Code:
/ 4.0 / 4.0 / untmp / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / fx / src / xsp / System / Web / Util / RequestValidator.cs / 1305376 / RequestValidator.cs
//------------------------------------------------------------------------------
//
// Copyright (c) Microsoft Corporation. All rights reserved.
//
//-----------------------------------------------------------------------------
/*
* Base class providing extensibility hooks for custom request validation
*
* Copyright (c) 2009 Microsoft Corporation
*/
namespace System.Web.Util {
using System;
using System.Diagnostics.CodeAnalysis;
using System.Threading;
using System.Web;
using System.Web.Configuration;
public class RequestValidator {
private static RequestValidator _customValidator;
private static readonly Lazy _customValidatorResolver =
new Lazy(GetCustomValidatorFromConfig);
public static RequestValidator Current {
get {
if (_customValidator == null) {
_customValidator = _customValidatorResolver.Value;
}
return _customValidator;
}
set {
if (value == null) {
throw new ArgumentNullException("value");
}
_customValidator = value;
}
}
private static RequestValidator GetCustomValidatorFromConfig() {
// App since this is static per AppDomain
RuntimeConfig config = RuntimeConfig.GetAppConfig();
HttpRuntimeSection runtimeSection = config.HttpRuntime;
string validatorTypeName = runtimeSection.RequestValidationType;
// validate the type
Type validatorType = ConfigUtil.GetType(validatorTypeName, "requestValidationType", runtimeSection);
ConfigUtil.CheckBaseType(typeof(RequestValidator) /* expectedBaseType */, validatorType, "requestValidationType", runtimeSection);
// instantiate
RequestValidator validator = (RequestValidator)HttpRuntime.CreatePublicInstance(validatorType);
return validator;
}
internal static void InitializeOnFirstRequest() {
// instantiate the validator if it hasn't already been created
RequestValidator validator = _customValidatorResolver.Value;
}
private static bool IsAtoZ(char c) {
return (c >= 'a' && c <= 'z') || (c >= 'A' && c <= 'Z');
}
[SuppressMessage("Microsoft.Design", "CA1021:AvoidOutParameters",
Justification = "This is an appropriate way to return multiple pieces of data.")]
protected internal virtual bool IsValidRequestString(HttpContext context, string value, RequestValidationSource requestValidationSource, string collectionKey, out int validationFailureIndex) {
if (requestValidationSource == RequestValidationSource.Headers) {
validationFailureIndex = 0;
return true; // Ignore Headers collection in the default implementation
}
return !CrossSiteScriptingValidation.IsDangerousString(value, out validationFailureIndex);
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- SqlDataSourceSelectingEventArgs.cs
- CodeAttributeArgumentCollection.cs
- ExpandCollapsePattern.cs
- UniqueConstraint.cs
- ConsumerConnectionPoint.cs
- ListView.cs
- MultiBindingExpression.cs
- TabItemAutomationPeer.cs
- ExceptionUtil.cs
- PageAsyncTask.cs
- ConfigurationSection.cs
- ApplicationDirectoryMembershipCondition.cs
- Triplet.cs
- RotateTransform3D.cs
- SchemaInfo.cs
- EntityProviderServices.cs
- TemplateComponentConnector.cs
- AccessibleObject.cs
- XslException.cs
- TokenBasedSet.cs
- SafeCoTaskMem.cs
- SystemColorTracker.cs
- OleDbRowUpdatedEvent.cs
- ResolveMatchesMessage11.cs
- PhysicalFontFamily.cs
- ThousandthOfEmRealDoubles.cs
- LogWriteRestartAreaAsyncResult.cs
- InfoCardHelper.cs
- InkCollectionBehavior.cs
- DataBoundControlAdapter.cs
- ActivityWithResultWrapper.cs
- ModelTreeEnumerator.cs
- Vector3DKeyFrameCollection.cs
- ParagraphVisual.cs
- EntityDataSourceValidationException.cs
- PeerResolverBindingElement.cs
- UdpDiscoveryEndpointProvider.cs
- TypeElementCollection.cs
- DocumentViewerBase.cs
- Journal.cs
- CollectionType.cs
- XPathNode.cs
- ViewValidator.cs
- SendKeys.cs
- NameValueSectionHandler.cs
- Pen.cs
- DataGridViewAutoSizeColumnsModeEventArgs.cs
- PersonalizationStateQuery.cs
- ColumnClickEvent.cs
- DataAdapter.cs
- ArgumentValidation.cs
- BigInt.cs
- Utils.cs
- wmiprovider.cs
- AnnotationResourceChangedEventArgs.cs
- ScrollItemPattern.cs
- _DisconnectOverlappedAsyncResult.cs
- NetCodeGroup.cs
- TextBox.cs
- XhtmlBasicValidationSummaryAdapter.cs
- SafeNativeMethodsCLR.cs
- LocalizationParserHooks.cs
- ParameterCollection.cs
- BinaryNode.cs
- HitTestResult.cs
- CompoundFileIOPermission.cs
- AccessKeyManager.cs
- CodeIdentifier.cs
- OverrideMode.cs
- UserThread.cs
- SafeReversePInvokeHandle.cs
- WebPartsPersonalization.cs
- CodeLinePragma.cs
- XomlCompilerHelpers.cs
- PeerNameResolver.cs
- InputLanguageCollection.cs
- ManualResetEventSlim.cs
- DataKeyArray.cs
- ResourceContainer.cs
- ToolBarButton.cs
- XmlBinaryWriterSession.cs
- DataRowComparer.cs
- RuleValidation.cs
- CompModSwitches.cs
- DrawTreeNodeEventArgs.cs
- MetadataWorkspace.cs
- RegexNode.cs
- NetMsmqBinding.cs
- DesignerForm.cs
- UpdatePanelTriggerCollection.cs
- KeyEventArgs.cs
- DataGridViewAdvancedBorderStyle.cs
- ToolStripSystemRenderer.cs
- XmlArrayAttribute.cs
- ObjectDataSourceEventArgs.cs
- iisPickupDirectory.cs
- PropertyStore.cs
- VirtualizingPanel.cs
- ScriptRegistrationManager.cs
- BinaryNode.cs