Code:
/ Dotnetfx_Win7_3.5.1 / Dotnetfx_Win7_3.5.1 / 3.5.1 / DEVDIV / depot / DevDiv / releases / whidbey / NetFXspW7 / ndp / fx / src / xsp / System / Web / Security / WindowsTokenRoleProvider.cs / 1 / WindowsTokenRoleProvider.cs
//------------------------------------------------------------------------------
//
// Copyright (c) Microsoft Corporation. All rights reserved.
//
//-----------------------------------------------------------------------------
namespace System.Web.Security {
using System.Web;
using System.Web.Configuration;
using System.Security.Principal;
using System.Security.Permissions;
using System.Globalization;
using System.Runtime.Serialization;
using System.Collections;
using System.Collections.Specialized;
using System.Data;
using System.Data.SqlClient;
using System.Data.SqlTypes;
using System.Text;
using System.Configuration.Provider;
using System.Web.Hosting;
using System.Threading;
using System.Web.Util;
[AspNetHostingPermission(SecurityAction.LinkDemand, Level=AspNetHostingPermissionLevel.Minimal)]
[AspNetHostingPermission(SecurityAction.InheritanceDemand, Level=AspNetHostingPermissionLevel.Minimal)]
public class WindowsTokenRoleProvider : RoleProvider {
private static string _MachineName = null;
private string _AppName;
public override string ApplicationName
{
get { return _AppName; }
set {
_AppName = value;
if ( _AppName.Length > 256 )
{
throw new ProviderException( SR.GetString( SR.Provider_application_name_too_long ) );
}
}
}
public override void Initialize(string name, NameValueCollection config){
if (String.IsNullOrEmpty(name))
name = "WindowsTokenProvider";
if (string.IsNullOrEmpty(config["description"])) {
config.Remove("description");
config.Add("description", SR.GetString(SR.RoleWindowsTokenProvider_description));
}
base.Initialize(name, config);
if (config == null)
throw new ArgumentNullException("config");
_AppName = config["applicationName"];
if (string.IsNullOrEmpty(_AppName))
_AppName = SecUtility.GetDefaultAppName();
if( _AppName.Length > 256 )
{
throw new ProviderException(SR.GetString(SR.Provider_application_name_too_long));
}
config.Remove("applicationName");
if (config.Count > 0)
{
string attribUnrecognized = config.GetKey(0);
if (!String.IsNullOrEmpty(attribUnrecognized))
throw new ProviderException(SR.GetString(SR.Provider_unrecognized_attribute, attribUnrecognized));
}
}
public bool IsUserInRole(string username, System.Security.Principal.WindowsBuiltInRole role){
if (username == null)
throw new ArgumentNullException("username");
username = username.Trim();
WindowsIdentity wi = GetCurrentWindowsIdentityAndCheckName(username);
if (username.Length < 1)
return false;
WindowsPrincipal wp = new WindowsPrincipal(wi);
return wp.IsInRole(role);
}
public override bool IsUserInRole(string username, string roleName){
if (username == null)
throw new ArgumentNullException("username");
username = username.Trim();
if (roleName == null)
throw new ArgumentNullException("roleName");
roleName = roleName.Trim();
if (username.Length < 1)
return false;
StringBuilder error = new StringBuilder(1024);
IntPtr token = GetCurrentTokenAndCheckName(username);
switch (UnsafeNativeMethods.IsUserInRole(token, roleName, error, 1024)) {
case 1:
return true;
case 0:
return false;
}
throw new ProviderException(SR.GetString(SR.API_failed_due_to_error, error.ToString()));
}
public override string [] GetRolesForUser(string username){
HttpRuntime.CheckAspNetHostingPermission(AspNetHostingPermissionLevel.Low, SR.API_not_supported_at_this_level);
if (username == null)
throw new ArgumentNullException("username");
username = username.Trim();
IntPtr token = GetCurrentTokenAndCheckName(username);
if (username.Length < 1)
return new string[0];
StringBuilder allRoles = new StringBuilder(1024);
StringBuilder error = new StringBuilder(1024);
int status = UnsafeNativeMethods.GetGroupsForUser(token, allRoles, 1024, error, 1024);
if (status < 0)
{
allRoles = new StringBuilder(-status);
status = UnsafeNativeMethods.GetGroupsForUser(token, allRoles, -status, error, 1024);
}
if (status <= 0)
throw new ProviderException(SR.GetString(SR.API_failed_due_to_error, error.ToString()));
string [] roles = allRoles.ToString().Split('\t');
return AddLocalGroupsWithoutDomainNames(roles);
}
private static string [] AddLocalGroupsWithoutDomainNames(string [] roles)
{
string computerName = GetMachineName();
int len = computerName.Length;
for (int iter = 0; iter < roles.Length; iter++) {
roles[iter] = roles[iter].Trim();
if (roles[iter].ToLower(CultureInfo.InvariantCulture).StartsWith(computerName, StringComparison.Ordinal)) // Is it a local group?
roles[iter] = roles[iter].Substring(len);
}
return roles;
}
public override void CreateRole(string roleName)
{
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
public override bool DeleteRole(string roleName, bool throwOnPopulatedRole){
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
public override bool RoleExists(string roleName){
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
public override void AddUsersToRoles(string [] usernames, string [] roleNames) {
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
public override void RemoveUsersFromRoles(string [] usernames, string [] roleNames) {
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
public override string [] GetUsersInRole(string roleName){
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
public override string [] GetAllRoles(){
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
public override string[] FindUsersInRole(string roleName, string usernameToMatch)
{
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
[PermissionSet(SecurityAction.Assert, Unrestricted=true)]
private IntPtr GetCurrentTokenAndCheckName(string userName)
{
return GetCurrentWindowsIdentityAndCheckName(userName).Token;
}
[PermissionSet(SecurityAction.Assert, Unrestricted = true)]
private static string GetMachineName()
{
if (_MachineName == null)
_MachineName = (System.Environment.MachineName + "\\").ToLower(CultureInfo.InvariantCulture);
return _MachineName;
}
private WindowsIdentity GetCurrentWindowsIdentityAndCheckName(string userName)
{
if (HostingEnvironment.IsHosted) {
HttpContext context = HttpContext.Current;
if (context == null || context.User == null)
throw new ProviderException(SR.GetString(SR.API_supported_for_current_user_only));
if (!(context.User.Identity is WindowsIdentity))
throw new ProviderException(SR.GetString(SR.API_supported_for_current_user_only));
if (!StringUtil.EqualsIgnoreCase(userName, context.User.Identity.Name))
throw new ProviderException(SR.GetString(SR.API_supported_for_current_user_only));
return (WindowsIdentity)context.User.Identity;
} else {
IPrincipal user = Thread.CurrentPrincipal;
if (user == null || user.Identity == null || !(user.Identity is WindowsIdentity))
throw new ProviderException(SR.GetString(SR.API_supported_for_current_user_only));
if (!StringUtil.EqualsIgnoreCase(userName, user.Identity.Name))
throw new ProviderException(SR.GetString(SR.API_supported_for_current_user_only));
return (WindowsIdentity)user.Identity;
}
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
//------------------------------------------------------------------------------
//
// Copyright (c) Microsoft Corporation. All rights reserved.
//
//-----------------------------------------------------------------------------
namespace System.Web.Security {
using System.Web;
using System.Web.Configuration;
using System.Security.Principal;
using System.Security.Permissions;
using System.Globalization;
using System.Runtime.Serialization;
using System.Collections;
using System.Collections.Specialized;
using System.Data;
using System.Data.SqlClient;
using System.Data.SqlTypes;
using System.Text;
using System.Configuration.Provider;
using System.Web.Hosting;
using System.Threading;
using System.Web.Util;
[AspNetHostingPermission(SecurityAction.LinkDemand, Level=AspNetHostingPermissionLevel.Minimal)]
[AspNetHostingPermission(SecurityAction.InheritanceDemand, Level=AspNetHostingPermissionLevel.Minimal)]
public class WindowsTokenRoleProvider : RoleProvider {
private static string _MachineName = null;
private string _AppName;
public override string ApplicationName
{
get { return _AppName; }
set {
_AppName = value;
if ( _AppName.Length > 256 )
{
throw new ProviderException( SR.GetString( SR.Provider_application_name_too_long ) );
}
}
}
public override void Initialize(string name, NameValueCollection config){
if (String.IsNullOrEmpty(name))
name = "WindowsTokenProvider";
if (string.IsNullOrEmpty(config["description"])) {
config.Remove("description");
config.Add("description", SR.GetString(SR.RoleWindowsTokenProvider_description));
}
base.Initialize(name, config);
if (config == null)
throw new ArgumentNullException("config");
_AppName = config["applicationName"];
if (string.IsNullOrEmpty(_AppName))
_AppName = SecUtility.GetDefaultAppName();
if( _AppName.Length > 256 )
{
throw new ProviderException(SR.GetString(SR.Provider_application_name_too_long));
}
config.Remove("applicationName");
if (config.Count > 0)
{
string attribUnrecognized = config.GetKey(0);
if (!String.IsNullOrEmpty(attribUnrecognized))
throw new ProviderException(SR.GetString(SR.Provider_unrecognized_attribute, attribUnrecognized));
}
}
public bool IsUserInRole(string username, System.Security.Principal.WindowsBuiltInRole role){
if (username == null)
throw new ArgumentNullException("username");
username = username.Trim();
WindowsIdentity wi = GetCurrentWindowsIdentityAndCheckName(username);
if (username.Length < 1)
return false;
WindowsPrincipal wp = new WindowsPrincipal(wi);
return wp.IsInRole(role);
}
public override bool IsUserInRole(string username, string roleName){
if (username == null)
throw new ArgumentNullException("username");
username = username.Trim();
if (roleName == null)
throw new ArgumentNullException("roleName");
roleName = roleName.Trim();
if (username.Length < 1)
return false;
StringBuilder error = new StringBuilder(1024);
IntPtr token = GetCurrentTokenAndCheckName(username);
switch (UnsafeNativeMethods.IsUserInRole(token, roleName, error, 1024)) {
case 1:
return true;
case 0:
return false;
}
throw new ProviderException(SR.GetString(SR.API_failed_due_to_error, error.ToString()));
}
public override string [] GetRolesForUser(string username){
HttpRuntime.CheckAspNetHostingPermission(AspNetHostingPermissionLevel.Low, SR.API_not_supported_at_this_level);
if (username == null)
throw new ArgumentNullException("username");
username = username.Trim();
IntPtr token = GetCurrentTokenAndCheckName(username);
if (username.Length < 1)
return new string[0];
StringBuilder allRoles = new StringBuilder(1024);
StringBuilder error = new StringBuilder(1024);
int status = UnsafeNativeMethods.GetGroupsForUser(token, allRoles, 1024, error, 1024);
if (status < 0)
{
allRoles = new StringBuilder(-status);
status = UnsafeNativeMethods.GetGroupsForUser(token, allRoles, -status, error, 1024);
}
if (status <= 0)
throw new ProviderException(SR.GetString(SR.API_failed_due_to_error, error.ToString()));
string [] roles = allRoles.ToString().Split('\t');
return AddLocalGroupsWithoutDomainNames(roles);
}
private static string [] AddLocalGroupsWithoutDomainNames(string [] roles)
{
string computerName = GetMachineName();
int len = computerName.Length;
for (int iter = 0; iter < roles.Length; iter++) {
roles[iter] = roles[iter].Trim();
if (roles[iter].ToLower(CultureInfo.InvariantCulture).StartsWith(computerName, StringComparison.Ordinal)) // Is it a local group?
roles[iter] = roles[iter].Substring(len);
}
return roles;
}
public override void CreateRole(string roleName)
{
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
public override bool DeleteRole(string roleName, bool throwOnPopulatedRole){
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
public override bool RoleExists(string roleName){
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
public override void AddUsersToRoles(string [] usernames, string [] roleNames) {
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
public override void RemoveUsersFromRoles(string [] usernames, string [] roleNames) {
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
public override string [] GetUsersInRole(string roleName){
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
public override string [] GetAllRoles(){
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
public override string[] FindUsersInRole(string roleName, string usernameToMatch)
{
throw new ProviderException(SR.GetString(SR.Windows_Token_API_not_supported));
}
[PermissionSet(SecurityAction.Assert, Unrestricted=true)]
private IntPtr GetCurrentTokenAndCheckName(string userName)
{
return GetCurrentWindowsIdentityAndCheckName(userName).Token;
}
[PermissionSet(SecurityAction.Assert, Unrestricted = true)]
private static string GetMachineName()
{
if (_MachineName == null)
_MachineName = (System.Environment.MachineName + "\\").ToLower(CultureInfo.InvariantCulture);
return _MachineName;
}
private WindowsIdentity GetCurrentWindowsIdentityAndCheckName(string userName)
{
if (HostingEnvironment.IsHosted) {
HttpContext context = HttpContext.Current;
if (context == null || context.User == null)
throw new ProviderException(SR.GetString(SR.API_supported_for_current_user_only));
if (!(context.User.Identity is WindowsIdentity))
throw new ProviderException(SR.GetString(SR.API_supported_for_current_user_only));
if (!StringUtil.EqualsIgnoreCase(userName, context.User.Identity.Name))
throw new ProviderException(SR.GetString(SR.API_supported_for_current_user_only));
return (WindowsIdentity)context.User.Identity;
} else {
IPrincipal user = Thread.CurrentPrincipal;
if (user == null || user.Identity == null || !(user.Identity is WindowsIdentity))
throw new ProviderException(SR.GetString(SR.API_supported_for_current_user_only));
if (!StringUtil.EqualsIgnoreCase(userName, user.Identity.Name))
throw new ProviderException(SR.GetString(SR.API_supported_for_current_user_only));
return (WindowsIdentity)user.Identity;
}
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- SmiEventSink_Default.cs
- TextServicesDisplayAttributePropertyRanges.cs
- ItemCheckEvent.cs
- BaseTypeViewSchema.cs
- CodeDirectiveCollection.cs
- SQLConvert.cs
- BitmapImage.cs
- RectValueSerializer.cs
- PLINQETWProvider.cs
- UnsafeNativeMethods.cs
- METAHEADER.cs
- SqlNotificationEventArgs.cs
- Msec.cs
- DataGridAddNewRow.cs
- ApplicationManager.cs
- AspNetSynchronizationContext.cs
- HtmlLink.cs
- KeyValueInternalCollection.cs
- Content.cs
- CorrelationTokenInvalidatedHandler.cs
- WSHttpBinding.cs
- AnnotationStore.cs
- SqlRemoveConstantOrderBy.cs
- _SSPIWrapper.cs
- DesignerActionList.cs
- HttpConfigurationContext.cs
- PropertyGroupDescription.cs
- XmlTypeMapping.cs
- DbDeleteCommandTree.cs
- XmlSchemaIdentityConstraint.cs
- FlowDocumentReaderAutomationPeer.cs
- XmlName.cs
- Stack.cs
- listitem.cs
- XmlIlGenerator.cs
- StringReader.cs
- SelectionGlyphBase.cs
- TraceSource.cs
- ObjectStateEntryOriginalDbUpdatableDataRecord.cs
- ListenerAdaptersInstallComponent.cs
- ChildTable.cs
- EntityDataSourceQueryBuilder.cs
- WebControlsSection.cs
- GridView.cs
- FontStyles.cs
- XamlDesignerSerializationManager.cs
- MonthCalendar.cs
- ColumnHeaderConverter.cs
- CheckBoxList.cs
- EditBehavior.cs
- SqlVersion.cs
- EventManager.cs
- util.cs
- TextInfo.cs
- MatrixTransform3D.cs
- ToolboxItemWrapper.cs
- XsltSettings.cs
- IntranetCredentialPolicy.cs
- AuthorizationContext.cs
- BinaryFormatterWriter.cs
- ReflectTypeDescriptionProvider.cs
- LowerCaseStringConverter.cs
- DesignerValidationSummaryAdapter.cs
- MemberMaps.cs
- ExecutionContext.cs
- BaseParaClient.cs
- InstanceCompleteException.cs
- WinCategoryAttribute.cs
- LinkedResource.cs
- AQNBuilder.cs
- EventDescriptorCollection.cs
- ProviderIncompatibleException.cs
- XmlIlGenerator.cs
- DataMemberListEditor.cs
- AppSettingsReader.cs
- ContentPlaceHolder.cs
- XmlSchemaCompilationSettings.cs
- GridViewColumnHeader.cs
- EncoderExceptionFallback.cs
- basenumberconverter.cs
- FacetEnabledSchemaElement.cs
- Rules.cs
- JavaScriptObjectDeserializer.cs
- TryLoadRunnableWorkflowCommand.cs
- TextTreeTextNode.cs
- MessageDecoder.cs
- EdmItemCollection.cs
- XmlEncoding.cs
- AsyncCodeActivity.cs
- FixUpCollection.cs
- SyncMethodInvoker.cs
- CollectionsUtil.cs
- ComponentResourceManager.cs
- DataListItem.cs
- SqlGenericUtil.cs
- DotAtomReader.cs
- PagedDataSource.cs
- Visual3DCollection.cs
- CompareInfo.cs
- CacheMemory.cs