Code:
/ 4.0 / 4.0 / untmp / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / fx / src / xsp / System / Web / Util / RequestValidator.cs / 1305376 / RequestValidator.cs
//------------------------------------------------------------------------------
//
// Copyright (c) Microsoft Corporation. All rights reserved.
//
//-----------------------------------------------------------------------------
/*
* Base class providing extensibility hooks for custom request validation
*
* Copyright (c) 2009 Microsoft Corporation
*/
namespace System.Web.Util {
using System;
using System.Diagnostics.CodeAnalysis;
using System.Threading;
using System.Web;
using System.Web.Configuration;
public class RequestValidator {
private static RequestValidator _customValidator;
private static readonly Lazy _customValidatorResolver =
new Lazy(GetCustomValidatorFromConfig);
public static RequestValidator Current {
get {
if (_customValidator == null) {
_customValidator = _customValidatorResolver.Value;
}
return _customValidator;
}
set {
if (value == null) {
throw new ArgumentNullException("value");
}
_customValidator = value;
}
}
private static RequestValidator GetCustomValidatorFromConfig() {
// App since this is static per AppDomain
RuntimeConfig config = RuntimeConfig.GetAppConfig();
HttpRuntimeSection runtimeSection = config.HttpRuntime;
string validatorTypeName = runtimeSection.RequestValidationType;
// validate the type
Type validatorType = ConfigUtil.GetType(validatorTypeName, "requestValidationType", runtimeSection);
ConfigUtil.CheckBaseType(typeof(RequestValidator) /* expectedBaseType */, validatorType, "requestValidationType", runtimeSection);
// instantiate
RequestValidator validator = (RequestValidator)HttpRuntime.CreatePublicInstance(validatorType);
return validator;
}
internal static void InitializeOnFirstRequest() {
// instantiate the validator if it hasn't already been created
RequestValidator validator = _customValidatorResolver.Value;
}
private static bool IsAtoZ(char c) {
return (c >= 'a' && c <= 'z') || (c >= 'A' && c <= 'Z');
}
[SuppressMessage("Microsoft.Design", "CA1021:AvoidOutParameters",
Justification = "This is an appropriate way to return multiple pieces of data.")]
protected internal virtual bool IsValidRequestString(HttpContext context, string value, RequestValidationSource requestValidationSource, string collectionKey, out int validationFailureIndex) {
if (requestValidationSource == RequestValidationSource.Headers) {
validationFailureIndex = 0;
return true; // Ignore Headers collection in the default implementation
}
return !CrossSiteScriptingValidation.IsDangerousString(value, out validationFailureIndex);
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- SvcMapFile.cs
- Filter.cs
- CubicEase.cs
- ObjectStateManager.cs
- CqlIdentifiers.cs
- InheritanceAttribute.cs
- RankException.cs
- PointAnimationClockResource.cs
- Material.cs
- PropertyEmitterBase.cs
- Error.cs
- Helper.cs
- WebBaseEventKeyComparer.cs
- TrackingQuery.cs
- ArraySet.cs
- InternalMappingException.cs
- sortedlist.cs
- Currency.cs
- ChangePassword.cs
- TemplateParser.cs
- ResourcePermissionBaseEntry.cs
- CodeDomComponentSerializationService.cs
- DirectoryObjectSecurity.cs
- PasswordTextNavigator.cs
- QilName.cs
- ListControl.cs
- IdentityValidationException.cs
- Propagator.cs
- TextElement.cs
- Error.cs
- AttributeProviderAttribute.cs
- ResourceContainer.cs
- WindowsGraphicsWrapper.cs
- EntityKey.cs
- WFItemsToSpacerVisibility.cs
- diagnosticsswitches.cs
- TagPrefixInfo.cs
- AstTree.cs
- SqlAliaser.cs
- ListBindingHelper.cs
- _SpnDictionary.cs
- WebServiceEnumData.cs
- XmlSchemaSequence.cs
- ValueHandle.cs
- PixelShader.cs
- XPathParser.cs
- DataGridColumnCollection.cs
- WebHttpElement.cs
- AppSettingsExpressionEditor.cs
- FunctionMappingTranslator.cs
- OpCopier.cs
- TableDetailsCollection.cs
- DataGridTextBoxColumn.cs
- SetterBaseCollection.cs
- CompilerHelpers.cs
- ClientUtils.cs
- EditorPartCollection.cs
- EdgeProfileValidation.cs
- BaseDataBoundControl.cs
- FontNamesConverter.cs
- MeshGeometry3D.cs
- FindCriteriaCD1.cs
- CheckedListBox.cs
- Literal.cs
- UriWriter.cs
- TableLayoutPanel.cs
- DirectoryNotFoundException.cs
- ForceCopyBuildProvider.cs
- DataControlField.cs
- AnonymousIdentificationModule.cs
- CachedBitmap.cs
- SQLInt64.cs
- InstallerTypeAttribute.cs
- AppSettingsExpressionBuilder.cs
- TimeSpanOrInfiniteValidator.cs
- QueryRewriter.cs
- SafeSystemMetrics.cs
- CanExecuteRoutedEventArgs.cs
- MsmqOutputMessage.cs
- EntityProxyFactory.cs
- MessageOperationFormatter.cs
- SynchronousReceiveElement.cs
- CryptoConfig.cs
- CancellationToken.cs
- SystemIcons.cs
- ColumnResizeUndoUnit.cs
- QilValidationVisitor.cs
- ArgumentNullException.cs
- WebServiceTypeData.cs
- SocketElement.cs
- SmtpReplyReader.cs
- HttpApplication.cs
- WebResourceUtil.cs
- ResourceProperty.cs
- AuthenticationConfig.cs
- PaginationProgressEventArgs.cs
- GridViewColumnCollection.cs
- OptionUsage.cs
- OracleConnectionString.cs
- WinEventTracker.cs