Code:
/ 4.0 / 4.0 / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / fx / src / xsp / System / Web / Util / SecUtil.cs / 1305376 / SecUtil.cs
//------------------------------------------------------------------------------
//
// Copyright (c) Microsoft Corporation. All rights reserved.
//
//-----------------------------------------------------------------------------
/*
* SecurityUtil class
*
* Copyright (c) 1999 Microsoft Corporation
*/
namespace System.Web.Util {
using System.Globalization;
using System.Web.Hosting;
using System.Collections;
using System.Collections.Specialized;
using System.Data;
using System.Data.SqlClient;
using System.Data.SqlTypes;
using System.Configuration.Provider;
using System.Configuration;
using System.Text.RegularExpressions;
using System.Web.DataAccess;
internal static class SecUtility {
internal static string GetDefaultAppName() {
try {
string appName = HostingEnvironment.ApplicationVirtualPath;
if (String.IsNullOrEmpty(appName)) {
#if !FEATURE_PAL
// ROTORTODO: enable Process.MainModule or support an alternative
// naming scheme for (HttpRuntime.AppDomainAppVirtualPath == null)
appName = System.Diagnostics.Process.GetCurrentProcess().
MainModule.ModuleName;
int indexOfDot = appName.IndexOf('.');
if (indexOfDot != -1) {
appName = appName.Remove(indexOfDot);
}
#endif // !FEATURE_PAL
}
if (String.IsNullOrEmpty(appName)) {
return "/";
}
else {
return appName;
}
}
catch {
return "/";
}
}
internal static string GetConnectionString(NameValueCollection config) {
Debug.Assert(config != null);
string connectionString = config["connectionString"];
if (!String.IsNullOrEmpty(connectionString)) {
return connectionString;
}
else {
string connectionStringName = config["connectionStringName"];
if (String.IsNullOrEmpty(connectionStringName))
throw new ProviderException(SR.GetString(SR.Connection_name_not_specified));
connectionString = SqlConnectionHelper.GetConnectionString(connectionStringName, lookupConnectionString: true, appLevel: true);
if (String.IsNullOrEmpty(connectionString)) {
throw new ProviderException(SR.GetString(SR.Connection_string_not_found, connectionStringName));
}
else {
return connectionString;
}
}
}
// We don't trim the param before checking with password parameters
internal static bool ValidatePasswordParameter(ref string param, int maxSize) {
if (param == null) {
return false;
}
if (param.Length < 1) {
return false;
}
if (maxSize > 0 && (param.Length > maxSize) ) {
return false;
}
return true;
}
internal static bool ValidateParameter(ref string param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize) {
if (param == null) {
return !checkForNull;
}
param = param.Trim();
if ((checkIfEmpty && param.Length < 1) ||
(maxSize > 0 && param.Length > maxSize) ||
(checkForCommas && param.Contains(","))) {
return false;
}
return true;
}
// We don't trim the param before checking with password parameters
internal static void CheckPasswordParameter(ref string param, int maxSize, string paramName) {
if (param == null) {
throw new ArgumentNullException(paramName);
}
if (param.Length < 1) {
throw new ArgumentException(SR.GetString(SR.Parameter_can_not_be_empty, paramName), paramName);
}
if (maxSize > 0 && param.Length > maxSize) {
throw new ArgumentException(SR.GetString(SR.Parameter_too_long, paramName, maxSize.ToString(CultureInfo.InvariantCulture)), paramName);
}
}
internal static void CheckParameter(ref string param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize, string paramName) {
if (param == null) {
if (checkForNull) {
throw new ArgumentNullException(paramName);
}
return;
}
param = param.Trim();
if (checkIfEmpty && param.Length < 1) {
throw new ArgumentException(SR.GetString(SR.Parameter_can_not_be_empty, paramName), paramName);
}
if (maxSize > 0 && param.Length > maxSize) {
throw new ArgumentException(SR.GetString(SR.Parameter_too_long, paramName, maxSize.ToString(CultureInfo.InvariantCulture)), paramName);
}
if (checkForCommas && param.Contains(",")) {
throw new ArgumentException(SR.GetString(SR.Parameter_can_not_contain_comma, paramName), paramName);
}
}
internal static void CheckArrayParameter(ref string[] param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize, string paramName) {
if (param == null) {
throw new ArgumentNullException(paramName);
}
if (param.Length < 1) {
throw new ArgumentException(SR.GetString(SR.Parameter_array_empty, paramName), paramName);
}
Hashtable values = new Hashtable(param.Length);
for (int i = param.Length - 1; i >= 0; i--) {
SecUtility.CheckParameter(ref param[i], checkForNull, checkIfEmpty, checkForCommas, maxSize,
paramName + "[ " + i.ToString(CultureInfo.InvariantCulture) + " ]");
if (values.Contains(param[i])) {
throw new ArgumentException(SR.GetString(SR.Parameter_duplicate_array_element, paramName), paramName);
}
else {
values.Add(param[i], param[i]);
}
}
}
internal static bool GetBooleanValue(NameValueCollection config, string valueName, bool defaultValue) {
string sValue = config[valueName];
if (sValue == null) {
return defaultValue;
}
bool result;
if (bool.TryParse(sValue, out result)) {
return result;
}
else {
throw new ProviderException(SR.GetString(SR.Value_must_be_boolean, valueName));
}
}
internal static int GetIntValue(NameValueCollection config, string valueName, int defaultValue, bool zeroAllowed, int maxValueAllowed) {
string sValue = config[valueName];
if (sValue == null) {
return defaultValue;
}
int iValue;
if (!Int32.TryParse(sValue, out iValue)) {
if (zeroAllowed) {
throw new ProviderException(SR.GetString(SR.Value_must_be_non_negative_integer, valueName));
}
throw new ProviderException(SR.GetString(SR.Value_must_be_positive_integer, valueName));
}
if (zeroAllowed && iValue < 0) {
throw new ProviderException(SR.GetString(SR.Value_must_be_non_negative_integer, valueName));
}
if (!zeroAllowed && iValue <= 0) {
throw new ProviderException(SR.GetString(SR.Value_must_be_positive_integer, valueName));
}
if (maxValueAllowed > 0 && iValue > maxValueAllowed) {
throw new ProviderException(SR.GetString(SR.Value_too_big, valueName, maxValueAllowed.ToString(CultureInfo.InvariantCulture)));
}
return iValue;
}
#if !FEATURE_PAL //
internal static void CheckSchemaVersion(ProviderBase provider, SqlConnection connection, string[] features, string version, ref int schemaVersionCheck) {
if (connection == null) {
throw new ArgumentNullException("connection");
}
if (features == null) {
throw new ArgumentNullException("features");
}
if (version == null) {
throw new ArgumentNullException("version");
}
if (schemaVersionCheck == -1) {
throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version));
}
else if (schemaVersionCheck == 0) {
lock (provider) {
if (schemaVersionCheck == -1) {
throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version));
}
else if (schemaVersionCheck == 0) {
int iStatus = 0;
SqlCommand cmd = null;
SqlParameter p = null;
foreach (string feature in features) {
cmd = new SqlCommand("dbo.aspnet_CheckSchemaVersion", connection);
cmd.CommandType = CommandType.StoredProcedure;
p = new SqlParameter("@Feature", feature);
cmd.Parameters.Add(p);
p = new SqlParameter("@CompatibleSchemaVersion", version);
cmd.Parameters.Add(p);
p = new SqlParameter("@ReturnValue", SqlDbType.Int);
p.Direction = ParameterDirection.ReturnValue;
cmd.Parameters.Add(p);
cmd.ExecuteNonQuery();
iStatus = ((p.Value != null) ? ((int)p.Value) : -1);
if (iStatus != 0) {
schemaVersionCheck = -1;
throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version));
}
}
schemaVersionCheck = 1;
}
}
}
}
#endif // !FEATURE_PAL
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
//------------------------------------------------------------------------------
//
// Copyright (c) Microsoft Corporation. All rights reserved.
//
//-----------------------------------------------------------------------------
/*
* SecurityUtil class
*
* Copyright (c) 1999 Microsoft Corporation
*/
namespace System.Web.Util {
using System.Globalization;
using System.Web.Hosting;
using System.Collections;
using System.Collections.Specialized;
using System.Data;
using System.Data.SqlClient;
using System.Data.SqlTypes;
using System.Configuration.Provider;
using System.Configuration;
using System.Text.RegularExpressions;
using System.Web.DataAccess;
internal static class SecUtility {
internal static string GetDefaultAppName() {
try {
string appName = HostingEnvironment.ApplicationVirtualPath;
if (String.IsNullOrEmpty(appName)) {
#if !FEATURE_PAL
// ROTORTODO: enable Process.MainModule or support an alternative
// naming scheme for (HttpRuntime.AppDomainAppVirtualPath == null)
appName = System.Diagnostics.Process.GetCurrentProcess().
MainModule.ModuleName;
int indexOfDot = appName.IndexOf('.');
if (indexOfDot != -1) {
appName = appName.Remove(indexOfDot);
}
#endif // !FEATURE_PAL
}
if (String.IsNullOrEmpty(appName)) {
return "/";
}
else {
return appName;
}
}
catch {
return "/";
}
}
internal static string GetConnectionString(NameValueCollection config) {
Debug.Assert(config != null);
string connectionString = config["connectionString"];
if (!String.IsNullOrEmpty(connectionString)) {
return connectionString;
}
else {
string connectionStringName = config["connectionStringName"];
if (String.IsNullOrEmpty(connectionStringName))
throw new ProviderException(SR.GetString(SR.Connection_name_not_specified));
connectionString = SqlConnectionHelper.GetConnectionString(connectionStringName, lookupConnectionString: true, appLevel: true);
if (String.IsNullOrEmpty(connectionString)) {
throw new ProviderException(SR.GetString(SR.Connection_string_not_found, connectionStringName));
}
else {
return connectionString;
}
}
}
// We don't trim the param before checking with password parameters
internal static bool ValidatePasswordParameter(ref string param, int maxSize) {
if (param == null) {
return false;
}
if (param.Length < 1) {
return false;
}
if (maxSize > 0 && (param.Length > maxSize) ) {
return false;
}
return true;
}
internal static bool ValidateParameter(ref string param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize) {
if (param == null) {
return !checkForNull;
}
param = param.Trim();
if ((checkIfEmpty && param.Length < 1) ||
(maxSize > 0 && param.Length > maxSize) ||
(checkForCommas && param.Contains(","))) {
return false;
}
return true;
}
// We don't trim the param before checking with password parameters
internal static void CheckPasswordParameter(ref string param, int maxSize, string paramName) {
if (param == null) {
throw new ArgumentNullException(paramName);
}
if (param.Length < 1) {
throw new ArgumentException(SR.GetString(SR.Parameter_can_not_be_empty, paramName), paramName);
}
if (maxSize > 0 && param.Length > maxSize) {
throw new ArgumentException(SR.GetString(SR.Parameter_too_long, paramName, maxSize.ToString(CultureInfo.InvariantCulture)), paramName);
}
}
internal static void CheckParameter(ref string param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize, string paramName) {
if (param == null) {
if (checkForNull) {
throw new ArgumentNullException(paramName);
}
return;
}
param = param.Trim();
if (checkIfEmpty && param.Length < 1) {
throw new ArgumentException(SR.GetString(SR.Parameter_can_not_be_empty, paramName), paramName);
}
if (maxSize > 0 && param.Length > maxSize) {
throw new ArgumentException(SR.GetString(SR.Parameter_too_long, paramName, maxSize.ToString(CultureInfo.InvariantCulture)), paramName);
}
if (checkForCommas && param.Contains(",")) {
throw new ArgumentException(SR.GetString(SR.Parameter_can_not_contain_comma, paramName), paramName);
}
}
internal static void CheckArrayParameter(ref string[] param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize, string paramName) {
if (param == null) {
throw new ArgumentNullException(paramName);
}
if (param.Length < 1) {
throw new ArgumentException(SR.GetString(SR.Parameter_array_empty, paramName), paramName);
}
Hashtable values = new Hashtable(param.Length);
for (int i = param.Length - 1; i >= 0; i--) {
SecUtility.CheckParameter(ref param[i], checkForNull, checkIfEmpty, checkForCommas, maxSize,
paramName + "[ " + i.ToString(CultureInfo.InvariantCulture) + " ]");
if (values.Contains(param[i])) {
throw new ArgumentException(SR.GetString(SR.Parameter_duplicate_array_element, paramName), paramName);
}
else {
values.Add(param[i], param[i]);
}
}
}
internal static bool GetBooleanValue(NameValueCollection config, string valueName, bool defaultValue) {
string sValue = config[valueName];
if (sValue == null) {
return defaultValue;
}
bool result;
if (bool.TryParse(sValue, out result)) {
return result;
}
else {
throw new ProviderException(SR.GetString(SR.Value_must_be_boolean, valueName));
}
}
internal static int GetIntValue(NameValueCollection config, string valueName, int defaultValue, bool zeroAllowed, int maxValueAllowed) {
string sValue = config[valueName];
if (sValue == null) {
return defaultValue;
}
int iValue;
if (!Int32.TryParse(sValue, out iValue)) {
if (zeroAllowed) {
throw new ProviderException(SR.GetString(SR.Value_must_be_non_negative_integer, valueName));
}
throw new ProviderException(SR.GetString(SR.Value_must_be_positive_integer, valueName));
}
if (zeroAllowed && iValue < 0) {
throw new ProviderException(SR.GetString(SR.Value_must_be_non_negative_integer, valueName));
}
if (!zeroAllowed && iValue <= 0) {
throw new ProviderException(SR.GetString(SR.Value_must_be_positive_integer, valueName));
}
if (maxValueAllowed > 0 && iValue > maxValueAllowed) {
throw new ProviderException(SR.GetString(SR.Value_too_big, valueName, maxValueAllowed.ToString(CultureInfo.InvariantCulture)));
}
return iValue;
}
#if !FEATURE_PAL //
internal static void CheckSchemaVersion(ProviderBase provider, SqlConnection connection, string[] features, string version, ref int schemaVersionCheck) {
if (connection == null) {
throw new ArgumentNullException("connection");
}
if (features == null) {
throw new ArgumentNullException("features");
}
if (version == null) {
throw new ArgumentNullException("version");
}
if (schemaVersionCheck == -1) {
throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version));
}
else if (schemaVersionCheck == 0) {
lock (provider) {
if (schemaVersionCheck == -1) {
throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version));
}
else if (schemaVersionCheck == 0) {
int iStatus = 0;
SqlCommand cmd = null;
SqlParameter p = null;
foreach (string feature in features) {
cmd = new SqlCommand("dbo.aspnet_CheckSchemaVersion", connection);
cmd.CommandType = CommandType.StoredProcedure;
p = new SqlParameter("@Feature", feature);
cmd.Parameters.Add(p);
p = new SqlParameter("@CompatibleSchemaVersion", version);
cmd.Parameters.Add(p);
p = new SqlParameter("@ReturnValue", SqlDbType.Int);
p.Direction = ParameterDirection.ReturnValue;
cmd.Parameters.Add(p);
cmd.ExecuteNonQuery();
iStatus = ((p.Value != null) ? ((int)p.Value) : -1);
if (iStatus != 0) {
schemaVersionCheck = -1;
throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version));
}
}
schemaVersionCheck = 1;
}
}
}
}
#endif // !FEATURE_PAL
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- CodeTypeParameterCollection.cs
- XDRSchema.cs
- FontSizeConverter.cs
- GenericAuthenticationEventArgs.cs
- TableCell.cs
- AnnotationHighlightLayer.cs
- OleDbCommand.cs
- StringDictionary.cs
- XmlTextAttribute.cs
- DataServiceExpressionVisitor.cs
- ObjectQueryState.cs
- FontDriver.cs
- Cursors.cs
- PtsPage.cs
- InputBinder.cs
- SoapFault.cs
- CubicEase.cs
- TypeDelegator.cs
- XmlSchemaObject.cs
- XmlRootAttribute.cs
- SQLDecimal.cs
- UserControlParser.cs
- PasswordBoxAutomationPeer.cs
- OperationParameterInfoCollection.cs
- FrameworkElementFactoryMarkupObject.cs
- elementinformation.cs
- NetworkAddressChange.cs
- DataControlLinkButton.cs
- DataSourceCache.cs
- ConfigurationStrings.cs
- Simplifier.cs
- TypedDataSetSchemaImporterExtension.cs
- EntityDesignerDataSourceView.cs
- ProcessingInstructionAction.cs
- VisualTreeHelper.cs
- Html32TextWriter.cs
- WebPartPersonalization.cs
- TextSimpleMarkerProperties.cs
- HtmlTableRow.cs
- SelectionProcessor.cs
- ContainerSelectorActiveEvent.cs
- EventItfInfo.cs
- DataGridViewCellCancelEventArgs.cs
- BaseCollection.cs
- DrawingGroup.cs
- BrowserCapabilitiesFactory.cs
- ConfigXmlWhitespace.cs
- TypeLoadException.cs
- ConsumerConnectionPointCollection.cs
- IPAddress.cs
- cryptoapiTransform.cs
- BamlRecordHelper.cs
- AppDomainGrammarProxy.cs
- ExpressionBinding.cs
- IsolatedStorage.cs
- HtmlInputText.cs
- SecureStringHasher.cs
- Clock.cs
- BulletDecorator.cs
- DictionaryContent.cs
- LinqDataSourceEditData.cs
- SqlPersonalizationProvider.cs
- UserControl.cs
- SQLString.cs
- CompModSwitches.cs
- WebBrowserBase.cs
- PasswordTextContainer.cs
- BrowserCapabilitiesFactory.cs
- SqlAliasesReferenced.cs
- StorageRoot.cs
- DSASignatureFormatter.cs
- HttpModuleCollection.cs
- SystemFonts.cs
- ClientSponsor.cs
- ElementProxy.cs
- QuaternionAnimationBase.cs
- HtmlEncodedRawTextWriter.cs
- FieldBuilder.cs
- DocumentViewer.cs
- EntitySetBaseCollection.cs
- SharedStatics.cs
- PersonalizationStateInfo.cs
- SiteMapPath.cs
- TextTrailingWordEllipsis.cs
- MaterialCollection.cs
- SecurityUtils.cs
- GridViewDeleteEventArgs.cs
- ObjectReaderCompiler.cs
- DbgUtil.cs
- ListViewInsertEventArgs.cs
- AsyncPostBackErrorEventArgs.cs
- DesignerOptionService.cs
- SynchronizedInputHelper.cs
- WindowsSlider.cs
- SQLBytesStorage.cs
- safePerfProviderHandle.cs
- HtmlProps.cs
- RegexMatch.cs
- SaveLedgerEntryRequest.cs
- UpDownEvent.cs