Code:
/ WCF / WCF / 3.5.30729.1 / untmp / Orcas / SP / ndp / cdf / src / WCF / ServiceModel / System / ServiceModel / ServiceAuthorizationManager.cs / 1 / ServiceAuthorizationManager.cs
//------------------------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------------------------
namespace System.ServiceModel
{
using System.Collections.Generic;
using System.ServiceModel.Channels;
using System.ServiceModel.Description;
using System.Collections.ObjectModel;
using System.Diagnostics;
using System.IdentityModel.Policy;
using System.ServiceModel.Diagnostics;
using System.ServiceModel.Security;
public class ServiceAuthorizationManager
{
// This is the API called by framework to perform CheckAccess.
// The API is responsible for ...
// 1) Evaluate all policies (Forward\Backward)
// 2) Optionally wire up the resulting AuthorizationContext
// to ServiceSecurityContext.
// 3) An availability of message content to make an authoritive decision.
// 4) Return the authoritive decision true/false (allow/deny).
public virtual bool CheckAccess(OperationContext operationContext, ref Message message)
{
return CheckAccess(operationContext);
}
public virtual bool CheckAccess(OperationContext operationContext)
{
if (operationContext == null)
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("operationContext");
}
// default to forward-chaining implementation
// 1) Get policies that will participate in chain process.
// We provide a safe default policies set below.
ReadOnlyCollection authorizationPolicies = GetAuthorizationPolicies(operationContext);
// 2) Do forward chaining and wire the new ServiceSecurityContext
operationContext.IncomingMessageProperties.Security.ServiceSecurityContext =
new ServiceSecurityContext(authorizationPolicies ?? EmptyReadOnlyCollection.Instance);
// 3) Call the CheckAccessCore
return CheckAccessCore(operationContext);
}
// Define the set of policies taking part in chaining. We will provide
// the safe default set (primary token + all supporting tokens except token with
// with SecurityTokenAttachmentMode.Signed + transport token). Implementor
// can override and provide different selection of policies set.
protected virtual ReadOnlyCollection GetAuthorizationPolicies(OperationContext operationContext)
{
SecurityMessageProperty security = operationContext.IncomingMessageProperties.Security;
if (security == null)
{
return EmptyReadOnlyCollection.Instance;
}
ReadOnlyCollection externalPolicies = security.ExternalAuthorizationPolicies;
if (security.ServiceSecurityContext == null)
{
return externalPolicies ?? EmptyReadOnlyCollection.Instance;
}
ReadOnlyCollection authorizationPolicies = security.ServiceSecurityContext.AuthorizationPolicies;
if (externalPolicies == null || externalPolicies.Count <= 0)
{
return authorizationPolicies;
}
// Combine
List policies = new List(authorizationPolicies);
policies.AddRange(externalPolicies);
return policies.AsReadOnly();
}
// Implementor overrides this API to make authoritive decision.
// The AuthorizationContext in opContext is generally the result from forward chain.
protected virtual bool CheckAccessCore(OperationContext operationContext)
{
return true;
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
// Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- StaticExtension.cs
- ConfigurationPermission.cs
- PropertyGroupDescription.cs
- CompilerResults.cs
- FragmentQuery.cs
- DataBoundLiteralControl.cs
- WebPartConnectionsCloseVerb.cs
- FrameworkPropertyMetadata.cs
- FunctionDefinition.cs
- FormViewDeletedEventArgs.cs
- WebResourceUtil.cs
- Scene3D.cs
- SoapSchemaExporter.cs
- QueryStringParameter.cs
- FileIOPermission.cs
- XmlEncoding.cs
- DragStartedEventArgs.cs
- CardSpacePolicyElement.cs
- WorkflowInstanceExtensionManager.cs
- DockPanel.cs
- GridLength.cs
- DataContext.cs
- OpenFileDialog.cs
- DBCSCodePageEncoding.cs
- DefaultShape.cs
- SmiEventSink.cs
- DockingAttribute.cs
- Typeface.cs
- MenuItemCollection.cs
- ResourceDescriptionAttribute.cs
- BrowserCapabilitiesCompiler.cs
- IIS7UserPrincipal.cs
- parserscommon.cs
- ProcessProtocolHandler.cs
- ListBoxItemWrapperAutomationPeer.cs
- ObservableCollection.cs
- SettingsPropertyWrongTypeException.cs
- AnonymousIdentificationModule.cs
- WindowsTooltip.cs
- PackageDigitalSignature.cs
- NegotiateStream.cs
- RelationHandler.cs
- XmlValidatingReader.cs
- DecoderNLS.cs
- DbConnectionOptions.cs
- DataGridViewCell.cs
- LinqDataSourceDisposeEventArgs.cs
- WebResponse.cs
- SchemaNames.cs
- HtmlSelectionListAdapter.cs
- SkinBuilder.cs
- SiteMapSection.cs
- DataGridHelper.cs
- InputQueueChannel.cs
- documentsequencetextpointer.cs
- OrderPreservingPipeliningMergeHelper.cs
- XmlTypeMapping.cs
- XmlElementAttributes.cs
- TypeProvider.cs
- RIPEMD160.cs
- TextLine.cs
- StaticResourceExtension.cs
- ToolStripOverflow.cs
- CodeTypeParameter.cs
- XmlDictionaryReader.cs
- ListenerAdapterBase.cs
- PropertyStore.cs
- ReadOnlyDictionary.cs
- TraceLog.cs
- altserialization.cs
- XappLauncher.cs
- RotateTransform3D.cs
- VerticalAlignConverter.cs
- SafeFileHandle.cs
- Table.cs
- EventRecordWrittenEventArgs.cs
- DataGridViewTextBoxCell.cs
- HttpStreamXmlDictionaryWriter.cs
- DictionaryBase.cs
- ToolStripPanel.cs
- NullReferenceException.cs
- parserscommon.cs
- EventMap.cs
- SqlMethods.cs
- WebPartCloseVerb.cs
- ProjectionPathBuilder.cs
- String.cs
- DispatcherHookEventArgs.cs
- FrameworkElementAutomationPeer.cs
- DbProviderFactories.cs
- PropertyPathWorker.cs
- RuleSettingsCollection.cs
- EditableRegion.cs
- EdmItemError.cs
- XPathQueryGenerator.cs
- HtmlElementErrorEventArgs.cs
- AttributeAction.cs
- EllipseGeometry.cs
- SafeViewOfFileHandle.cs
- Section.cs