Code:
/ 4.0 / 4.0 / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / cdf / src / WCF / System.ServiceModel.Activation / System / ServiceModel / Activation / AspNetPartialTrustHelpers.cs / 1305376 / AspNetPartialTrustHelpers.cs
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.ServiceModel
{
using System.Runtime;
using System.Security;
using System.Security.Permissions;
using System.Threading;
using System.Web;
static class AspNetPartialTrustHelpers
{
[Fx.Tag.SecurityNote(Critical = "Caches the PermissionSet associated with the asp.net trust level."
+ "This will not change over the life of the AppDomain.")]
[SecurityCritical]
static SecurityContext aspNetSecurityContext;
[Fx.Tag.SecurityNote(Critical = "If erroneously set to true, could bypass the PermitOnly.")]
[SecurityCritical]
static bool isInitialized;
[Fx.Tag.SecurityNote(Miscellaneous = "RequiresReview - determines if the given PermissionSet is full trust."
+ "We will base subsequent security decisions on this.")]
static bool IsFullTrust(PermissionSet perms)
{
return perms == null || perms.IsUnrestricted();
}
internal static bool NeedPartialTrustInvoke
{
[Fx.Tag.SecurityNote(Critical = "Makes a security sensitive decision, updates aspNetSecurityContext and isInitialized.",
Safe = "Ok to know whether the ASP app is partial trust.")]
[SecuritySafeCritical]
get
{
if (!isInitialized)
{
NamedPermissionSet aspNetPermissionSet = GetHttpRuntimeNamedPermissionSet();
if (!IsFullTrust(aspNetPermissionSet))
{
try
{
aspNetPermissionSet.PermitOnly();
aspNetSecurityContext = System.Runtime.PartialTrustHelpers.CaptureSecurityContextNoIdentityFlow();
}
finally
{
CodeAccessPermission.RevertPermitOnly();
}
}
isInitialized = true;
}
return aspNetSecurityContext != null;
}
}
[Fx.Tag.SecurityNote(Critical = "Asserts AspNetHostingPermission.")]
[SecurityCritical]
[AspNetHostingPermission(SecurityAction.Assert, Level=AspNetHostingPermissionLevel.Unrestricted)]
static NamedPermissionSet GetHttpRuntimeNamedPermissionSet()
{
return HttpRuntime.GetNamedPermissionSet();
}
[Fx.Tag.SecurityNote(Critical = "Touches aspNetSecurityContext.",
Safe = "Ok to invoke the user's delegate under the PT context.")]
[SecuritySafeCritical]
internal static void PartialTrustInvoke(ContextCallback callback, object state)
{
if (NeedPartialTrustInvoke)
{
SecurityContext.Run(aspNetSecurityContext.CreateCopy(), callback, state);
}
else
{
callback(state);
}
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.ServiceModel
{
using System.Runtime;
using System.Security;
using System.Security.Permissions;
using System.Threading;
using System.Web;
static class AspNetPartialTrustHelpers
{
[Fx.Tag.SecurityNote(Critical = "Caches the PermissionSet associated with the asp.net trust level."
+ "This will not change over the life of the AppDomain.")]
[SecurityCritical]
static SecurityContext aspNetSecurityContext;
[Fx.Tag.SecurityNote(Critical = "If erroneously set to true, could bypass the PermitOnly.")]
[SecurityCritical]
static bool isInitialized;
[Fx.Tag.SecurityNote(Miscellaneous = "RequiresReview - determines if the given PermissionSet is full trust."
+ "We will base subsequent security decisions on this.")]
static bool IsFullTrust(PermissionSet perms)
{
return perms == null || perms.IsUnrestricted();
}
internal static bool NeedPartialTrustInvoke
{
[Fx.Tag.SecurityNote(Critical = "Makes a security sensitive decision, updates aspNetSecurityContext and isInitialized.",
Safe = "Ok to know whether the ASP app is partial trust.")]
[SecuritySafeCritical]
get
{
if (!isInitialized)
{
NamedPermissionSet aspNetPermissionSet = GetHttpRuntimeNamedPermissionSet();
if (!IsFullTrust(aspNetPermissionSet))
{
try
{
aspNetPermissionSet.PermitOnly();
aspNetSecurityContext = System.Runtime.PartialTrustHelpers.CaptureSecurityContextNoIdentityFlow();
}
finally
{
CodeAccessPermission.RevertPermitOnly();
}
}
isInitialized = true;
}
return aspNetSecurityContext != null;
}
}
[Fx.Tag.SecurityNote(Critical = "Asserts AspNetHostingPermission.")]
[SecurityCritical]
[AspNetHostingPermission(SecurityAction.Assert, Level=AspNetHostingPermissionLevel.Unrestricted)]
static NamedPermissionSet GetHttpRuntimeNamedPermissionSet()
{
return HttpRuntime.GetNamedPermissionSet();
}
[Fx.Tag.SecurityNote(Critical = "Touches aspNetSecurityContext.",
Safe = "Ok to invoke the user's delegate under the PT context.")]
[SecuritySafeCritical]
internal static void PartialTrustInvoke(ContextCallback callback, object state)
{
if (NeedPartialTrustInvoke)
{
SecurityContext.Run(aspNetSecurityContext.CreateCopy(), callback, state);
}
else
{
callback(state);
}
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- LogWriteRestartAreaAsyncResult.cs
- ScriptResourceAttribute.cs
- InArgumentConverter.cs
- AssociationType.cs
- StringArrayConverter.cs
- ExitEventArgs.cs
- ITextView.cs
- Bezier.cs
- SafeFileHandle.cs
- ConfigurationStrings.cs
- SQLSingleStorage.cs
- LassoSelectionBehavior.cs
- SqlXml.cs
- DataRecordInfo.cs
- AssociationTypeEmitter.cs
- DataGridViewComboBoxColumn.cs
- MetaModel.cs
- VirtualPathData.cs
- filewebrequest.cs
- SecurityDocument.cs
- NumberFunctions.cs
- DrawingContextDrawingContextWalker.cs
- BaseCollection.cs
- RangeValueProviderWrapper.cs
- ProgressiveCrcCalculatingStream.cs
- ValuePattern.cs
- ObjectItemCollection.cs
- CodeDomExtensionMethods.cs
- GeometryModel3D.cs
- AutoGeneratedField.cs
- LinkUtilities.cs
- BinaryFormatterSinks.cs
- VariableBinder.cs
- figurelengthconverter.cs
- FocusWithinProperty.cs
- DataListDesigner.cs
- IncrementalCompileAnalyzer.cs
- InvalidDataException.cs
- ElapsedEventArgs.cs
- Boolean.cs
- SoapDocumentMethodAttribute.cs
- Canvas.cs
- SvcMapFileSerializer.cs
- Cursors.cs
- NetDataContractSerializer.cs
- PackageDigitalSignatureManager.cs
- RequestBringIntoViewEventArgs.cs
- FieldNameLookup.cs
- ClientRolePrincipal.cs
- SettingsPropertyValueCollection.cs
- TemplateControlCodeDomTreeGenerator.cs
- FunctionParameter.cs
- TypedReference.cs
- InputLanguageSource.cs
- TimeEnumHelper.cs
- HttpProcessUtility.cs
- ManifestSignedXml.cs
- ProcessModelInfo.cs
- TableProviderWrapper.cs
- StorageComplexTypeMapping.cs
- CompilerCollection.cs
- InternalBase.cs
- ApplicationInfo.cs
- ChannelDispatcherBase.cs
- TemplateLookupAction.cs
- WebPartConnectionsConfigureVerb.cs
- SqlResolver.cs
- DbMetaDataCollectionNames.cs
- WebConfigurationHost.cs
- ToolStripSplitStackLayout.cs
- XmlComment.cs
- ServiceMetadataPublishingElement.cs
- BitmapMetadata.cs
- Bold.cs
- SizeFConverter.cs
- BufferedReadStream.cs
- WrappedIUnknown.cs
- XmlChoiceIdentifierAttribute.cs
- BindingNavigator.cs
- PreviewPrintController.cs
- TCPListener.cs
- GeometryGroup.cs
- VirtualPathProvider.cs
- XmlILConstructAnalyzer.cs
- DataSetMappper.cs
- IDReferencePropertyAttribute.cs
- NativeMethods.cs
- TextEndOfParagraph.cs
- NamespaceDecl.cs
- __Filters.cs
- NameObjectCollectionBase.cs
- ToolStripManager.cs
- DbParameterCollection.cs
- PtsContext.cs
- DataControlExtensions.cs
- Pointer.cs
- WindowsSpinner.cs
- HtmlFormParameterWriter.cs
- Line.cs
- LinkDescriptor.cs