Code:
/ 4.0 / 4.0 / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / cdf / src / WCF / System.ServiceModel.Activation / System / ServiceModel / Activation / AspNetPartialTrustHelpers.cs / 1305376 / AspNetPartialTrustHelpers.cs
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.ServiceModel
{
using System.Runtime;
using System.Security;
using System.Security.Permissions;
using System.Threading;
using System.Web;
static class AspNetPartialTrustHelpers
{
[Fx.Tag.SecurityNote(Critical = "Caches the PermissionSet associated with the asp.net trust level."
+ "This will not change over the life of the AppDomain.")]
[SecurityCritical]
static SecurityContext aspNetSecurityContext;
[Fx.Tag.SecurityNote(Critical = "If erroneously set to true, could bypass the PermitOnly.")]
[SecurityCritical]
static bool isInitialized;
[Fx.Tag.SecurityNote(Miscellaneous = "RequiresReview - determines if the given PermissionSet is full trust."
+ "We will base subsequent security decisions on this.")]
static bool IsFullTrust(PermissionSet perms)
{
return perms == null || perms.IsUnrestricted();
}
internal static bool NeedPartialTrustInvoke
{
[Fx.Tag.SecurityNote(Critical = "Makes a security sensitive decision, updates aspNetSecurityContext and isInitialized.",
Safe = "Ok to know whether the ASP app is partial trust.")]
[SecuritySafeCritical]
get
{
if (!isInitialized)
{
NamedPermissionSet aspNetPermissionSet = GetHttpRuntimeNamedPermissionSet();
if (!IsFullTrust(aspNetPermissionSet))
{
try
{
aspNetPermissionSet.PermitOnly();
aspNetSecurityContext = System.Runtime.PartialTrustHelpers.CaptureSecurityContextNoIdentityFlow();
}
finally
{
CodeAccessPermission.RevertPermitOnly();
}
}
isInitialized = true;
}
return aspNetSecurityContext != null;
}
}
[Fx.Tag.SecurityNote(Critical = "Asserts AspNetHostingPermission.")]
[SecurityCritical]
[AspNetHostingPermission(SecurityAction.Assert, Level=AspNetHostingPermissionLevel.Unrestricted)]
static NamedPermissionSet GetHttpRuntimeNamedPermissionSet()
{
return HttpRuntime.GetNamedPermissionSet();
}
[Fx.Tag.SecurityNote(Critical = "Touches aspNetSecurityContext.",
Safe = "Ok to invoke the user's delegate under the PT context.")]
[SecuritySafeCritical]
internal static void PartialTrustInvoke(ContextCallback callback, object state)
{
if (NeedPartialTrustInvoke)
{
SecurityContext.Run(aspNetSecurityContext.CreateCopy(), callback, state);
}
else
{
callback(state);
}
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.ServiceModel
{
using System.Runtime;
using System.Security;
using System.Security.Permissions;
using System.Threading;
using System.Web;
static class AspNetPartialTrustHelpers
{
[Fx.Tag.SecurityNote(Critical = "Caches the PermissionSet associated with the asp.net trust level."
+ "This will not change over the life of the AppDomain.")]
[SecurityCritical]
static SecurityContext aspNetSecurityContext;
[Fx.Tag.SecurityNote(Critical = "If erroneously set to true, could bypass the PermitOnly.")]
[SecurityCritical]
static bool isInitialized;
[Fx.Tag.SecurityNote(Miscellaneous = "RequiresReview - determines if the given PermissionSet is full trust."
+ "We will base subsequent security decisions on this.")]
static bool IsFullTrust(PermissionSet perms)
{
return perms == null || perms.IsUnrestricted();
}
internal static bool NeedPartialTrustInvoke
{
[Fx.Tag.SecurityNote(Critical = "Makes a security sensitive decision, updates aspNetSecurityContext and isInitialized.",
Safe = "Ok to know whether the ASP app is partial trust.")]
[SecuritySafeCritical]
get
{
if (!isInitialized)
{
NamedPermissionSet aspNetPermissionSet = GetHttpRuntimeNamedPermissionSet();
if (!IsFullTrust(aspNetPermissionSet))
{
try
{
aspNetPermissionSet.PermitOnly();
aspNetSecurityContext = System.Runtime.PartialTrustHelpers.CaptureSecurityContextNoIdentityFlow();
}
finally
{
CodeAccessPermission.RevertPermitOnly();
}
}
isInitialized = true;
}
return aspNetSecurityContext != null;
}
}
[Fx.Tag.SecurityNote(Critical = "Asserts AspNetHostingPermission.")]
[SecurityCritical]
[AspNetHostingPermission(SecurityAction.Assert, Level=AspNetHostingPermissionLevel.Unrestricted)]
static NamedPermissionSet GetHttpRuntimeNamedPermissionSet()
{
return HttpRuntime.GetNamedPermissionSet();
}
[Fx.Tag.SecurityNote(Critical = "Touches aspNetSecurityContext.",
Safe = "Ok to invoke the user's delegate under the PT context.")]
[SecuritySafeCritical]
internal static void PartialTrustInvoke(ContextCallback callback, object state)
{
if (NeedPartialTrustInvoke)
{
SecurityContext.Run(aspNetSecurityContext.CreateCopy(), callback, state);
}
else
{
callback(state);
}
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- QilName.cs
- XmlChoiceIdentifierAttribute.cs
- Drawing.cs
- OrderedDictionaryStateHelper.cs
- ReadOnlyPropertyMetadata.cs
- Relationship.cs
- RadioButtonRenderer.cs
- AccessControlList.cs
- CalendarModeChangedEventArgs.cs
- XPathDocumentIterator.cs
- SByteConverter.cs
- XmlSchemaInfo.cs
- ThemeInfoAttribute.cs
- MouseGesture.cs
- CLRBindingWorker.cs
- HostedHttpContext.cs
- SerializerWriterEventHandlers.cs
- InvalidEnumArgumentException.cs
- TableCellCollection.cs
- ConnectionInterfaceCollection.cs
- UDPClient.cs
- CryptoKeySecurity.cs
- DataList.cs
- COM2EnumConverter.cs
- DriveInfo.cs
- UserPreferenceChangingEventArgs.cs
- TextRangeEditLists.cs
- TreeIterators.cs
- DeviceOverridableAttribute.cs
- WebSysDefaultValueAttribute.cs
- ToolStripMenuItem.cs
- X509CertificateChain.cs
- Iis7Helper.cs
- LinqDataView.cs
- FontUnitConverter.cs
- ContentFileHelper.cs
- WebProxyScriptElement.cs
- RuntimeVariablesExpression.cs
- ContextStaticAttribute.cs
- NotifyIcon.cs
- PolyLineSegment.cs
- MemberAccessException.cs
- SoapMessage.cs
- QilInvokeLateBound.cs
- MLangCodePageEncoding.cs
- ColorTransformHelper.cs
- PixelShader.cs
- Main.cs
- OleStrCAMarshaler.cs
- ShapeTypeface.cs
- MediaPlayerState.cs
- COMException.cs
- Queue.cs
- ShaderRenderModeValidation.cs
- BaseParser.cs
- RegexTree.cs
- RSAPKCS1KeyExchangeFormatter.cs
- PrePrepareMethodAttribute.cs
- SymmetricAlgorithm.cs
- XhtmlCssHandler.cs
- SmiTypedGetterSetter.cs
- ClientType.cs
- PolicyUtility.cs
- PointLight.cs
- CombinedGeometry.cs
- DirectionalLight.cs
- COM2Enum.cs
- DateTimeStorage.cs
- Column.cs
- FontCacheLogic.cs
- WebPartAuthorizationEventArgs.cs
- WorkflowLayouts.cs
- ReferencedType.cs
- OdbcConnectionFactory.cs
- Content.cs
- SspiNegotiationTokenAuthenticatorState.cs
- HTTPRemotingHandler.cs
- String.cs
- ParallelTimeline.cs
- DataTableExtensions.cs
- RegexMatchCollection.cs
- ValidationPropertyAttribute.cs
- BamlMapTable.cs
- PermissionSetEnumerator.cs
- DescendentsWalker.cs
- SqlSupersetValidator.cs
- PointLight.cs
- Parameter.cs
- InvalidPrinterException.cs
- DeclarationUpdate.cs
- DetailsViewPagerRow.cs
- TextProviderWrapper.cs
- SessionStateUtil.cs
- SortExpressionBuilder.cs
- LinqDataSourceHelper.cs
- ListBindableAttribute.cs
- unsafenativemethodsother.cs
- DataSourceXmlElementAttribute.cs
- PrimitiveType.cs
- ChangePassword.cs