Code:
/ 4.0 / 4.0 / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / cdf / src / WCF / System.ServiceModel.Activation / System / ServiceModel / Activation / AspNetPartialTrustHelpers.cs / 1305376 / AspNetPartialTrustHelpers.cs
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.ServiceModel
{
using System.Runtime;
using System.Security;
using System.Security.Permissions;
using System.Threading;
using System.Web;
static class AspNetPartialTrustHelpers
{
[Fx.Tag.SecurityNote(Critical = "Caches the PermissionSet associated with the asp.net trust level."
+ "This will not change over the life of the AppDomain.")]
[SecurityCritical]
static SecurityContext aspNetSecurityContext;
[Fx.Tag.SecurityNote(Critical = "If erroneously set to true, could bypass the PermitOnly.")]
[SecurityCritical]
static bool isInitialized;
[Fx.Tag.SecurityNote(Miscellaneous = "RequiresReview - determines if the given PermissionSet is full trust."
+ "We will base subsequent security decisions on this.")]
static bool IsFullTrust(PermissionSet perms)
{
return perms == null || perms.IsUnrestricted();
}
internal static bool NeedPartialTrustInvoke
{
[Fx.Tag.SecurityNote(Critical = "Makes a security sensitive decision, updates aspNetSecurityContext and isInitialized.",
Safe = "Ok to know whether the ASP app is partial trust.")]
[SecuritySafeCritical]
get
{
if (!isInitialized)
{
NamedPermissionSet aspNetPermissionSet = GetHttpRuntimeNamedPermissionSet();
if (!IsFullTrust(aspNetPermissionSet))
{
try
{
aspNetPermissionSet.PermitOnly();
aspNetSecurityContext = System.Runtime.PartialTrustHelpers.CaptureSecurityContextNoIdentityFlow();
}
finally
{
CodeAccessPermission.RevertPermitOnly();
}
}
isInitialized = true;
}
return aspNetSecurityContext != null;
}
}
[Fx.Tag.SecurityNote(Critical = "Asserts AspNetHostingPermission.")]
[SecurityCritical]
[AspNetHostingPermission(SecurityAction.Assert, Level=AspNetHostingPermissionLevel.Unrestricted)]
static NamedPermissionSet GetHttpRuntimeNamedPermissionSet()
{
return HttpRuntime.GetNamedPermissionSet();
}
[Fx.Tag.SecurityNote(Critical = "Touches aspNetSecurityContext.",
Safe = "Ok to invoke the user's delegate under the PT context.")]
[SecuritySafeCritical]
internal static void PartialTrustInvoke(ContextCallback callback, object state)
{
if (NeedPartialTrustInvoke)
{
SecurityContext.Run(aspNetSecurityContext.CreateCopy(), callback, state);
}
else
{
callback(state);
}
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.ServiceModel
{
using System.Runtime;
using System.Security;
using System.Security.Permissions;
using System.Threading;
using System.Web;
static class AspNetPartialTrustHelpers
{
[Fx.Tag.SecurityNote(Critical = "Caches the PermissionSet associated with the asp.net trust level."
+ "This will not change over the life of the AppDomain.")]
[SecurityCritical]
static SecurityContext aspNetSecurityContext;
[Fx.Tag.SecurityNote(Critical = "If erroneously set to true, could bypass the PermitOnly.")]
[SecurityCritical]
static bool isInitialized;
[Fx.Tag.SecurityNote(Miscellaneous = "RequiresReview - determines if the given PermissionSet is full trust."
+ "We will base subsequent security decisions on this.")]
static bool IsFullTrust(PermissionSet perms)
{
return perms == null || perms.IsUnrestricted();
}
internal static bool NeedPartialTrustInvoke
{
[Fx.Tag.SecurityNote(Critical = "Makes a security sensitive decision, updates aspNetSecurityContext and isInitialized.",
Safe = "Ok to know whether the ASP app is partial trust.")]
[SecuritySafeCritical]
get
{
if (!isInitialized)
{
NamedPermissionSet aspNetPermissionSet = GetHttpRuntimeNamedPermissionSet();
if (!IsFullTrust(aspNetPermissionSet))
{
try
{
aspNetPermissionSet.PermitOnly();
aspNetSecurityContext = System.Runtime.PartialTrustHelpers.CaptureSecurityContextNoIdentityFlow();
}
finally
{
CodeAccessPermission.RevertPermitOnly();
}
}
isInitialized = true;
}
return aspNetSecurityContext != null;
}
}
[Fx.Tag.SecurityNote(Critical = "Asserts AspNetHostingPermission.")]
[SecurityCritical]
[AspNetHostingPermission(SecurityAction.Assert, Level=AspNetHostingPermissionLevel.Unrestricted)]
static NamedPermissionSet GetHttpRuntimeNamedPermissionSet()
{
return HttpRuntime.GetNamedPermissionSet();
}
[Fx.Tag.SecurityNote(Critical = "Touches aspNetSecurityContext.",
Safe = "Ok to invoke the user's delegate under the PT context.")]
[SecuritySafeCritical]
internal static void PartialTrustInvoke(ContextCallback callback, object state)
{
if (NeedPartialTrustInvoke)
{
SecurityContext.Run(aspNetSecurityContext.CreateCopy(), callback, state);
}
else
{
callback(state);
}
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- HttpWriter.cs
- HierarchicalDataBoundControl.cs
- XPathNavigator.cs
- ExpressionCopier.cs
- RuleAction.cs
- TypeDependencyAttribute.cs
- HttpModuleAction.cs
- PrtTicket_Base.cs
- PlanCompilerUtil.cs
- SimpleType.cs
- FontUnit.cs
- MethodSignatureGenerator.cs
- PrefixQName.cs
- ResourceProperty.cs
- VisualTarget.cs
- IgnoreSectionHandler.cs
- TrustLevelCollection.cs
- XmlObjectSerializerReadContextComplex.cs
- ComPlusSynchronizationContext.cs
- IndentTextWriter.cs
- TextEffect.cs
- EntityViewContainer.cs
- JoinElimination.cs
- ColumnResizeAdorner.cs
- ThemeDictionaryExtension.cs
- ExceptionAggregator.cs
- BindingList.cs
- QilPatternFactory.cs
- Menu.cs
- TouchFrameEventArgs.cs
- HiddenField.cs
- CodeExpressionRuleDeclaration.cs
- ParameterModifier.cs
- ToolStripItemEventArgs.cs
- DropShadowEffect.cs
- AttributedMetaModel.cs
- TextBox.cs
- Control.cs
- UnionExpr.cs
- FileReader.cs
- XmlDataSource.cs
- ButtonFlatAdapter.cs
- Button.cs
- Input.cs
- FormViewModeEventArgs.cs
- TrackingStringDictionary.cs
- OperatorExpressions.cs
- CodeSubDirectoriesCollection.cs
- XmlStringTable.cs
- Unit.cs
- EventHandlersStore.cs
- LingerOption.cs
- ProfileBuildProvider.cs
- KeyMatchBuilder.cs
- SystemTcpConnection.cs
- ProviderUtil.cs
- ClientBuildManagerCallback.cs
- GroupBoxRenderer.cs
- DataGridViewElement.cs
- EventLogPermissionEntry.cs
- UIElement.cs
- Parameter.cs
- NotifyIcon.cs
- WebPartDeleteVerb.cs
- FixedTextSelectionProcessor.cs
- WebResourceUtil.cs
- HttpListenerRequestTraceRecord.cs
- ConfigurationErrorsException.cs
- XPathSelfQuery.cs
- ConcurrencyBehavior.cs
- DispatchChannelSink.cs
- BrowserInteropHelper.cs
- StrongNameIdentityPermission.cs
- BitmapImage.cs
- ExpressionVisitor.cs
- SurrogateSelector.cs
- GroupedContextMenuStrip.cs
- ConfigurationValidatorBase.cs
- IList.cs
- DBSchemaTable.cs
- MetadataArtifactLoaderFile.cs
- Storyboard.cs
- DbExpressionVisitor_TResultType.cs
- SubstitutionList.cs
- WebPart.cs
- LineGeometry.cs
- FrameworkElementAutomationPeer.cs
- WindowsAuthenticationModule.cs
- GregorianCalendarHelper.cs
- WsatConfiguration.cs
- AnimationTimeline.cs
- NewItemsContextMenuStrip.cs
- BitVec.cs
- SecurityBindingElementImporter.cs
- RC2CryptoServiceProvider.cs
- PropertyConverter.cs
- LineGeometry.cs
- ProcessHostMapPath.cs
- Aggregates.cs
- EdmToObjectNamespaceMap.cs