Code:
/ 4.0 / 4.0 / untmp / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / fx / src / xsp / System / Web / Routing / PageRouteHandler.cs / 1305376 / PageRouteHandler.cs
//------------------------------------------------------------------------------ //// Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- namespace System.Web.Routing { using System; using System.Web.UI; using System.Web.Compilation; using System.Web.Security; using System.Security; using System.Security.Permissions; using System.Security.Principal; public class PageRouteHandler : IRouteHandler { public PageRouteHandler(string virtualPath) : this(virtualPath, true) { } public PageRouteHandler(string virtualPath, bool checkPhysicalUrlAccess) { if (string.IsNullOrEmpty(virtualPath) || !virtualPath.StartsWith("~/", StringComparison.OrdinalIgnoreCase)) { throw new ArgumentException(SR.GetString(SR.PageRouteHandler_InvalidVirtualPath), "virtualPath"); } this.VirtualPath = virtualPath; this.CheckPhysicalUrlAccess = checkPhysicalUrlAccess; _useRouteVirtualPath = VirtualPath.Contains("{"); } ////// This is the full virtual path (using tilde syntax) to the WebForm page. /// ////// Needs to be thread safe so this is only settable via ctor. /// public string VirtualPath { get; private set; } ////// Because we're not actually rewriting the URL, ASP.NET's URL Auth will apply /// to the incoming request URL and not the URL of the physical WebForm page. /// Setting this to true (default) will apply URL access rules against the /// physical file. /// ///True by default public bool CheckPhysicalUrlAccess { get; private set; } private bool _useRouteVirtualPath; private Route _routeVirtualPath; private Route RouteVirtualPath { get { if (_routeVirtualPath == null) { //Trim off ~/ _routeVirtualPath = new Route(VirtualPath.Substring(2), this); } return _routeVirtualPath; } } private bool CheckUrlAccess(string virtualPath, RequestContext requestContext) { IPrincipal user = requestContext.HttpContext.User; // If there's no authenticated user, use the default identity if (user == null) { user = new GenericPrincipal(new GenericIdentity(String.Empty, String.Empty), new string[0]); } return CheckUrlAccessWithAssert(virtualPath, requestContext, user); } [SecurityPermission(SecurityAction.Assert, Unrestricted = true)] private bool CheckUrlAccessWithAssert(string virtualPath, RequestContext requestContext, IPrincipal user) { return UrlAuthorizationModule.CheckUrlAccessForPrincipal(virtualPath, user, requestContext.HttpContext.Request.HttpMethod); } public virtual IHttpHandler GetHttpHandler(RequestContext requestContext) { if (requestContext == null) { throw new ArgumentNullException("requestContext"); } string virtualPath = GetSubstitutedVirtualPath(requestContext); // Virtual Path ----s up with query strings, so we need to strip them off int qmark = virtualPath.IndexOf('?'); if (qmark != -1) { virtualPath = virtualPath.Substring(0, qmark); } if (this.CheckPhysicalUrlAccess && !CheckUrlAccess(virtualPath, requestContext)) { return new UrlAuthFailureHandler(); } Page page = BuildManager.CreateInstanceFromVirtualPath(virtualPath, typeof(Page)) as Page; return page; } ////// Gets the virtual path to the resource after applying substitutions based on route data. /// /// ///public string GetSubstitutedVirtualPath(RequestContext requestContext) { if (requestContext == null) { throw new ArgumentNullException("requestContext"); } if (!_useRouteVirtualPath) return VirtualPath; VirtualPathData vpd = RouteVirtualPath.GetVirtualPath(requestContext, requestContext.RouteData.Values); // if (vpd == null) return VirtualPath; return "~/" + vpd.VirtualPath; } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- PointCollectionConverter.cs
- GetIndexBinder.cs
- InputScope.cs
- DataGridToolTip.cs
- XmlSchemaValidator.cs
- basemetadatamappingvisitor.cs
- SqlTriggerContext.cs
- TransformerTypeCollection.cs
- OdbcUtils.cs
- ObjectHelper.cs
- URLAttribute.cs
- Mouse.cs
- TypefaceCollection.cs
- PageBreakRecord.cs
- ValidationErrorEventArgs.cs
- DataGridViewRow.cs
- ActionItem.cs
- HttpHeaderCollection.cs
- XmlWrappingReader.cs
- webbrowsersite.cs
- UnitySerializationHolder.cs
- InvalidPrinterException.cs
- DSACryptoServiceProvider.cs
- _WebProxyDataBuilder.cs
- WindowsScroll.cs
- DependencyPropertyDescriptor.cs
- WebPartDescriptionCollection.cs
- CodeTypeDeclarationCollection.cs
- EventRouteFactory.cs
- BooleanFunctions.cs
- ServiceHttpModule.cs
- IteratorDescriptor.cs
- ReadOnlyHierarchicalDataSource.cs
- CompensatableSequenceActivity.cs
- ImageFormat.cs
- PolyLineSegmentFigureLogic.cs
- DataServiceExpressionVisitor.cs
- DetailsViewDeletedEventArgs.cs
- PolicyLevel.cs
- EventQueueState.cs
- DataGridViewComboBoxCell.cs
- CreateUserWizardDesigner.cs
- ParameterModifier.cs
- NullableBoolConverter.cs
- KernelTypeValidation.cs
- ResXResourceWriter.cs
- GridViewDeleteEventArgs.cs
- XmlUtil.cs
- DictionaryContent.cs
- QilPatternFactory.cs
- RemoteCryptoSignHashRequest.cs
- ReadOnlyTernaryTree.cs
- ImageDrawing.cs
- FileBasedResourceGroveler.cs
- UiaCoreApi.cs
- EdmFunction.cs
- SqlConnectionPoolProviderInfo.cs
- TextDataBindingHandler.cs
- _ListenerAsyncResult.cs
- LabelLiteral.cs
- DefaultEvaluationContext.cs
- TypeToken.cs
- SafeNativeMethods.cs
- WeakHashtable.cs
- ActivityExecutionFilter.cs
- XamlRtfConverter.cs
- PropertyGroupDescription.cs
- SettingsPropertyValue.cs
- RootBrowserWindowProxy.cs
- MultiAsyncResult.cs
- DocumentApplication.cs
- DesignerWebPartChrome.cs
- DrawToolTipEventArgs.cs
- IPAddressCollection.cs
- FunctionMappingTranslator.cs
- InputMethodStateTypeInfo.cs
- NativeRightsManagementAPIsStructures.cs
- Subtree.cs
- AttachedPropertyBrowsableForChildrenAttribute.cs
- SqlExpander.cs
- DesigntimeLicenseContextSerializer.cs
- VisualBrush.cs
- PagerStyle.cs
- DataKey.cs
- QuestionEventArgs.cs
- ReachPageContentCollectionSerializerAsync.cs
- HostVisual.cs
- SubqueryTrackingVisitor.cs
- ConstructorBuilder.cs
- ProcessModelInfo.cs
- Variant.cs
- AppendHelper.cs
- CaseStatement.cs
- HttpHostedTransportConfiguration.cs
- webeventbuffer.cs
- wmiprovider.cs
- OutputCacheSection.cs
- ProfileManager.cs
- HttpModuleActionCollection.cs
- SecurityKeyType.cs