Code:
/ FXUpdate3074 / FXUpdate3074 / 1.1 / untmp / whidbey / QFE / ndp / fx / src / xsp / System / Web / Security / CookieProtection.cs / 1 / CookieProtection.cs
//------------------------------------------------------------------------------ //// Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- namespace System.Web.Security { using System.Security.Cryptography; using System.Web.Configuration; using System.Web.Management; public enum CookieProtection { None, Validation, Encryption, All } internal class CookieProtectionHelper { internal static string Encode (CookieProtection cookieProtection, byte [] buf, int count) { if (cookieProtection == CookieProtection.All || cookieProtection == CookieProtection.Validation) { byte[] bMac = MachineKeySection.HashData (buf, null, 0, count); if (bMac == null || bMac.Length != 20) return null; if (buf.Length >= count + 20) { Buffer.BlockCopy (bMac, 0, buf, count, 20); } else { byte[] bTemp = buf; buf = new byte[count + 20]; Buffer.BlockCopy (bTemp, 0, buf, 0, count); Buffer.BlockCopy (bMac, 0, buf, count, 20); } count += 20; } if (cookieProtection == CookieProtection.All || cookieProtection == CookieProtection.Encryption) { buf = MachineKeySection.EncryptOrDecryptData (true, buf, null, 0, count); count = buf.Length; } if (count < buf.Length) { byte[] bTemp = buf; buf = new byte[count]; Buffer.BlockCopy (bTemp, 0, buf, 0, count); } return HttpServerUtility.UrlTokenEncode(buf); } internal static byte[] Decode (CookieProtection cookieProtection, string data) { byte [] buf = HttpServerUtility.UrlTokenDecode(data); if (buf == null || cookieProtection == CookieProtection.None) return buf; if (cookieProtection == CookieProtection.All || cookieProtection == CookieProtection.Encryption) { buf = MachineKeySection.EncryptOrDecryptData (false, buf, null, 0, buf.Length); if (buf == null) return null; } if (cookieProtection == CookieProtection.All || cookieProtection == CookieProtection.Validation) { ////////////////////////////////////////////////////////////////////// // Step 2: Get the MAC: Last 20 bytes if (buf.Length <= 20) return null; byte[] buf2 = new byte[buf.Length - 20]; Buffer.BlockCopy (buf, 0, buf2, 0, buf2.Length); byte[] bMac = MachineKeySection.HashData (buf2, null, 0, buf2.Length); ////////////////////////////////////////////////////////////////////// // Step 3: Make sure the MAC is correct if (bMac == null || bMac.Length != 20) return null; for (int iter = 0; iter < 20; iter++) if (bMac[iter] != buf[buf2.Length + iter]) return null; buf = buf2; } return buf; } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007. // Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- TraceHandlerErrorFormatter.cs
- ServiceChannelManager.cs
- RelationshipNavigation.cs
- DetailsViewInsertedEventArgs.cs
- WebBrowserUriTypeConverter.cs
- CommaDelimitedStringAttributeCollectionConverter.cs
- NodeInfo.cs
- XmlIncludeAttribute.cs
- FormsAuthenticationUserCollection.cs
- TraceXPathNavigator.cs
- TransportBindingElement.cs
- ResourceAttributes.cs
- TypeHelpers.cs
- DataListItemEventArgs.cs
- SignedXml.cs
- RemotingConfigParser.cs
- MatrixAnimationUsingPath.cs
- TakeOrSkipQueryOperator.cs
- _TimerThread.cs
- JsonSerializer.cs
- clipboard.cs
- SpoolingTask.cs
- WmlFormAdapter.cs
- RegexBoyerMoore.cs
- XmlAttributeCollection.cs
- ImageSourceConverter.cs
- HttpCacheVaryByContentEncodings.cs
- CollectionEditor.cs
- Span.cs
- DataContractSerializer.cs
- RegionIterator.cs
- EdmTypeAttribute.cs
- InitializerFacet.cs
- ColorAnimationBase.cs
- AccessDataSourceView.cs
- ObjectPropertyMapping.cs
- FullTrustAssembly.cs
- TraceSection.cs
- ProxyAttribute.cs
- TemplateEditingFrame.cs
- InvalidComObjectException.cs
- TreeIterators.cs
- StreamSecurityUpgradeInitiatorBase.cs
- GlyphInfoList.cs
- TypeInitializationException.cs
- ListSortDescriptionCollection.cs
- EnterpriseServicesHelper.cs
- CompositionCommandSet.cs
- XmlSignificantWhitespace.cs
- SoapSchemaImporter.cs
- WorkItem.cs
- QuaternionAnimation.cs
- ClientEventManager.cs
- CodeDelegateInvokeExpression.cs
- ServiceMetadataContractBehavior.cs
- BitmapEffectRenderDataResource.cs
- ProfileProvider.cs
- XmlWellformedWriterHelpers.cs
- base64Transforms.cs
- ElementUtil.cs
- DPCustomTypeDescriptor.cs
- Decimal.cs
- xmlsaver.cs
- XmlUnspecifiedAttribute.cs
- DataService.cs
- ChildrenQuery.cs
- TypeViewSchema.cs
- XmlObjectSerializerReadContextComplexJson.cs
- BindingWorker.cs
- TypeValidationEventArgs.cs
- ServicePointManager.cs
- WebBrowserProgressChangedEventHandler.cs
- ObjectDataSourceFilteringEventArgs.cs
- JpegBitmapEncoder.cs
- FunctionMappingTranslator.cs
- RijndaelManagedTransform.cs
- SoapFormatterSinks.cs
- SecurityDescriptor.cs
- clipboard.cs
- OperationContextScope.cs
- DataGridViewComboBoxEditingControl.cs
- BamlLocalizableResource.cs
- JoinGraph.cs
- ConstraintConverter.cs
- DocumentsTrace.cs
- TypeDelegator.cs
- Helpers.cs
- VariableReference.cs
- StoreItemCollection.Loader.cs
- KeyFrames.cs
- DropShadowBitmapEffect.cs
- SecurityBindingElementImporter.cs
- HttpsTransportBindingElement.cs
- AttributeCollection.cs
- SmiContext.cs
- NavigationFailedEventArgs.cs
- Knowncolors.cs
- InstanceCompleteException.cs
- TemplateBuilder.cs
- MultipleViewPatternIdentifiers.cs