Code:
/ 4.0 / 4.0 / untmp / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / cdf / src / WCF / IdentityModel / System / IdentityModel / Tokens / RsaSecurityToken.cs / 1305376 / RsaSecurityToken.cs
//------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.IdentityModel.Tokens
{
using System.Collections.Generic;
using System.Collections.ObjectModel;
using System.ComponentModel;
using System.Diagnostics;
using System.Runtime.InteropServices;
using System.Security.Cryptography;
using System.Runtime.CompilerServices;
public class RsaSecurityToken : SecurityToken
{
string id;
DateTime effectiveTime;
ReadOnlyCollection rsaKey;
RSA rsa;
CspKeyContainerInfo keyContainerInfo;
GCHandle rsaHandle;
public RsaSecurityToken(RSA rsa)
: this(rsa, SecurityUniqueId.Create().Value)
{
}
public RsaSecurityToken(RSA rsa, string id)
{
if (rsa == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa");
if (id == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("id");
this.rsa = rsa;
this.id = id;
this.effectiveTime = DateTime.UtcNow;
GC.SuppressFinalize(this);
}
// This is defense-in-depth.
// Rsa finalizer can throw and bring down the process if in finalizer context.
// This internal ctor is used by SM's IssuedSecurityTokenProvider.
// If ownsRsa=true, this class will take ownership of the Rsa object and provides
// a reliable finalizing/disposing of Rsa object. The GCHandle is used to ensure
// order in finalizer sequence.
RsaSecurityToken(RSACryptoServiceProvider rsa, bool ownsRsa)
{
if (rsa == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("rsa");
this.rsa = rsa;
this.id = SecurityUniqueId.Create().Value;
this.effectiveTime = DateTime.UtcNow;
if (ownsRsa)
{
// This also key pair generation.
// This must be called before PersistKeyInCsp to avoid a handle to go out of scope.
this.keyContainerInfo = rsa.CspKeyContainerInfo;
// We will handle key file deletion
rsa.PersistKeyInCsp = true;
this.rsaHandle = GCHandle.Alloc(rsa);
}
else
{
GC.SuppressFinalize(this);
}
}
~RsaSecurityToken()
{
Dispose(false);
}
internal void Dispose()
{
Dispose(true);
GC.SuppressFinalize(this);
}
void Dispose(bool disposing)
{
if (this.rsaHandle.IsAllocated)
{
try
{
// keyContainerInfo is a wrapper over a member of Rsa.
// this is to be safe that rsa.Dispose won't clean up that member.
string keyContainerName = this.keyContainerInfo.KeyContainerName;
string providerName = this.keyContainerInfo.ProviderName;
uint providerType = (uint)this.keyContainerInfo.ProviderType;
((IDisposable)this.rsa).Dispose();
// Best effort delete key file in user context
SafeProvHandle provHandle;
if (!NativeMethods.CryptAcquireContextW(out provHandle,
keyContainerName,
providerName,
providerType,
NativeMethods.CRYPT_DELETEKEYSET))
{
int error = Marshal.GetLastWin32Error();
try
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(
new InvalidOperationException(SR.GetString(SR.FailedToDeleteKeyContainerFile), new Win32Exception(error)));
}
catch (InvalidOperationException ex)
{
if (DiagnosticUtility.ShouldTraceWarning)
{
DiagnosticUtility.ExceptionUtility.TraceHandledException(ex, TraceEventType.Warning);
}
}
}
System.ServiceModel.Diagnostics.Utility.CloseInvalidOutSafeHandle(provHandle);
}
finally
{
this.rsaHandle.Free();
}
}
}
internal static RsaSecurityToken CreateSafeRsaSecurityToken(int keySize)
{
RsaSecurityToken token;
RSACryptoServiceProvider rsa = null;
RuntimeHelpers.PrepareConstrainedRegions();
try
{
try
{
}
finally
{
rsa = new RSACryptoServiceProvider(keySize);
}
token = new RsaSecurityToken(rsa, true);
rsa = null;
}
finally
{
if (rsa != null)
{
((IDisposable)rsa).Dispose();
}
}
return token;
}
public override string Id
{
get { return this.id; }
}
public override DateTime ValidFrom
{
get { return this.effectiveTime; }
}
public override DateTime ValidTo
{
// Never expire
get { return SecurityUtils.MaxUtcDateTime; }
}
public override ReadOnlyCollection SecurityKeys
{
get
{
if (this.rsaKey == null)
{
List keys = new List(1);
keys.Add(new RsaSecurityKey(this.rsa));
this.rsaKey = keys.AsReadOnly();
}
return this.rsaKey;
}
}
public RSA Rsa
{
get { return this.rsa; }
}
public override bool CanCreateKeyIdentifierClause()
{
return typeof(T) == typeof(RsaKeyIdentifierClause);
}
public override T CreateKeyIdentifierClause()
{
if (typeof(T) == typeof(RsaKeyIdentifierClause))
return (T)((object)new RsaKeyIdentifierClause(this.rsa));
throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(new NotSupportedException(
SR.GetString(SR.TokenDoesNotSupportKeyIdentifierClauseCreation, GetType().Name, typeof(T).Name)));
}
public override bool MatchesKeyIdentifierClause(SecurityKeyIdentifierClause keyIdentifierClause)
{
RsaKeyIdentifierClause rsaKeyIdentifierClause = keyIdentifierClause as RsaKeyIdentifierClause;
if (rsaKeyIdentifierClause != null)
return rsaKeyIdentifierClause.Matches(this.rsa);
return false;
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- SerializationInfo.cs
- GeometryCollection.cs
- ArgumentsParser.cs
- XPathChildIterator.cs
- TransportSecurityProtocol.cs
- CharStorage.cs
- RadialGradientBrush.cs
- WindowsListViewItem.cs
- SafeProcessHandle.cs
- EntityCommandCompilationException.cs
- InkCanvas.cs
- StringHandle.cs
- StreamWriter.cs
- CaseInsensitiveHashCodeProvider.cs
- CSharpCodeProvider.cs
- CommandValueSerializer.cs
- MSAANativeProvider.cs
- PrincipalPermission.cs
- DataContext.cs
- WebResourceUtil.cs
- ResourcePermissionBase.cs
- ItemType.cs
- ZoneIdentityPermission.cs
- UserInitiatedNavigationPermission.cs
- EntityReference.cs
- LayoutInformation.cs
- AsyncPostBackTrigger.cs
- DiscardableAttribute.cs
- _ServiceNameStore.cs
- SystemException.cs
- BuildManager.cs
- ScriptResourceHandler.cs
- _SafeNetHandles.cs
- COM2ColorConverter.cs
- LoginUtil.cs
- TableRowGroup.cs
- BaseParagraph.cs
- CapabilitiesSection.cs
- InvalidOperationException.cs
- EntityDescriptor.cs
- TargetInvocationException.cs
- Point3D.cs
- StaticTextPointer.cs
- CreateUserWizardStep.cs
- CompiledRegexRunnerFactory.cs
- ZipIOExtraField.cs
- BCLDebug.cs
- PasswordRecovery.cs
- PageVisual.cs
- TrackingParameters.cs
- SoapAttributes.cs
- validationstate.cs
- ElementAtQueryOperator.cs
- DbDataAdapter.cs
- XmlSchemaParticle.cs
- DockEditor.cs
- RenderData.cs
- WebBrowserProgressChangedEventHandler.cs
- FixUp.cs
- ActiveXSite.cs
- PageContentAsyncResult.cs
- TrustSection.cs
- TaskHelper.cs
- ProfileSettingsCollection.cs
- CaseInsensitiveOrdinalStringComparer.cs
- InputMethodStateChangeEventArgs.cs
- SiteMapDataSource.cs
- HandleValueEditor.cs
- DisplayToken.cs
- SeekableReadStream.cs
- HostedTcpTransportManager.cs
- DbQueryCommandTree.cs
- SystemParameters.cs
- DataIdProcessor.cs
- ProcessModelSection.cs
- _SecureChannel.cs
- UIElement3D.cs
- FrameworkPropertyMetadata.cs
- TemplateBindingExpressionConverter.cs
- MetadataArtifactLoaderXmlReaderWrapper.cs
- XmlTextWriter.cs
- WinFormsSecurity.cs
- CheckBoxRenderer.cs
- Aes.cs
- UnsafeNativeMethods.cs
- TableLayoutStyleCollection.cs
- RegistrationServices.cs
- Authorization.cs
- sqlstateclientmanager.cs
- WebPartDesigner.cs
- Int32Animation.cs
- Contracts.cs
- Label.cs
- HashRepartitionEnumerator.cs
- SplitterEvent.cs
- XmlElementList.cs
- Rule.cs
- PKCS1MaskGenerationMethod.cs
- CardSpaceShim.cs
- DocumentViewerBaseAutomationPeer.cs