Code:
/ FXUpdate3074 / FXUpdate3074 / 1.1 / DEVDIV / depot / DevDiv / releases / whidbey / QFE / ndp / fx / src / xsp / System / Web / Util / SecUtil.cs / 1 / SecUtil.cs
//------------------------------------------------------------------------------ //// Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- /* * SecurityUtil class * * Copyright (c) 1999 Microsoft Corporation */ namespace System.Web.Util { using System.Globalization; using System.Web.Hosting; using System.Collections; using System.Collections.Specialized; using System.Data; using System.Data.SqlClient; using System.Data.SqlTypes; using System.Configuration.Provider; using System.Configuration; using System.Text.RegularExpressions; internal static class SecUtility { internal static string GetDefaultAppName() { try { string appName = HostingEnvironment.ApplicationVirtualPath; if (String.IsNullOrEmpty(appName)) { #if !FEATURE_PAL // ROTORTODO: enable Process.MainModule or support an alternative // naming scheme for (HttpRuntime.AppDomainAppVirtualPath == null) appName = System.Diagnostics.Process.GetCurrentProcess(). MainModule.ModuleName; int indexOfDot = appName.IndexOf('.'); if (indexOfDot != -1) { appName = appName.Remove(indexOfDot); } #endif // !FEATURE_PAL } if (String.IsNullOrEmpty(appName)) { return "/"; } else { return appName; } } catch { return "/"; } } // We don't trim the param before checking with password parameters internal static bool ValidatePasswordParameter(ref string param, int maxSize) { if (param == null) { return false; } if (param.Length < 1) { return false; } if (maxSize > 0 && (param.Length > maxSize) ) { return false; } return true; } internal static bool ValidateParameter(ref string param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize) { if (param == null) { return !checkForNull; } param = param.Trim(); if ((checkIfEmpty && param.Length < 1) || (maxSize > 0 && param.Length > maxSize) || (checkForCommas && param.Contains(","))) { return false; } return true; } // We don't trim the param before checking with password parameters internal static void CheckPasswordParameter(ref string param, int maxSize, string paramName) { if (param == null) { throw new ArgumentNullException(paramName); } if (param.Length < 1) { throw new ArgumentException(SR.GetString(SR.Parameter_can_not_be_empty, paramName), paramName); } if (maxSize > 0 && param.Length > maxSize) { throw new ArgumentException(SR.GetString(SR.Parameter_too_long, paramName, maxSize.ToString(CultureInfo.InvariantCulture)), paramName); } } internal static void CheckParameter(ref string param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize, string paramName) { if (param == null) { if (checkForNull) { throw new ArgumentNullException(paramName); } return; } param = param.Trim(); if (checkIfEmpty && param.Length < 1) { throw new ArgumentException(SR.GetString(SR.Parameter_can_not_be_empty, paramName), paramName); } if (maxSize > 0 && param.Length > maxSize) { throw new ArgumentException(SR.GetString(SR.Parameter_too_long, paramName, maxSize.ToString(CultureInfo.InvariantCulture)), paramName); } if (checkForCommas && param.Contains(",")) { throw new ArgumentException(SR.GetString(SR.Parameter_can_not_contain_comma, paramName), paramName); } } internal static void CheckArrayParameter(ref string[] param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize, string paramName) { if (param == null) { throw new ArgumentNullException(paramName); } if (param.Length < 1) { throw new ArgumentException(SR.GetString(SR.Parameter_array_empty, paramName), paramName); } Hashtable values = new Hashtable(param.Length); for (int i = param.Length - 1; i >= 0; i--) { SecUtility.CheckParameter(ref param[i], checkForNull, checkIfEmpty, checkForCommas, maxSize, paramName + "[ " + i.ToString(CultureInfo.InvariantCulture) + " ]"); if (values.Contains(param[i])) { throw new ArgumentException(SR.GetString(SR.Parameter_duplicate_array_element, paramName), paramName); } else { values.Add(param[i], param[i]); } } } internal static bool GetBooleanValue(NameValueCollection config, string valueName, bool defaultValue) { string sValue = config[valueName]; if (sValue == null) { return defaultValue; } bool result; if (bool.TryParse(sValue, out result)) { return result; } else { throw new ProviderException(SR.GetString(SR.Value_must_be_boolean, valueName)); } } internal static int GetIntValue(NameValueCollection config, string valueName, int defaultValue, bool zeroAllowed, int maxValueAllowed) { string sValue = config[valueName]; if (sValue == null) { return defaultValue; } int iValue; if (!Int32.TryParse(sValue, out iValue)) { if (zeroAllowed) { throw new ProviderException(SR.GetString(SR.Value_must_be_non_negative_integer, valueName)); } throw new ProviderException(SR.GetString(SR.Value_must_be_positive_integer, valueName)); } if (zeroAllowed && iValue < 0) { throw new ProviderException(SR.GetString(SR.Value_must_be_non_negative_integer, valueName)); } if (!zeroAllowed && iValue <= 0) { throw new ProviderException(SR.GetString(SR.Value_must_be_positive_integer, valueName)); } if (maxValueAllowed > 0 && iValue > maxValueAllowed) { throw new ProviderException(SR.GetString(SR.Value_too_big, valueName, maxValueAllowed.ToString(CultureInfo.InvariantCulture))); } return iValue; } #if !FEATURE_PAL // internal static void CheckSchemaVersion(ProviderBase provider, SqlConnection connection, string[] features, string version, ref int schemaVersionCheck) { if (connection == null) { throw new ArgumentNullException("connection"); } if (features == null) { throw new ArgumentNullException("features"); } if (version == null) { throw new ArgumentNullException("version"); } if (schemaVersionCheck == -1) { throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version)); } else if (schemaVersionCheck == 0) { lock (provider) { if (schemaVersionCheck == -1) { throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version)); } else if (schemaVersionCheck == 0) { int iStatus = 0; SqlCommand cmd = null; SqlParameter p = null; foreach (string feature in features) { cmd = new SqlCommand("dbo.aspnet_CheckSchemaVersion", connection); cmd.CommandType = CommandType.StoredProcedure; p = new SqlParameter("@Feature", feature); cmd.Parameters.Add(p); p = new SqlParameter("@CompatibleSchemaVersion", version); cmd.Parameters.Add(p); p = new SqlParameter("@ReturnValue", SqlDbType.Int); p.Direction = ParameterDirection.ReturnValue; cmd.Parameters.Add(p); cmd.ExecuteNonQuery(); iStatus = ((p.Value != null) ? ((int)p.Value) : -1); if (iStatus != 0) { schemaVersionCheck = -1; throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version)); } } schemaVersionCheck = 1; } } } } #endif // !FEATURE_PAL } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007. // Copyright (c) Microsoft Corporation. All rights reserved. //------------------------------------------------------------------------------ //// Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- /* * SecurityUtil class * * Copyright (c) 1999 Microsoft Corporation */ namespace System.Web.Util { using System.Globalization; using System.Web.Hosting; using System.Collections; using System.Collections.Specialized; using System.Data; using System.Data.SqlClient; using System.Data.SqlTypes; using System.Configuration.Provider; using System.Configuration; using System.Text.RegularExpressions; internal static class SecUtility { internal static string GetDefaultAppName() { try { string appName = HostingEnvironment.ApplicationVirtualPath; if (String.IsNullOrEmpty(appName)) { #if !FEATURE_PAL // ROTORTODO: enable Process.MainModule or support an alternative // naming scheme for (HttpRuntime.AppDomainAppVirtualPath == null) appName = System.Diagnostics.Process.GetCurrentProcess(). MainModule.ModuleName; int indexOfDot = appName.IndexOf('.'); if (indexOfDot != -1) { appName = appName.Remove(indexOfDot); } #endif // !FEATURE_PAL } if (String.IsNullOrEmpty(appName)) { return "/"; } else { return appName; } } catch { return "/"; } } // We don't trim the param before checking with password parameters internal static bool ValidatePasswordParameter(ref string param, int maxSize) { if (param == null) { return false; } if (param.Length < 1) { return false; } if (maxSize > 0 && (param.Length > maxSize) ) { return false; } return true; } internal static bool ValidateParameter(ref string param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize) { if (param == null) { return !checkForNull; } param = param.Trim(); if ((checkIfEmpty && param.Length < 1) || (maxSize > 0 && param.Length > maxSize) || (checkForCommas && param.Contains(","))) { return false; } return true; } // We don't trim the param before checking with password parameters internal static void CheckPasswordParameter(ref string param, int maxSize, string paramName) { if (param == null) { throw new ArgumentNullException(paramName); } if (param.Length < 1) { throw new ArgumentException(SR.GetString(SR.Parameter_can_not_be_empty, paramName), paramName); } if (maxSize > 0 && param.Length > maxSize) { throw new ArgumentException(SR.GetString(SR.Parameter_too_long, paramName, maxSize.ToString(CultureInfo.InvariantCulture)), paramName); } } internal static void CheckParameter(ref string param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize, string paramName) { if (param == null) { if (checkForNull) { throw new ArgumentNullException(paramName); } return; } param = param.Trim(); if (checkIfEmpty && param.Length < 1) { throw new ArgumentException(SR.GetString(SR.Parameter_can_not_be_empty, paramName), paramName); } if (maxSize > 0 && param.Length > maxSize) { throw new ArgumentException(SR.GetString(SR.Parameter_too_long, paramName, maxSize.ToString(CultureInfo.InvariantCulture)), paramName); } if (checkForCommas && param.Contains(",")) { throw new ArgumentException(SR.GetString(SR.Parameter_can_not_contain_comma, paramName), paramName); } } internal static void CheckArrayParameter(ref string[] param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize, string paramName) { if (param == null) { throw new ArgumentNullException(paramName); } if (param.Length < 1) { throw new ArgumentException(SR.GetString(SR.Parameter_array_empty, paramName), paramName); } Hashtable values = new Hashtable(param.Length); for (int i = param.Length - 1; i >= 0; i--) { SecUtility.CheckParameter(ref param[i], checkForNull, checkIfEmpty, checkForCommas, maxSize, paramName + "[ " + i.ToString(CultureInfo.InvariantCulture) + " ]"); if (values.Contains(param[i])) { throw new ArgumentException(SR.GetString(SR.Parameter_duplicate_array_element, paramName), paramName); } else { values.Add(param[i], param[i]); } } } internal static bool GetBooleanValue(NameValueCollection config, string valueName, bool defaultValue) { string sValue = config[valueName]; if (sValue == null) { return defaultValue; } bool result; if (bool.TryParse(sValue, out result)) { return result; } else { throw new ProviderException(SR.GetString(SR.Value_must_be_boolean, valueName)); } } internal static int GetIntValue(NameValueCollection config, string valueName, int defaultValue, bool zeroAllowed, int maxValueAllowed) { string sValue = config[valueName]; if (sValue == null) { return defaultValue; } int iValue; if (!Int32.TryParse(sValue, out iValue)) { if (zeroAllowed) { throw new ProviderException(SR.GetString(SR.Value_must_be_non_negative_integer, valueName)); } throw new ProviderException(SR.GetString(SR.Value_must_be_positive_integer, valueName)); } if (zeroAllowed && iValue < 0) { throw new ProviderException(SR.GetString(SR.Value_must_be_non_negative_integer, valueName)); } if (!zeroAllowed && iValue <= 0) { throw new ProviderException(SR.GetString(SR.Value_must_be_positive_integer, valueName)); } if (maxValueAllowed > 0 && iValue > maxValueAllowed) { throw new ProviderException(SR.GetString(SR.Value_too_big, valueName, maxValueAllowed.ToString(CultureInfo.InvariantCulture))); } return iValue; } #if !FEATURE_PAL // internal static void CheckSchemaVersion(ProviderBase provider, SqlConnection connection, string[] features, string version, ref int schemaVersionCheck) { if (connection == null) { throw new ArgumentNullException("connection"); } if (features == null) { throw new ArgumentNullException("features"); } if (version == null) { throw new ArgumentNullException("version"); } if (schemaVersionCheck == -1) { throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version)); } else if (schemaVersionCheck == 0) { lock (provider) { if (schemaVersionCheck == -1) { throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version)); } else if (schemaVersionCheck == 0) { int iStatus = 0; SqlCommand cmd = null; SqlParameter p = null; foreach (string feature in features) { cmd = new SqlCommand("dbo.aspnet_CheckSchemaVersion", connection); cmd.CommandType = CommandType.StoredProcedure; p = new SqlParameter("@Feature", feature); cmd.Parameters.Add(p); p = new SqlParameter("@CompatibleSchemaVersion", version); cmd.Parameters.Add(p); p = new SqlParameter("@ReturnValue", SqlDbType.Int); p.Direction = ParameterDirection.ReturnValue; cmd.Parameters.Add(p); cmd.ExecuteNonQuery(); iStatus = ((p.Value != null) ? ((int)p.Value) : -1); if (iStatus != 0) { schemaVersionCheck = -1; throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version)); } } schemaVersionCheck = 1; } } } } #endif // !FEATURE_PAL } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007. // Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- NativeMethods.cs
- StateDesigner.cs
- metadatamappinghashervisitor.cs
- OuterProxyWrapper.cs
- ImageMap.cs
- SchemaType.cs
- WindowsScroll.cs
- SHA256Cng.cs
- PropertyTabAttribute.cs
- ASCIIEncoding.cs
- TreeNodeCollection.cs
- OutOfMemoryException.cs
- XmlWrappingReader.cs
- QueryFunctions.cs
- CustomValidator.cs
- TTSEngineProxy.cs
- FormViewPageEventArgs.cs
- XmlDocumentSerializer.cs
- SelectedGridItemChangedEvent.cs
- ReadOnlyHierarchicalDataSourceView.cs
- Propagator.JoinPropagator.JoinPredicateVisitor.cs
- SerialPort.cs
- DefaultEventAttribute.cs
- MetadataFile.cs
- SaveWorkflowCommand.cs
- CursorConverter.cs
- Set.cs
- WinEventQueueItem.cs
- PersonalizationStateInfoCollection.cs
- ConfigXmlDocument.cs
- ArrayMergeHelper.cs
- ButtonAutomationPeer.cs
- SettingsAttributes.cs
- Lease.cs
- NativeBuffer.cs
- UriTemplateClientFormatter.cs
- ProcessThreadCollection.cs
- FixedBufferAttribute.cs
- DataKeyArray.cs
- DynamicUpdateCommand.cs
- Icon.cs
- Span.cs
- BufferedStream.cs
- Parser.cs
- ToolStripItemEventArgs.cs
- XmlSchemaParticle.cs
- RuntimeHandles.cs
- LinqDataSourceDeleteEventArgs.cs
- CacheSection.cs
- SpotLight.cs
- IdentityHolder.cs
- AlternationConverter.cs
- Evaluator.cs
- CompilerWrapper.cs
- DefaultSerializationProviderAttribute.cs
- ColorTransform.cs
- EntitySetBaseCollection.cs
- StreamUpdate.cs
- cache.cs
- FileChangesMonitor.cs
- storepermission.cs
- ImportContext.cs
- ControlBuilderAttribute.cs
- XslAst.cs
- Int64Converter.cs
- LambdaCompiler.Logical.cs
- EventProperty.cs
- ClientSession.cs
- SecurityManager.cs
- PanelContainerDesigner.cs
- DataGridDesigner.cs
- UnsafeNativeMethodsMilCoreApi.cs
- TransportConfigurationTypeElement.cs
- RefType.cs
- SqlCachedBuffer.cs
- ExponentialEase.cs
- ViewPort3D.cs
- HttpCapabilitiesSectionHandler.cs
- ChannelDemuxer.cs
- WinFormsSecurity.cs
- Geometry.cs
- AccessViolationException.cs
- GregorianCalendar.cs
- WebPartDescriptionCollection.cs
- SecuritySessionClientSettings.cs
- PathFigure.cs
- SharedPersonalizationStateInfo.cs
- IgnoreDeviceFilterElementCollection.cs
- CellIdBoolean.cs
- Timer.cs
- SetterBaseCollection.cs
- InternalDuplexChannelFactory.cs
- EntitySetBase.cs
- PointAnimationBase.cs
- RouteItem.cs
- LinqDataSource.cs
- ClientScriptItem.cs
- ComponentSerializationService.cs
- TouchPoint.cs
- ConfigErrorGlyph.cs