Code:
/ WCF / WCF / 3.5.30729.1 / untmp / Orcas / SP / ndp / cdf / src / WCF / ServiceModel / System / ServiceModel / ServiceAuthorizationManager.cs / 1 / ServiceAuthorizationManager.cs
//------------------------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------------------------
namespace System.ServiceModel
{
using System.Collections.Generic;
using System.ServiceModel.Channels;
using System.ServiceModel.Description;
using System.Collections.ObjectModel;
using System.Diagnostics;
using System.IdentityModel.Policy;
using System.ServiceModel.Diagnostics;
using System.ServiceModel.Security;
public class ServiceAuthorizationManager
{
// This is the API called by framework to perform CheckAccess.
// The API is responsible for ...
// 1) Evaluate all policies (Forward\Backward)
// 2) Optionally wire up the resulting AuthorizationContext
// to ServiceSecurityContext.
// 3) An availability of message content to make an authoritive decision.
// 4) Return the authoritive decision true/false (allow/deny).
public virtual bool CheckAccess(OperationContext operationContext, ref Message message)
{
return CheckAccess(operationContext);
}
public virtual bool CheckAccess(OperationContext operationContext)
{
if (operationContext == null)
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("operationContext");
}
// default to forward-chaining implementation
// 1) Get policies that will participate in chain process.
// We provide a safe default policies set below.
ReadOnlyCollection authorizationPolicies = GetAuthorizationPolicies(operationContext);
// 2) Do forward chaining and wire the new ServiceSecurityContext
operationContext.IncomingMessageProperties.Security.ServiceSecurityContext =
new ServiceSecurityContext(authorizationPolicies ?? EmptyReadOnlyCollection.Instance);
// 3) Call the CheckAccessCore
return CheckAccessCore(operationContext);
}
// Define the set of policies taking part in chaining. We will provide
// the safe default set (primary token + all supporting tokens except token with
// with SecurityTokenAttachmentMode.Signed + transport token). Implementor
// can override and provide different selection of policies set.
protected virtual ReadOnlyCollection GetAuthorizationPolicies(OperationContext operationContext)
{
SecurityMessageProperty security = operationContext.IncomingMessageProperties.Security;
if (security == null)
{
return EmptyReadOnlyCollection.Instance;
}
ReadOnlyCollection externalPolicies = security.ExternalAuthorizationPolicies;
if (security.ServiceSecurityContext == null)
{
return externalPolicies ?? EmptyReadOnlyCollection.Instance;
}
ReadOnlyCollection authorizationPolicies = security.ServiceSecurityContext.AuthorizationPolicies;
if (externalPolicies == null || externalPolicies.Count <= 0)
{
return authorizationPolicies;
}
// Combine
List policies = new List(authorizationPolicies);
policies.AddRange(externalPolicies);
return policies.AsReadOnly();
}
// Implementor overrides this API to make authoritive decision.
// The AuthorizationContext in opContext is generally the result from forward chain.
protected virtual bool CheckAccessCore(OperationContext operationContext)
{
return true;
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
// Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- DesignerSerializationOptionsAttribute.cs
- SQLChars.cs
- MethodBuilder.cs
- DataSetViewSchema.cs
- WebRequestModuleElementCollection.cs
- ImmutableObjectAttribute.cs
- DateTimeValueSerializer.cs
- regiisutil.cs
- IteratorFilter.cs
- RewritingPass.cs
- DataGridCellEditEndingEventArgs.cs
- TraceUtility.cs
- _PooledStream.cs
- OracleString.cs
- Condition.cs
- HttpResponseBase.cs
- Listbox.cs
- XmlSchemaProviderAttribute.cs
- RequestResizeEvent.cs
- SchemaType.cs
- mansign.cs
- XmlEntity.cs
- BuilderElements.cs
- AnnotationResourceCollection.cs
- MaskDescriptors.cs
- GorillaCodec.cs
- DataControlPagerLinkButton.cs
- EndPoint.cs
- IconHelper.cs
- ListViewAutomationPeer.cs
- OrderedDictionary.cs
- PerformanceCounterPermissionAttribute.cs
- Column.cs
- LayoutDump.cs
- UnsafeNetInfoNativeMethods.cs
- StrongNameKeyPair.cs
- StatusBar.cs
- LabelLiteral.cs
- DbProviderFactories.cs
- DataObjectFieldAttribute.cs
- ProtocolsConfiguration.cs
- HtmlTernaryTree.cs
- EmissiveMaterial.cs
- QuaternionRotation3D.cs
- Size3D.cs
- UnicastIPAddressInformationCollection.cs
- DiscoveryUtility.cs
- SmiEventSink_Default.cs
- SqlMetaData.cs
- DataServiceQueryProvider.cs
- PerformanceCounters.cs
- VectorCollectionConverter.cs
- SqlWorkflowInstanceStoreLock.cs
- EncoderBestFitFallback.cs
- ArraySet.cs
- _ReceiveMessageOverlappedAsyncResult.cs
- XmlToDatasetMap.cs
- EllipticalNodeOperations.cs
- DataControlFieldHeaderCell.cs
- ZipIOLocalFileHeader.cs
- rsa.cs
- Assert.cs
- CodeIterationStatement.cs
- XmlnsCompatibleWithAttribute.cs
- SqlPersonalizationProvider.cs
- CrossAppDomainChannel.cs
- SocketInformation.cs
- EventListenerClientSide.cs
- ValidationSummary.cs
- HtmlTableRow.cs
- TemplateParser.cs
- ParameterCollectionEditor.cs
- BufferBuilder.cs
- TextLineBreak.cs
- RootCodeDomSerializer.cs
- FormsAuthenticationUser.cs
- RtfFormatStack.cs
- DiscoveryMessageSequence.cs
- DataGridViewColumnStateChangedEventArgs.cs
- BooleanConverter.cs
- WindowsEditBoxRange.cs
- FileIOPermission.cs
- SizeConverter.cs
- PopupEventArgs.cs
- MetadataItemEmitter.cs
- XamlReaderHelper.cs
- DragDropHelper.cs
- AstNode.cs
- DeferredSelectedIndexReference.cs
- TabletDevice.cs
- XmlSchemaSimpleContentExtension.cs
- PrimitiveCodeDomSerializer.cs
- TogglePatternIdentifiers.cs
- DataServiceQueryException.cs
- ClientEventManager.cs
- BezierSegment.cs
- NegatedCellConstant.cs
- Attachment.cs
- StickyNoteAnnotations.cs
- TextBoxBase.cs