa = rsa;
this.id = id;
this.effectiveTime = DateTime.UtcNow;
GC.SuppressFinalize(this);
}
// This is defense-in-depth.
// Rsa finalizer can throw and bring down the process if in finalizer context.
// This internal ctor is used by SM's IssuedSecurityTokenProvider.
// If ownsRsa=true, this class will take ownership of the Rsa object and provides
// a reliable finalizing/disposing of Rsa object. The GCHandle is used to ensure
// order in finalizer sequence.
RsaSecurityToken(RSACryptoServiceProvider rsa, bool ownsRsa)
{
if (rsa == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa");
this.rsa = rsa;
this.id = SecurityUniqueId.Create().Value;
this.effectiveTime = DateTime.UtcNow;
if (ownsRsa)
{
// This also key pair generation.
// This must be called before PersistKeyInCsp to avoid a handle to go out of scope.
this.keyContainerInfo = rsa.CspKeyContainerInfo;
// We will handle key file deletion
rsa.PersistKeyInCsp = true;
this.rsaHandle = GCHandle.Alloc(rsa);
}
else
{
GC.SuppressFinalize(this);
}
}
~RsaSecurityToken()
{
Dispose(false);
}
internal void Dispose()
{
Dispose(true);
GC.SuppressFinalize(this);
}
void Dispose(bool disposing)
{
if (this.rsaHandle.IsAllocated)
{
try
{
// keyContainerInfo is a wrapper over a member of Rsa.
// this is to be safe that rsa.Dispose won't clean up that member.
string keyContainerName = this.keyContainerInfo.KeyContainerName;
string providerName = this.keyContainerInfo.ProviderName;
uint providerType = (uint)this.keyContainerInfo.ProviderType;
((IDisposable)this.rsa).Dispose();
// Best effort delete key file in user context
SafeProvHandle provHandle;
if (!NativeMethods.CryptAcquireContextW(out provHandle,
keyContainerName,
providerName,
providerType,
NativeMethods.CRYPT_DELETEKEYSET))
{
int error = Marshal.GetLastWin32Error();
try
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(
new InvalidOperationException(SR.GetString(SR.FailedToDeleteKeyContainerFile), new Win32Exception(error)));
}
catch (InvalidOperationException ex)
{
if (DiagnosticUtility.ShouldTraceWarning)
{
DiagnosticUtility.ExceptionUtility.TraceHandledException(ex, TraceEventType.Warning);
}
}
}
System.ServiceModel.Diagnostics.Utility.CloseInvalidOutSafeHandle(provHandle);
}
finally
{
this.rsaHandle.Free();
}
}
}
internal static RsaSecurityToken CreateSafeRsaSecurityToken(int keySize)
{
RsaSecurityToken token;
RSACryptoServiceProvider rsa = null;
RuntimeHelpers.PrepareConstrainedRegions();
try
{
try
{
}
finally
{
rsa = new RSACryptoServiceProvider(keySize);
}
token = new RsaSecurityToken(rsa, true);
rsa = null;
}
finally
{
if (rsa != null)
{
((IDisposable)rsa).Dispose();
}
}
return token;
}
public override string Id
{
get { return this.id; }
}
public override DateTime ValidFrom
{
get { return this.effectiveTime; }
}
public override DateTime ValidTo
{
// Never expire
get { return SecurityUtils.MaxUtcDateTime; }
}
public override ReadOnlyCollection SecurityKeys
{
get
{
if (this.rsaKey == null)
{
List keys = new List(1);
keys.Add(new RsaSecurityKey(this.rsa));
this.rsaKey = keys.AsReadOnly();
}
return this.rsaKey;
}
}
public RSA Rsa
{
get { return this.rsa; }
}
public override bool CanCreateKeyIdentifierClause()
{
return typeof(T) == typeof(RsaKeyIdentifierClause);
}
public override T CreateKeyIdentifierClause()
{
if (typeof(T) == typeof(RsaKeyIdentifierClause))
return (T)((object)new RsaKeyIdentifierClause(this.rsa));
throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(new NotSupportedException(
SR.GetString(SR.TokenDoesNotSupportKeyIdentifierClauseCreation, GetType().Name, typeof(T).Name)));
}
public override bool MatchesKeyIdentifierClause(SecurityKeyIdentifierClause keyIdentifierClause)
{
RsaKeyIdentifierClause rsaKeyIdentifierClause = keyIdentifierClause as RsaKeyIdentifierClause;
if (rsaKeyIdentifierClause != null)
return rsaKeyIdentifierClause.Matches(this.rsa);
return false;
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.IdentityModel.Tokens
{
using System.Collections.Generic;
using System.Collections.ObjectModel;
using System.ComponentModel;
using System.Diagnostics;
using System.Runtime.InteropServices;
using System.Security.Cryptography;
using System.Runtime.CompilerServices;
public class RsaSecurityToken : SecurityToken
{
string id;
DateTime effectiveTime;
ReadOnlyCollection rsaKey;
RSA rsa;
CspKeyContainerInfo keyContainerInfo;
GCHandle rsaHandle;
public RsaSecurityToken(RSA rsa)
: this(rsa, SecurityUniqueId.Create().Value)
{
}
public RsaSecurityToken(RSA rsa, string id)
{
if (rsa == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa");
if (id == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("id");
this.rsa = rsa;
this.id = id;
this.effectiveTime = DateTime.UtcNow;
GC.SuppressFinalize(this);
}
// This is defense-in-depth.
// Rsa finalizer can throw and bring down the process if in finalizer context.
// This internal ctor is used by SM's IssuedSecurityTokenProvider.
// If ownsRsa=true, this class will take ownership of the Rsa object and provides
// a reliable finalizing/disposing of Rsa object. The GCHandle is used to ensure
// order in finalizer sequence.
RsaSecurityToken(RSACryptoServiceProvider rsa, bool ownsRsa)
{
if (rsa == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa");
this.rsa = rsa;
this.id = SecurityUniqueId.Create().Value;
this.effectiveTime = DateTime.UtcNow;
if (ownsRsa)
{
// This also key pair generation.
// This must be called before PersistKeyInCsp to avoid a handle to go out of scope.
this.keyContainerInfo = rsa.CspKeyContainerInfo;
// We will handle key file deletion
rsa.PersistKeyInCsp = true;
this.rsaHandle = GCHandle.Alloc(rsa);
}
else
{
GC.SuppressFinalize(this);
}
}
~RsaSecurityToken()
{
Dispose(false);
}
internal void Dispose()
{
Dispose(true);
GC.SuppressFinalize(this);
}
void Dispose(bool disposing)
{
if (this.rsaHandle.IsAllocated)
{
try
{
// keyContainerInfo is a wrapper over a member of Rsa.
// this is to be safe that rsa.Dispose won't clean up that member.
string keyContainerName = this.keyContainerInfo.KeyContainerName;
string providerName = this.keyContainerInfo.ProviderName;
uint providerType = (uint)this.keyContainerInfo.ProviderType;
((IDisposable)this.rsa).Dispose();
// Best effort delete key file in user context
SafeProvHandle provHandle;
if (!NativeMethods.CryptAcquireContextW(out provHandle,
keyContainerName,
providerName,
providerType,
NativeMethods.CRYPT_DELETEKEYSET))
{
int error = Marshal.GetLastWin32Error();
try
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(
new InvalidOperationException(SR.GetString(SR.FailedToDeleteKeyContainerFile), new Win32Exception(error)));
}
catch (InvalidOperationException ex)
{
if (DiagnosticUtility.ShouldTraceWarning)
{
DiagnosticUtility.ExceptionUtility.TraceHandledException(ex, TraceEventType.Warning);
}
}
}
System.ServiceModel.Diagnostics.Utility.CloseInvalidOutSafeHandle(provHandle);
}
finally
{
this.rsaHandle.Free();
}
}
}
internal static RsaSecurityToken CreateSafeRsaSecurityToken(int keySize)
{
RsaSecurityToken token;
RSACryptoServiceProvider rsa = null;
RuntimeHelpers.PrepareConstrainedRegions();
try
{
try
{
}
finally
{
rsa = new RSACryptoServiceProvider(keySize);
}
token = new RsaSecurityToken(rsa, true);
rsa = null;
}
finally
{
if (rsa != null)
{
((IDisposable)rsa).Dispose();
}
}
return token;
}
public override string Id
{
get { return this.id; }
}
public override DateTime ValidFrom
{
get { return this.effectiveTime; }
}
public override DateTime ValidTo
{
// Never expire
get { return SecurityUtils.MaxUtcDateTime; }
}
public override ReadOnlyCollection SecurityKeys
{
get
{
if (this.rsaKey == null)
{
List keys = new List(1);
keys.Add(new RsaSecurityKey(this.rsa));
this.rsaKey = keys.AsReadOnly();
}
return this.rsaKey;
}
}
public RSA Rsa
{
get { return this.rsa; }
}
public override bool CanCreateKeyIdentifierClause()
{
return typeof(T) == typeof(RsaKeyIdentifierClause);
}
public override T CreateKeyIdentifierClause()
{
if (typeof(T) == typeof(RsaKeyIdentifierClause))
return (T)((object)new RsaKeyIdentifierClause(this.rsa));
throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(new NotSupportedException(
SR.GetString(SR.TokenDoesNotSupportKeyIdentifierClauseCreation, GetType().Name, typeof(T).Name)));
}
public override bool MatchesKeyIdentifierClause(SecurityKeyIdentifierClause keyIdentifierClause)
{
RsaKeyIdentifierClause rsaKeyIdentifierClause = keyIdentifierClause as RsaKeyIdentifierClause;
if (rsaKeyIdentifierClause != null)
return rsaKeyIdentifierClause.Matches(this.rsa);
return false;
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- BoolLiteral.cs
- XmlDataDocument.cs
- SqlDuplicator.cs
- Rect.cs
- Types.cs
- DataGridRowClipboardEventArgs.cs
- EventLogger.cs
- ForEachAction.cs
- DiffuseMaterial.cs
- ObjectListItem.cs
- ShapeTypeface.cs
- DecimalConstantAttribute.cs
- TemplatedWizardStep.cs
- XmlDesigner.cs
- Scene3D.cs
- DocumentGridPage.cs
- RegexBoyerMoore.cs
- EmptyCollection.cs
- SqlUtil.cs
- PropertyKey.cs
- XPathAncestorQuery.cs
- TransportReplyChannelAcceptor.cs
- AuthenticationException.cs
- PassportAuthenticationEventArgs.cs
- WriteableBitmap.cs
- WorkflowApplicationAbortedEventArgs.cs
- Pen.cs
- TabControl.cs
- CustomAttribute.cs
- MatrixKeyFrameCollection.cs
- RelatedImageListAttribute.cs
- AppModelKnownContentFactory.cs
- PeerNameRecord.cs
- SamlNameIdentifierClaimResource.cs
- ContextProperty.cs
- QilUnary.cs
- HostedBindingBehavior.cs
- CurrentTimeZone.cs
- DBNull.cs
- XmlChildNodes.cs
- StatusStrip.cs
- Helpers.cs
- DateRangeEvent.cs
- SignatureToken.cs
- LinqDataSourceDisposeEventArgs.cs
- HttpAsyncResult.cs
- DataGridCaption.cs
- DocobjHost.cs
- keycontainerpermission.cs
- ResumeStoryboard.cs
- HttpPostProtocolImporter.cs
- ConsumerConnectionPointCollection.cs
- HtmlInputRadioButton.cs
- codemethodreferenceexpression.cs
- ZipIOExtraField.cs
- WebBaseEventKeyComparer.cs
- XmlDataSourceNodeDescriptor.cs
- ByteRangeDownloader.cs
- EdgeModeValidation.cs
- CodeDomConfigurationHandler.cs
- ListBoxItemAutomationPeer.cs
- SafeFindHandle.cs
- FloatMinMaxAggregationOperator.cs
- SafeNativeHandle.cs
- WindowsUpDown.cs
- SafeSecurityHelper.cs
- CssTextWriter.cs
- AutoGeneratedFieldProperties.cs
- RichTextBox.cs
- ProviderConnectionPoint.cs
- SplineKeyFrames.cs
- AsyncDataRequest.cs
- PrintDocument.cs
- XmlSchemaAnyAttribute.cs
- ADMembershipProvider.cs
- ResourceSet.cs
- LinqToSqlWrapper.cs
- BasicViewGenerator.cs
- ExtensibleClassFactory.cs
- COM2Properties.cs
- EventItfInfo.cs
- ActivityWithResult.cs
- EventLogPermissionAttribute.cs
- HtmlTableCellCollection.cs
- RouteItem.cs
- IsolatedStoragePermission.cs
- WindowHelperService.cs
- QuarticEase.cs
- FlowDocumentFormatter.cs
- RemoteWebConfigurationHostStream.cs
- ExpressionEditorAttribute.cs
- RenderCapability.cs
- MessageDecoder.cs
- HttpConfigurationContext.cs
- WindowsSlider.cs
- DataServiceRequest.cs
- DataGridViewColumnStateChangedEventArgs.cs
- Soap12FormatExtensions.cs
- FormClosingEvent.cs
- CompoundFileReference.cs