Code:
/ DotNET / DotNET / 8.0 / untmp / whidbey / REDBITS / ndp / fx / src / xsp / System / Web / ImpersonationContext.cs / 2 / ImpersonationContext.cs
//------------------------------------------------------------------------------ //// Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- namespace System.Web { using System; using System.Runtime.InteropServices; using System.Security.Permissions; using System.Web.Configuration; using System.Web.Hosting; using System.Web.Util; internal class ImpersonationContext : IDisposable { private HandleRef _savedToken; private bool _reverted; private bool _impersonating; // arg-less ctor creates dummy context internal ImpersonationContext() { } // ctor that takes a token impersonates that token internal ImpersonationContext(IntPtr token) { ImpersonateToken(new HandleRef(this, token)); } // IDisposable pattern ~ImpersonationContext() { Dispose(false); } void IDisposable.Dispose() { Undo(); } private void Dispose(bool disposing) { if (_savedToken.Handle != IntPtr.Zero) { try {} finally { UnsafeNativeMethods.CloseHandle(_savedToken.Handle); _savedToken = new HandleRef(this, IntPtr.Zero); } } } // impersonate a given token protected void ImpersonateToken(HandleRef token) { try { // first revert _savedToken = new HandleRef(this, GetCurrentToken()); if (_savedToken.Handle != IntPtr.Zero) { if (UnsafeNativeMethods.RevertToSelf() != 0) { _reverted = true; } } // impersonate token if not zero if (token.Handle != IntPtr.Zero) { if (UnsafeNativeMethods.SetThreadToken(IntPtr.Zero, token.Handle) == 0) { throw new HttpException(SR.GetString(SR.Cannot_impersonate)); } _impersonating = true; } } catch { RestoreImpersonation(); throw; } } // restore impersonation to the original state private void RestoreImpersonation() { // first revert before reimpersonating if (_impersonating) { UnsafeNativeMethods.RevertToSelf(); _impersonating = false; } // second reimpersonate the orignal saved identity (if exists) if (_savedToken.Handle != IntPtr.Zero) { if (_reverted) { if (UnsafeNativeMethods.SetThreadToken(IntPtr.Zero, _savedToken.Handle) == 0) { throw new HttpException(SR.GetString(SR.Cannot_impersonate)); } } _reverted = false; } } // 'public' version of Dispose internal void Undo() { RestoreImpersonation(); // free unmanaged resources Dispose(true); System.GC.SuppressFinalize(this); } // helper to get the currently impersonated token private static IntPtr GetCurrentToken() { IntPtr token = IntPtr.Zero; if (UnsafeNativeMethods.OpenThreadToken( UnsafeNativeMethods.GetCurrentThread(), UnsafeNativeMethods.TOKEN_READ | UnsafeNativeMethods.TOKEN_IMPERSONATE, true, ref token) == 0) { // if the last error is ERROR_NO_TOKEN it is ok, otherwise throw if (Marshal.GetLastWin32Error() != UnsafeNativeMethods.ERROR_NO_TOKEN) { throw new HttpException(SR.GetString(SR.Cannot_impersonate)); } } return token; } // helper to check if there is a current token internal static bool CurrentThreadTokenExists { get { bool impersonating = false; try {} finally { IntPtr token = GetCurrentToken(); if (token != IntPtr.Zero) { impersonating = true; UnsafeNativeMethods.CloseHandle(token); } } return impersonating; } } } internal sealed class ProcessImpersonationContext : ImpersonationContext { internal ProcessImpersonationContext() { ImpersonateToken(new HandleRef(this, IntPtr.Zero)); } } internal sealed class ApplicationImpersonationContext : ImpersonationContext { internal ApplicationImpersonationContext() { ImpersonateToken(new HandleRef(this, HostingEnvironment.ApplicationIdentityToken)); } } internal sealed class ClientImpersonationContext : ImpersonationContext { internal ClientImpersonationContext(HttpContext context) { Start(context, true); } internal ClientImpersonationContext(HttpContext context, bool throwOnError) { Start(context, throwOnError); } private void Start(HttpContext context, bool throwOnError) { IntPtr token = IntPtr.Zero; try { if (context != null) { token = context.ImpersonationToken; } else { // by default use app identity token = HostingEnvironment.ApplicationIdentityToken; } } catch { if (throwOnError) { throw; } } // only impersonate if there is a token // this is to optimize for the default case of impersonation="false" // and no UNC identity, when requests run under process identity if (token != IntPtr.Zero) { ImpersonateToken(new HandleRef(this, token)); } } } }
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- CalendarButton.cs
- SqlCacheDependency.cs
- ColorConvertedBitmapExtension.cs
- WebControl.cs
- EditCommandColumn.cs
- XmlDataSource.cs
- CompilerState.cs
- TransformedBitmap.cs
- RectAnimationUsingKeyFrames.cs
- SizeF.cs
- LocalizableAttribute.cs
- AccessDataSource.cs
- PassportAuthentication.cs
- IdentityHolder.cs
- CodeDefaultValueExpression.cs
- EasingFunctionBase.cs
- CodeDirectoryCompiler.cs
- AssemblyAttributes.cs
- PackWebRequest.cs
- ObjectListCommandsPage.cs
- FormsAuthenticationEventArgs.cs
- FollowerQueueCreator.cs
- WithStatement.cs
- XmlIncludeAttribute.cs
- CalendarButtonAutomationPeer.cs
- BitmapFrame.cs
- TableStyle.cs
- FieldNameLookup.cs
- OperationParameterInfoCollection.cs
- __ConsoleStream.cs
- ListBoxItemAutomationPeer.cs
- ScaleTransform3D.cs
- ReadOnlyDictionary.cs
- SQLStringStorage.cs
- Match.cs
- DocumentEventArgs.cs
- ServiceOperationListItemList.cs
- MimeParameters.cs
- FileSecurity.cs
- GenericArgumentsUpdater.cs
- SqlDataSourceSelectingEventArgs.cs
- TextTrailingCharacterEllipsis.cs
- FormsAuthentication.cs
- SchemaImporter.cs
- GPPOINTF.cs
- FSWPathEditor.cs
- ICspAsymmetricAlgorithm.cs
- BinaryObjectReader.cs
- GcSettings.cs
- SmtpFailedRecipientException.cs
- HtmlControl.cs
- GiveFeedbackEvent.cs
- TripleDESCryptoServiceProvider.cs
- GridSplitterAutomationPeer.cs
- DataBinding.cs
- RequestCacheManager.cs
- CursorInteropHelper.cs
- TrustLevelCollection.cs
- SqlInternalConnection.cs
- ThreadAbortException.cs
- RowSpanVector.cs
- MethodImplAttribute.cs
- AssertSection.cs
- WorkflowEnvironment.cs
- SpanIndex.cs
- MruCache.cs
- DoWhile.cs
- ImplicitInputBrush.cs
- EnumBuilder.cs
- EntityDataSourceChangedEventArgs.cs
- ConfigurationException.cs
- DoWhile.cs
- FormatPage.cs
- GroupBox.cs
- basecomparevalidator.cs
- LinqDataSourceView.cs
- DeferredElementTreeState.cs
- XmlWrappingReader.cs
- MetabaseSettingsIis7.cs
- Oci.cs
- DrawingAttributesDefaultValueFactory.cs
- BlockUIContainer.cs
- WindowsNonControl.cs
- Matrix3DStack.cs
- GridViewDeleteEventArgs.cs
- Int32RectValueSerializer.cs
- XPathNodeInfoAtom.cs
- PrimitiveXmlSerializers.cs
- EndpointIdentityExtension.cs
- WebPartConnectionsCancelEventArgs.cs
- HwndAppCommandInputProvider.cs
- StringToken.cs
- X509CertificateRecipientClientCredential.cs
- InlineCollection.cs
- TableRow.cs
- InheritanceService.cs
- SingleStorage.cs
- RelationshipEntry.cs
- WriteTimeStream.cs
- BitmapEffectGroup.cs