Code:
/ WCF / WCF / 3.5.30729.1 / untmp / Orcas / SP / ndp / cdf / src / WCF / IdentityModel / System / IdentityModel / Tokens / RsaSecurityToken.cs / 1 / RsaSecurityToken.cs
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.IdentityModel.Tokens
{
using System.Collections.Generic;
using System.Collections.ObjectModel;
using System.ComponentModel;
using System.Diagnostics;
using System.Runtime.InteropServices;
using System.Security.Cryptography;
using System.Runtime.CompilerServices;
public class RsaSecurityToken : SecurityToken
{
string id;
DateTime effectiveTime;
ReadOnlyCollection rsaKey;
RSA rsa;
CspKeyContainerInfo keyContainerInfo;
GCHandle rsaHandle;
public RsaSecurityToken(RSA rsa)
: this(rsa, SecurityUniqueId.Create().Value)
{
}
public RsaSecurityToken(RSA rsa, string id)
{
if (rsa == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa");
if (id == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("id");
this.rsa = rsa;
this.id = id;
this.effectiveTime = DateTime.UtcNow;
GC.SuppressFinalize(this);
}
// This is defense-in-depth.
// Rsa finalizer can throw and bring down the process if in finalizer context.
// This internal ctor is used by SM's IssuedSecurityTokenProvider.
// If ownsRsa=true, this class will take ownership of the Rsa object and provides
// a reliable finalizing/disposing of Rsa object. The GCHandle is used to ensure
// order in finalizer sequence.
RsaSecurityToken(RSACryptoServiceProvider rsa, bool ownsRsa)
{
if (rsa == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa");
this.rsa = rsa;
this.id = SecurityUniqueId.Create().Value;
this.effectiveTime = DateTime.UtcNow;
if (ownsRsa)
{
// This also key pair generation.
// This must be called before PersistKeyInCsp to avoid a handle to go out of scope.
this.keyContainerInfo = rsa.CspKeyContainerInfo;
// We will handle key file deletion
rsa.PersistKeyInCsp = true;
this.rsaHandle = GCHandle.Alloc(rsa);
}
else
{
GC.SuppressFinalize(this);
}
}
~RsaSecurityToken()
{
Dispose(false);
}
internal void Dispose()
{
Dispose(true);
GC.SuppressFinalize(this);
}
void Dispose(bool disposing)
{
if (this.rsaHandle.IsAllocated)
{
try
{
// keyContainerInfo is a wrapper over a member of Rsa.
// this is to be safe that rsa.Dispose won't clean up that member.
string keyContainerName = this.keyContainerInfo.KeyContainerName;
string providerName = this.keyContainerInfo.ProviderName;
uint providerType = (uint)this.keyContainerInfo.ProviderType;
((IDisposable)this.rsa).Dispose();
// Best effort delete key file in user context
SafeProvHandle provHandle;
if (!NativeMethods.CryptAcquireContextW(out provHandle,
keyContainerName,
providerName,
providerType,
NativeMethods.CRYPT_DELETEKEYSET))
{
int error = Marshal.GetLastWin32Error();
try
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(
new InvalidOperationException(SR.GetString(SR.FailedToDeleteKeyContainerFile), new Win32Exception(error)));
}
catch (InvalidOperationException ex)
{
if (DiagnosticUtility.ShouldTraceWarning)
{
DiagnosticUtility.ExceptionUtility.TraceHandledException(ex, TraceEventType.Warning);
}
}
}
System.ServiceModel.Diagnostics.Utility.CloseInvalidOutSafeHandle(provHandle);
}
finally
{
this.rsaHandle.Free();
}
}
}
internal static RsaSecurityToken CreateSafeRsaSecurityToken(int keySize)
{
RsaSecurityToken token;
RSACryptoServiceProvider rsa = null;
RuntimeHelpers.PrepareConstrainedRegions();
try
{
try
{
}
finally
{
rsa = new RSACryptoServiceProvider(keySize);
}
token = new RsaSecurityToken(rsa, true);
rsa = null;
}
finally
{
if (rsa != null)
{
((IDisposable)rsa).Dispose();
}
}
return token;
}
public override string Id
{
get { return this.id; }
}
public override DateTime ValidFrom
{
get { return this.effectiveTime; }
}
public override DateTime ValidTo
{
// Never expire
get { return SecurityUtils.MaxUtcDateTime; }
}
public override ReadOnlyCollection SecurityKeys
{
get
{
if (this.rsaKey == null)
{
List keys = new List(1);
keys.Add(new RsaSecurityKey(this.rsa));
this.rsaKey = keys.AsReadOnly();
}
return this.rsaKey;
}
}
public RSA Rsa
{
get { return this.rsa; }
}
public override bool CanCreateKeyIdentifierClause()
{
return typeof(T) == typeof(RsaKeyIdentifierClause);
}
public override T CreateKeyIdentifierClause()
{
if (typeof(T) == typeof(RsaKeyIdentifierClause))
return (T)((object)new RsaKeyIdentifierClause(this.rsa));
throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(new NotSupportedException(
SR.GetString(SR.TokenDoesNotSupportKeyIdentifierClauseCreation, GetType().Name, typeof(T).Name)));
}
public override bool MatchesKeyIdentifierClause(SecurityKeyIdentifierClause keyIdentifierClause)
{
RsaKeyIdentifierClause rsaKeyIdentifierClause = keyIdentifierClause as RsaKeyIdentifierClause;
if (rsaKeyIdentifierClause != null)
return rsaKeyIdentifierClause.Matches(this.rsa);
return false;
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
// Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- SimpleExpression.cs
- SiteMapDataSourceView.cs
- KernelTypeValidation.cs
- EdgeProfileValidation.cs
- GridItem.cs
- AxImporter.cs
- GPPOINT.cs
- ParameterSubsegment.cs
- DataGridViewRowHeightInfoNeededEventArgs.cs
- CookieProtection.cs
- CodeGenerator.cs
- NominalTypeEliminator.cs
- TemplateAction.cs
- DataViewSetting.cs
- BreakRecordTable.cs
- BufferedReceiveElement.cs
- AxHost.cs
- CollectionDataContractAttribute.cs
- BitVector32.cs
- TextEffectResolver.cs
- ReaderContextStackData.cs
- DataAdapter.cs
- GradientSpreadMethodValidation.cs
- EmptyEnumerator.cs
- TCPClient.cs
- FormatConvertedBitmap.cs
- ApplicationServiceHelper.cs
- ConfigXmlWhitespace.cs
- InstanceLockQueryResult.cs
- DataGridViewHitTestInfo.cs
- WebBrowserHelper.cs
- ControlAdapter.cs
- WebPartUserCapability.cs
- PointF.cs
- CursorInteropHelper.cs
- SafeFileMappingHandle.cs
- LogEntrySerialization.cs
- HttpCacheVaryByContentEncodings.cs
- ISSmlParser.cs
- HttpProxyTransportBindingElement.cs
- QilLiteral.cs
- TemplatePagerField.cs
- CodeDomSerializer.cs
- QueryOperationResponseOfT.cs
- BinaryNode.cs
- TypeResolver.cs
- ExpressionPrefixAttribute.cs
- _FtpDataStream.cs
- PropertyGridEditorPart.cs
- HtmlTernaryTree.cs
- PrinterSettings.cs
- KeyEvent.cs
- TextEmbeddedObject.cs
- GridViewRow.cs
- Context.cs
- ClientConfigurationHost.cs
- SqlNotificationRequest.cs
- ComProxy.cs
- SafeNativeMemoryHandle.cs
- ConstructorArgumentAttribute.cs
- objectquery_tresulttype.cs
- RelOps.cs
- Condition.cs
- WebFaultClientMessageInspector.cs
- __FastResourceComparer.cs
- QilStrConcatenator.cs
- StylusPlugInCollection.cs
- NotConverter.cs
- Polygon.cs
- SelectedGridItemChangedEvent.cs
- DownloadProgressEventArgs.cs
- QueryReaderSettings.cs
- ComponentEditorForm.cs
- RequestQueue.cs
- SQLByte.cs
- InputProviderSite.cs
- RegexCapture.cs
- Normalizer.cs
- DefaultTraceListener.cs
- FixedDSBuilder.cs
- FilterableAttribute.cs
- NativeActivityFaultContext.cs
- WeakHashtable.cs
- HtmlInputPassword.cs
- MessageFilterTable.cs
- CornerRadiusConverter.cs
- WebPartConnectionCollection.cs
- TypeUtil.cs
- HandlerMappingMemo.cs
- StreamInfo.cs
- PrimitiveType.cs
- BindingsSection.cs
- MSAAWinEventWrap.cs
- DecoderReplacementFallback.cs
- mediaclock.cs
- UrlMapping.cs
- DiscoveryProxy.cs
- Catch.cs
- ExpressionConverter.cs
- AlternationConverter.cs