Code:
/ Dotnetfx_Vista_SP2 / Dotnetfx_Vista_SP2 / 8.0.50727.4016 / DEVDIV / depot / DevDiv / releases / whidbey / NetFxQFE / ndp / fx / src / xsp / System / Web / Security / WindowsAuthenticationModule.cs / 1 / WindowsAuthenticationModule.cs
//------------------------------------------------------------------------------ //// Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- /* * WindowsAuthenticationModule class * * Copyright (c) 1999 Microsoft Corporation */ namespace System.Web.Security { using System.Web; using System.Web.Configuration; using System.Security.Principal; using System.Security.Permissions; using System.Globalization; using System.Web.Management; using System.Web.Util; using System.Web.Hosting; ////// [AspNetHostingPermission(SecurityAction.LinkDemand, Level=AspNetHostingPermissionLevel.Minimal)] public sealed class WindowsAuthenticationModule : IHttpModule { private WindowsAuthenticationEventHandler _eventHandler; private static bool _fAuthChecked; private static bool _fAuthRequired; private static WindowsIdentity _anonymousIdentity; private static WindowsPrincipal _anonymousPrincipal; ////// Allows ASP.NET applications to use Windows/IIS authentication. /// ////// [SecurityPermission(SecurityAction.Demand, Unrestricted=true)] public WindowsAuthenticationModule() { } ////// Initializes a new instance of the ////// class. /// /// This is a global.asax event that must be /// named WindowsAuthenticate_OnAuthenticate event. It's used primarily to attach a /// custom IPrincipal object to the context. /// public event WindowsAuthenticationEventHandler Authenticate { add { _eventHandler += value; } remove { _eventHandler -= value; } } ////// public void Dispose() { } ///[To be supplied.] ////// public void Init(HttpApplication app) { app.AuthenticateRequest += new EventHandler(this.OnEnter); } //////////////////////////////////////////////////////////// // OnAuthenticate: Custom Authentication modules can override // this method to create a custom IPrincipal object from // a WindowsIdentity ///[To be supplied.] ////// Calls the /// WindowsAuthentication_OnAuthenticate handler if one exists. /// void OnAuthenticate(WindowsAuthenticationEventArgs e) { //////////////////////////////////////////////////////////// // If there are event handlers, invoke the handlers if (_eventHandler != null) _eventHandler(this, e); if (e.Context.User == null) { if (e.User != null) e.Context.User = e.User; else if (e.Identity == _anonymousIdentity) e.Context.SetPrincipalNoDemand(_anonymousPrincipal, false /*needToSetNativePrincipal*/); else e.Context.SetPrincipalNoDemand(new WindowsPrincipal(e.Identity), false /*needToSetNativePrincipal*/); } } //////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////// // Methods for internal implementation ////// /// void OnEnter(Object source, EventArgs eventArgs) { if (!IsEnabled) return; HttpApplication app = (HttpApplication)source; HttpContext context = app.Context;; WindowsIdentity identity = null; ////////////////////////////////////////////////////////////////// // Step 2: Create a Windows Identity from the credentials from IIS if (HttpRuntime.UseIntegratedPipeline) { // The native WindowsAuthenticationModule sets the user principal in IIS7WorkerRequest.SynchronizeVariables. // The managed WindowsAuthenticationModule provides backward compatibility by rasing the OnAuthenticate event. WindowsPrincipal user = context.User as WindowsPrincipal; if (user != null) { // identity will be null if this is not a WindowsIdentity identity = user.Identity as WindowsIdentity; // clear Context.User for backward compatibility (it will be set in OnAuthenticate) context.SetPrincipalNoDemand(null, false /*needToSetNativePrincipal*/); } } else { String strLogonUser = context.WorkerRequest.GetServerVariable("LOGON_USER"); String strAuthType = context.WorkerRequest.GetServerVariable("AUTH_TYPE"); if (strLogonUser == null) { strLogonUser = String.Empty; } if (strAuthType == null) { strAuthType = String.Empty; } if (strLogonUser.Length == 0 && (strAuthType.Length == 0 || StringUtil.EqualsIgnoreCase(strAuthType, "basic"))) { //////////////////////////////////////////////////////// // Step 2a: Use the anonymous identity identity = _anonymousIdentity; } else { identity = new WindowsIdentity( context.WorkerRequest.GetUserToken(), strAuthType, WindowsAccountType.Normal, true); } } /////////////////////////////////////////////////////////////////////////////////// // Step 3: Call OnAuthenticate to create IPrincipal for this request. if (identity != null) { OnAuthenticate( new WindowsAuthenticationEventArgs(identity, context) ); } } internal static IPrincipal AnonymousPrincipal { get { return _anonymousPrincipal; } } internal static bool IsEnabled { get { if (!_fAuthChecked) { AuthenticationSection settings = RuntimeConfig.GetAppConfig().Authentication; settings.ValidateAuthenticationMode(); _fAuthRequired = (settings.Mode == AuthenticationMode.Windows); if (_fAuthRequired) { _anonymousIdentity = WindowsIdentity.GetAnonymous(); _anonymousPrincipal = new WindowsPrincipal(_anonymousIdentity); } _fAuthChecked = true; } return _fAuthRequired; } } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007. //------------------------------------------------------------------------------ //// Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- /* * WindowsAuthenticationModule class * * Copyright (c) 1999 Microsoft Corporation */ namespace System.Web.Security { using System.Web; using System.Web.Configuration; using System.Security.Principal; using System.Security.Permissions; using System.Globalization; using System.Web.Management; using System.Web.Util; using System.Web.Hosting; ////// [AspNetHostingPermission(SecurityAction.LinkDemand, Level=AspNetHostingPermissionLevel.Minimal)] public sealed class WindowsAuthenticationModule : IHttpModule { private WindowsAuthenticationEventHandler _eventHandler; private static bool _fAuthChecked; private static bool _fAuthRequired; private static WindowsIdentity _anonymousIdentity; private static WindowsPrincipal _anonymousPrincipal; ////// Allows ASP.NET applications to use Windows/IIS authentication. /// ////// [SecurityPermission(SecurityAction.Demand, Unrestricted=true)] public WindowsAuthenticationModule() { } ////// Initializes a new instance of the ////// class. /// /// This is a global.asax event that must be /// named WindowsAuthenticate_OnAuthenticate event. It's used primarily to attach a /// custom IPrincipal object to the context. /// public event WindowsAuthenticationEventHandler Authenticate { add { _eventHandler += value; } remove { _eventHandler -= value; } } ////// public void Dispose() { } ///[To be supplied.] ////// public void Init(HttpApplication app) { app.AuthenticateRequest += new EventHandler(this.OnEnter); } //////////////////////////////////////////////////////////// // OnAuthenticate: Custom Authentication modules can override // this method to create a custom IPrincipal object from // a WindowsIdentity ///[To be supplied.] ////// Calls the /// WindowsAuthentication_OnAuthenticate handler if one exists. /// void OnAuthenticate(WindowsAuthenticationEventArgs e) { //////////////////////////////////////////////////////////// // If there are event handlers, invoke the handlers if (_eventHandler != null) _eventHandler(this, e); if (e.Context.User == null) { if (e.User != null) e.Context.User = e.User; else if (e.Identity == _anonymousIdentity) e.Context.SetPrincipalNoDemand(_anonymousPrincipal, false /*needToSetNativePrincipal*/); else e.Context.SetPrincipalNoDemand(new WindowsPrincipal(e.Identity), false /*needToSetNativePrincipal*/); } } //////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////// // Methods for internal implementation ////// /// void OnEnter(Object source, EventArgs eventArgs) { if (!IsEnabled) return; HttpApplication app = (HttpApplication)source; HttpContext context = app.Context;; WindowsIdentity identity = null; ////////////////////////////////////////////////////////////////// // Step 2: Create a Windows Identity from the credentials from IIS if (HttpRuntime.UseIntegratedPipeline) { // The native WindowsAuthenticationModule sets the user principal in IIS7WorkerRequest.SynchronizeVariables. // The managed WindowsAuthenticationModule provides backward compatibility by rasing the OnAuthenticate event. WindowsPrincipal user = context.User as WindowsPrincipal; if (user != null) { // identity will be null if this is not a WindowsIdentity identity = user.Identity as WindowsIdentity; // clear Context.User for backward compatibility (it will be set in OnAuthenticate) context.SetPrincipalNoDemand(null, false /*needToSetNativePrincipal*/); } } else { String strLogonUser = context.WorkerRequest.GetServerVariable("LOGON_USER"); String strAuthType = context.WorkerRequest.GetServerVariable("AUTH_TYPE"); if (strLogonUser == null) { strLogonUser = String.Empty; } if (strAuthType == null) { strAuthType = String.Empty; } if (strLogonUser.Length == 0 && (strAuthType.Length == 0 || StringUtil.EqualsIgnoreCase(strAuthType, "basic"))) { //////////////////////////////////////////////////////// // Step 2a: Use the anonymous identity identity = _anonymousIdentity; } else { identity = new WindowsIdentity( context.WorkerRequest.GetUserToken(), strAuthType, WindowsAccountType.Normal, true); } } /////////////////////////////////////////////////////////////////////////////////// // Step 3: Call OnAuthenticate to create IPrincipal for this request. if (identity != null) { OnAuthenticate( new WindowsAuthenticationEventArgs(identity, context) ); } } internal static IPrincipal AnonymousPrincipal { get { return _anonymousPrincipal; } } internal static bool IsEnabled { get { if (!_fAuthChecked) { AuthenticationSection settings = RuntimeConfig.GetAppConfig().Authentication; settings.ValidateAuthenticationMode(); _fAuthRequired = (settings.Mode == AuthenticationMode.Windows); if (_fAuthRequired) { _anonymousIdentity = WindowsIdentity.GetAnonymous(); _anonymousPrincipal = new WindowsPrincipal(_anonymousIdentity); } _fAuthChecked = true; } return _fAuthRequired; } } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- VBIdentifierTrimConverter.cs
- XmlReturnReader.cs
- FontStyle.cs
- TableRowCollection.cs
- AddressHeaderCollectionElement.cs
- ApplicationInterop.cs
- ConnectorSelectionGlyph.cs
- RtfControlWordInfo.cs
- GridViewUpdatedEventArgs.cs
- MgmtResManager.cs
- MultiSelectRootGridEntry.cs
- DoubleLinkList.cs
- ObfuscationAttribute.cs
- ParserStreamGeometryContext.cs
- SignedXml.cs
- SafeNativeMemoryHandle.cs
- WebPart.cs
- AddInIpcChannel.cs
- TraceContextRecord.cs
- SafeProcessHandle.cs
- Transform3DGroup.cs
- BaseAsyncResult.cs
- SmiEventStream.cs
- SmtpException.cs
- NameNode.cs
- DataSourceCacheDurationConverter.cs
- EventHandlersStore.cs
- DataGridViewLinkCell.cs
- Point3DConverter.cs
- TransportChannelFactory.cs
- StringReader.cs
- XmlUtf8RawTextWriter.cs
- FlowDocumentPage.cs
- XPathNodeIterator.cs
- HttpRequestCacheValidator.cs
- EventLogTraceListener.cs
- ArgIterator.cs
- ImmComposition.cs
- WaitHandleCannotBeOpenedException.cs
- FormsAuthenticationEventArgs.cs
- SqlBooleanMismatchVisitor.cs
- SizeAnimation.cs
- MaskedTextBox.cs
- XhtmlStyleClass.cs
- CommandDevice.cs
- SqlTriggerAttribute.cs
- ContextBase.cs
- Transform3DGroup.cs
- COM2PictureConverter.cs
- OrderedDictionary.cs
- DynamicRendererThreadManager.cs
- StyleTypedPropertyAttribute.cs
- IntranetCredentialPolicy.cs
- HtmlTextArea.cs
- AlphabeticalEnumConverter.cs
- AppSettingsSection.cs
- KeyInterop.cs
- CompiledWorkflowDefinitionContext.cs
- WizardStepBase.cs
- CodeCatchClause.cs
- SqlDataSourceQueryEditorForm.cs
- MenuItemCollection.cs
- figurelength.cs
- HtmlEncodedRawTextWriter.cs
- figurelengthconverter.cs
- _NestedMultipleAsyncResult.cs
- SqlTriggerContext.cs
- SdlChannelSink.cs
- SerializerWriterEventHandlers.cs
- EntityTypeEmitter.cs
- FreezableDefaultValueFactory.cs
- ConstantProjectedSlot.cs
- BamlRecordReader.cs
- TextRenderer.cs
- TypeSemantics.cs
- IResourceProvider.cs
- Pool.cs
- WebServicesSection.cs
- RegexCaptureCollection.cs
- DrawingContext.cs
- SrgsRuleRef.cs
- Rect3D.cs
- SrgsRulesCollection.cs
- ActivityTypeResolver.xaml.cs
- AVElementHelper.cs
- XmlAnyElementAttribute.cs
- InternalBase.cs
- Underline.cs
- StreamSecurityUpgradeProvider.cs
- ProfileWorkflowElement.cs
- CodeObject.cs
- TrackBar.cs
- BamlLocalizableResource.cs
- StylusPointProperty.cs
- DBPropSet.cs
- StringResourceManager.cs
- WebPartMovingEventArgs.cs
- TemplateControlParser.cs
- ViewKeyConstraint.cs
- TextContainer.cs