Code:
/ 4.0 / 4.0 / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / cdf / src / WCF / System.ServiceModel.Activation / System / ServiceModel / Activation / AspNetPartialTrustHelpers.cs / 1305376 / AspNetPartialTrustHelpers.cs
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.ServiceModel
{
using System.Runtime;
using System.Security;
using System.Security.Permissions;
using System.Threading;
using System.Web;
static class AspNetPartialTrustHelpers
{
[Fx.Tag.SecurityNote(Critical = "Caches the PermissionSet associated with the asp.net trust level."
+ "This will not change over the life of the AppDomain.")]
[SecurityCritical]
static SecurityContext aspNetSecurityContext;
[Fx.Tag.SecurityNote(Critical = "If erroneously set to true, could bypass the PermitOnly.")]
[SecurityCritical]
static bool isInitialized;
[Fx.Tag.SecurityNote(Miscellaneous = "RequiresReview - determines if the given PermissionSet is full trust."
+ "We will base subsequent security decisions on this.")]
static bool IsFullTrust(PermissionSet perms)
{
return perms == null || perms.IsUnrestricted();
}
internal static bool NeedPartialTrustInvoke
{
[Fx.Tag.SecurityNote(Critical = "Makes a security sensitive decision, updates aspNetSecurityContext and isInitialized.",
Safe = "Ok to know whether the ASP app is partial trust.")]
[SecuritySafeCritical]
get
{
if (!isInitialized)
{
NamedPermissionSet aspNetPermissionSet = GetHttpRuntimeNamedPermissionSet();
if (!IsFullTrust(aspNetPermissionSet))
{
try
{
aspNetPermissionSet.PermitOnly();
aspNetSecurityContext = System.Runtime.PartialTrustHelpers.CaptureSecurityContextNoIdentityFlow();
}
finally
{
CodeAccessPermission.RevertPermitOnly();
}
}
isInitialized = true;
}
return aspNetSecurityContext != null;
}
}
[Fx.Tag.SecurityNote(Critical = "Asserts AspNetHostingPermission.")]
[SecurityCritical]
[AspNetHostingPermission(SecurityAction.Assert, Level=AspNetHostingPermissionLevel.Unrestricted)]
static NamedPermissionSet GetHttpRuntimeNamedPermissionSet()
{
return HttpRuntime.GetNamedPermissionSet();
}
[Fx.Tag.SecurityNote(Critical = "Touches aspNetSecurityContext.",
Safe = "Ok to invoke the user's delegate under the PT context.")]
[SecuritySafeCritical]
internal static void PartialTrustInvoke(ContextCallback callback, object state)
{
if (NeedPartialTrustInvoke)
{
SecurityContext.Run(aspNetSecurityContext.CreateCopy(), callback, state);
}
else
{
callback(state);
}
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.ServiceModel
{
using System.Runtime;
using System.Security;
using System.Security.Permissions;
using System.Threading;
using System.Web;
static class AspNetPartialTrustHelpers
{
[Fx.Tag.SecurityNote(Critical = "Caches the PermissionSet associated with the asp.net trust level."
+ "This will not change over the life of the AppDomain.")]
[SecurityCritical]
static SecurityContext aspNetSecurityContext;
[Fx.Tag.SecurityNote(Critical = "If erroneously set to true, could bypass the PermitOnly.")]
[SecurityCritical]
static bool isInitialized;
[Fx.Tag.SecurityNote(Miscellaneous = "RequiresReview - determines if the given PermissionSet is full trust."
+ "We will base subsequent security decisions on this.")]
static bool IsFullTrust(PermissionSet perms)
{
return perms == null || perms.IsUnrestricted();
}
internal static bool NeedPartialTrustInvoke
{
[Fx.Tag.SecurityNote(Critical = "Makes a security sensitive decision, updates aspNetSecurityContext and isInitialized.",
Safe = "Ok to know whether the ASP app is partial trust.")]
[SecuritySafeCritical]
get
{
if (!isInitialized)
{
NamedPermissionSet aspNetPermissionSet = GetHttpRuntimeNamedPermissionSet();
if (!IsFullTrust(aspNetPermissionSet))
{
try
{
aspNetPermissionSet.PermitOnly();
aspNetSecurityContext = System.Runtime.PartialTrustHelpers.CaptureSecurityContextNoIdentityFlow();
}
finally
{
CodeAccessPermission.RevertPermitOnly();
}
}
isInitialized = true;
}
return aspNetSecurityContext != null;
}
}
[Fx.Tag.SecurityNote(Critical = "Asserts AspNetHostingPermission.")]
[SecurityCritical]
[AspNetHostingPermission(SecurityAction.Assert, Level=AspNetHostingPermissionLevel.Unrestricted)]
static NamedPermissionSet GetHttpRuntimeNamedPermissionSet()
{
return HttpRuntime.GetNamedPermissionSet();
}
[Fx.Tag.SecurityNote(Critical = "Touches aspNetSecurityContext.",
Safe = "Ok to invoke the user's delegate under the PT context.")]
[SecuritySafeCritical]
internal static void PartialTrustInvoke(ContextCallback callback, object state)
{
if (NeedPartialTrustInvoke)
{
SecurityContext.Run(aspNetSecurityContext.CreateCopy(), callback, state);
}
else
{
callback(state);
}
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- StronglyTypedResourceBuilder.cs
- assertwrapper.cs
- TextEditorThreadLocalStore.cs
- ConditionalWeakTable.cs
- SHA384Managed.cs
- FilteredDataSetHelper.cs
- HttpProfileGroupBase.cs
- CssClassPropertyAttribute.cs
- TypeResolvingOptions.cs
- WizardPanel.cs
- ListItemsPage.cs
- RenderingEventArgs.cs
- ParameterBuilder.cs
- OracleConnectionString.cs
- TargetInvocationException.cs
- ApplicationContext.cs
- MdiWindowListItemConverter.cs
- RenderContext.cs
- FormClosedEvent.cs
- QuinticEase.cs
- TextTreeExtractElementUndoUnit.cs
- WeakHashtable.cs
- Journaling.cs
- XmlUtf8RawTextWriter.cs
- XPathNavigatorKeyComparer.cs
- TokenDescriptor.cs
- SoapAttributes.cs
- COM2IProvidePropertyBuilderHandler.cs
- JsonFormatReaderGenerator.cs
- TableLayoutSettingsTypeConverter.cs
- Win32KeyboardDevice.cs
- SpotLight.cs
- _AcceptOverlappedAsyncResult.cs
- GeometryModel3D.cs
- EntityCommandCompilationException.cs
- InlineObject.cs
- EntityDataSourceQueryBuilder.cs
- PlaceHolder.cs
- Canvas.cs
- SqlConnectionPoolProviderInfo.cs
- LocationSectionRecord.cs
- TextRunCache.cs
- SocketInformation.cs
- MsmqInputChannelBase.cs
- LinearKeyFrames.cs
- XmlBinaryReader.cs
- MessageFilter.cs
- ListDictionary.cs
- SoapIgnoreAttribute.cs
- COM2IProvidePropertyBuilderHandler.cs
- BuildProviderUtils.cs
- LicenseProviderAttribute.cs
- WebPartsPersonalizationAuthorization.cs
- Queue.cs
- SubMenuStyle.cs
- CustomLineCap.cs
- InfoCardRSAPKCS1KeyExchangeFormatter.cs
- Stackframe.cs
- CompareValidator.cs
- CollectionBase.cs
- HttpCapabilitiesSectionHandler.cs
- ProcessHost.cs
- CollectionBuilder.cs
- mediaclock.cs
- WindowsEditBoxRange.cs
- FileCodeGroup.cs
- PartBasedPackageProperties.cs
- MostlySingletonList.cs
- FontUnitConverter.cs
- EntityAdapter.cs
- LocalClientSecuritySettingsElement.cs
- EntityDataSourceContextCreatingEventArgs.cs
- WindowsMenu.cs
- SatelliteContractVersionAttribute.cs
- BaseEntityWrapper.cs
- JsonReader.cs
- DockEditor.cs
- StrokeCollectionConverter.cs
- Utils.cs
- errorpatternmatcher.cs
- XsltOutput.cs
- XmlIncludeAttribute.cs
- DataBoundControlAdapter.cs
- UnauthorizedAccessException.cs
- RegexNode.cs
- ConfigurationSectionGroup.cs
- NativeCppClassAttribute.cs
- LinqToSqlWrapper.cs
- SevenBitStream.cs
- SoapSchemaMember.cs
- BuildManager.cs
- PhysicalFontFamily.cs
- TextCompositionManager.cs
- InfiniteTimeSpanConverter.cs
- FlowLayout.cs
- ServiceDiscoveryBehavior.cs
- ServiceHostFactory.cs
- ScriptControl.cs
- ClientTarget.cs
- PreservationFileReader.cs