Code:
/ Dotnetfx_Vista_SP2 / Dotnetfx_Vista_SP2 / 8.0.50727.4016 / DEVDIV / depot / DevDiv / releases / whidbey / NetFxQFE / ndp / fx / src / xsp / System / Web / Util / SecUtil.cs / 1 / SecUtil.cs
//------------------------------------------------------------------------------ //// Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- /* * SecurityUtil class * * Copyright (c) 1999 Microsoft Corporation */ namespace System.Web.Util { using System.Globalization; using System.Web.Hosting; using System.Collections; using System.Collections.Specialized; using System.Data; using System.Data.SqlClient; using System.Data.SqlTypes; using System.Configuration.Provider; using System.Configuration; using System.Text.RegularExpressions; internal static class SecUtility { internal static string GetDefaultAppName() { try { string appName = HostingEnvironment.ApplicationVirtualPath; if (String.IsNullOrEmpty(appName)) { #if !FEATURE_PAL // ROTORTODO: enable Process.MainModule or support an alternative // naming scheme for (HttpRuntime.AppDomainAppVirtualPath == null) appName = System.Diagnostics.Process.GetCurrentProcess(). MainModule.ModuleName; int indexOfDot = appName.IndexOf('.'); if (indexOfDot != -1) { appName = appName.Remove(indexOfDot); } #endif // !FEATURE_PAL } if (String.IsNullOrEmpty(appName)) { return "/"; } else { return appName; } } catch { return "/"; } } // We don't trim the param before checking with password parameters internal static bool ValidatePasswordParameter(ref string param, int maxSize) { if (param == null) { return false; } if (param.Length < 1) { return false; } if (maxSize > 0 && (param.Length > maxSize) ) { return false; } return true; } internal static bool ValidateParameter(ref string param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize) { if (param == null) { return !checkForNull; } param = param.Trim(); if ((checkIfEmpty && param.Length < 1) || (maxSize > 0 && param.Length > maxSize) || (checkForCommas && param.Contains(","))) { return false; } return true; } // We don't trim the param before checking with password parameters internal static void CheckPasswordParameter(ref string param, int maxSize, string paramName) { if (param == null) { throw new ArgumentNullException(paramName); } if (param.Length < 1) { throw new ArgumentException(SR.GetString(SR.Parameter_can_not_be_empty, paramName), paramName); } if (maxSize > 0 && param.Length > maxSize) { throw new ArgumentException(SR.GetString(SR.Parameter_too_long, paramName, maxSize.ToString(CultureInfo.InvariantCulture)), paramName); } } internal static void CheckParameter(ref string param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize, string paramName) { if (param == null) { if (checkForNull) { throw new ArgumentNullException(paramName); } return; } param = param.Trim(); if (checkIfEmpty && param.Length < 1) { throw new ArgumentException(SR.GetString(SR.Parameter_can_not_be_empty, paramName), paramName); } if (maxSize > 0 && param.Length > maxSize) { throw new ArgumentException(SR.GetString(SR.Parameter_too_long, paramName, maxSize.ToString(CultureInfo.InvariantCulture)), paramName); } if (checkForCommas && param.Contains(",")) { throw new ArgumentException(SR.GetString(SR.Parameter_can_not_contain_comma, paramName), paramName); } } internal static void CheckArrayParameter(ref string[] param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize, string paramName) { if (param == null) { throw new ArgumentNullException(paramName); } if (param.Length < 1) { throw new ArgumentException(SR.GetString(SR.Parameter_array_empty, paramName), paramName); } Hashtable values = new Hashtable(param.Length); for (int i = param.Length - 1; i >= 0; i--) { SecUtility.CheckParameter(ref param[i], checkForNull, checkIfEmpty, checkForCommas, maxSize, paramName + "[ " + i.ToString(CultureInfo.InvariantCulture) + " ]"); if (values.Contains(param[i])) { throw new ArgumentException(SR.GetString(SR.Parameter_duplicate_array_element, paramName), paramName); } else { values.Add(param[i], param[i]); } } } internal static bool GetBooleanValue(NameValueCollection config, string valueName, bool defaultValue) { string sValue = config[valueName]; if (sValue == null) { return defaultValue; } bool result; if (bool.TryParse(sValue, out result)) { return result; } else { throw new ProviderException(SR.GetString(SR.Value_must_be_boolean, valueName)); } } internal static int GetIntValue(NameValueCollection config, string valueName, int defaultValue, bool zeroAllowed, int maxValueAllowed) { string sValue = config[valueName]; if (sValue == null) { return defaultValue; } int iValue; if (!Int32.TryParse(sValue, out iValue)) { if (zeroAllowed) { throw new ProviderException(SR.GetString(SR.Value_must_be_non_negative_integer, valueName)); } throw new ProviderException(SR.GetString(SR.Value_must_be_positive_integer, valueName)); } if (zeroAllowed && iValue < 0) { throw new ProviderException(SR.GetString(SR.Value_must_be_non_negative_integer, valueName)); } if (!zeroAllowed && iValue <= 0) { throw new ProviderException(SR.GetString(SR.Value_must_be_positive_integer, valueName)); } if (maxValueAllowed > 0 && iValue > maxValueAllowed) { throw new ProviderException(SR.GetString(SR.Value_too_big, valueName, maxValueAllowed.ToString(CultureInfo.InvariantCulture))); } return iValue; } #if !FEATURE_PAL // internal static void CheckSchemaVersion(ProviderBase provider, SqlConnection connection, string[] features, string version, ref int schemaVersionCheck) { if (connection == null) { throw new ArgumentNullException("connection"); } if (features == null) { throw new ArgumentNullException("features"); } if (version == null) { throw new ArgumentNullException("version"); } if (schemaVersionCheck == -1) { throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version)); } else if (schemaVersionCheck == 0) { lock (provider) { if (schemaVersionCheck == -1) { throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version)); } else if (schemaVersionCheck == 0) { int iStatus = 0; SqlCommand cmd = null; SqlParameter p = null; foreach (string feature in features) { cmd = new SqlCommand("dbo.aspnet_CheckSchemaVersion", connection); cmd.CommandType = CommandType.StoredProcedure; p = new SqlParameter("@Feature", feature); cmd.Parameters.Add(p); p = new SqlParameter("@CompatibleSchemaVersion", version); cmd.Parameters.Add(p); p = new SqlParameter("@ReturnValue", SqlDbType.Int); p.Direction = ParameterDirection.ReturnValue; cmd.Parameters.Add(p); cmd.ExecuteNonQuery(); iStatus = ((p.Value != null) ? ((int)p.Value) : -1); if (iStatus != 0) { schemaVersionCheck = -1; throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version)); } } schemaVersionCheck = 1; } } } } #endif // !FEATURE_PAL } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007. //------------------------------------------------------------------------------ //// Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- /* * SecurityUtil class * * Copyright (c) 1999 Microsoft Corporation */ namespace System.Web.Util { using System.Globalization; using System.Web.Hosting; using System.Collections; using System.Collections.Specialized; using System.Data; using System.Data.SqlClient; using System.Data.SqlTypes; using System.Configuration.Provider; using System.Configuration; using System.Text.RegularExpressions; internal static class SecUtility { internal static string GetDefaultAppName() { try { string appName = HostingEnvironment.ApplicationVirtualPath; if (String.IsNullOrEmpty(appName)) { #if !FEATURE_PAL // ROTORTODO: enable Process.MainModule or support an alternative // naming scheme for (HttpRuntime.AppDomainAppVirtualPath == null) appName = System.Diagnostics.Process.GetCurrentProcess(). MainModule.ModuleName; int indexOfDot = appName.IndexOf('.'); if (indexOfDot != -1) { appName = appName.Remove(indexOfDot); } #endif // !FEATURE_PAL } if (String.IsNullOrEmpty(appName)) { return "/"; } else { return appName; } } catch { return "/"; } } // We don't trim the param before checking with password parameters internal static bool ValidatePasswordParameter(ref string param, int maxSize) { if (param == null) { return false; } if (param.Length < 1) { return false; } if (maxSize > 0 && (param.Length > maxSize) ) { return false; } return true; } internal static bool ValidateParameter(ref string param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize) { if (param == null) { return !checkForNull; } param = param.Trim(); if ((checkIfEmpty && param.Length < 1) || (maxSize > 0 && param.Length > maxSize) || (checkForCommas && param.Contains(","))) { return false; } return true; } // We don't trim the param before checking with password parameters internal static void CheckPasswordParameter(ref string param, int maxSize, string paramName) { if (param == null) { throw new ArgumentNullException(paramName); } if (param.Length < 1) { throw new ArgumentException(SR.GetString(SR.Parameter_can_not_be_empty, paramName), paramName); } if (maxSize > 0 && param.Length > maxSize) { throw new ArgumentException(SR.GetString(SR.Parameter_too_long, paramName, maxSize.ToString(CultureInfo.InvariantCulture)), paramName); } } internal static void CheckParameter(ref string param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize, string paramName) { if (param == null) { if (checkForNull) { throw new ArgumentNullException(paramName); } return; } param = param.Trim(); if (checkIfEmpty && param.Length < 1) { throw new ArgumentException(SR.GetString(SR.Parameter_can_not_be_empty, paramName), paramName); } if (maxSize > 0 && param.Length > maxSize) { throw new ArgumentException(SR.GetString(SR.Parameter_too_long, paramName, maxSize.ToString(CultureInfo.InvariantCulture)), paramName); } if (checkForCommas && param.Contains(",")) { throw new ArgumentException(SR.GetString(SR.Parameter_can_not_contain_comma, paramName), paramName); } } internal static void CheckArrayParameter(ref string[] param, bool checkForNull, bool checkIfEmpty, bool checkForCommas, int maxSize, string paramName) { if (param == null) { throw new ArgumentNullException(paramName); } if (param.Length < 1) { throw new ArgumentException(SR.GetString(SR.Parameter_array_empty, paramName), paramName); } Hashtable values = new Hashtable(param.Length); for (int i = param.Length - 1; i >= 0; i--) { SecUtility.CheckParameter(ref param[i], checkForNull, checkIfEmpty, checkForCommas, maxSize, paramName + "[ " + i.ToString(CultureInfo.InvariantCulture) + " ]"); if (values.Contains(param[i])) { throw new ArgumentException(SR.GetString(SR.Parameter_duplicate_array_element, paramName), paramName); } else { values.Add(param[i], param[i]); } } } internal static bool GetBooleanValue(NameValueCollection config, string valueName, bool defaultValue) { string sValue = config[valueName]; if (sValue == null) { return defaultValue; } bool result; if (bool.TryParse(sValue, out result)) { return result; } else { throw new ProviderException(SR.GetString(SR.Value_must_be_boolean, valueName)); } } internal static int GetIntValue(NameValueCollection config, string valueName, int defaultValue, bool zeroAllowed, int maxValueAllowed) { string sValue = config[valueName]; if (sValue == null) { return defaultValue; } int iValue; if (!Int32.TryParse(sValue, out iValue)) { if (zeroAllowed) { throw new ProviderException(SR.GetString(SR.Value_must_be_non_negative_integer, valueName)); } throw new ProviderException(SR.GetString(SR.Value_must_be_positive_integer, valueName)); } if (zeroAllowed && iValue < 0) { throw new ProviderException(SR.GetString(SR.Value_must_be_non_negative_integer, valueName)); } if (!zeroAllowed && iValue <= 0) { throw new ProviderException(SR.GetString(SR.Value_must_be_positive_integer, valueName)); } if (maxValueAllowed > 0 && iValue > maxValueAllowed) { throw new ProviderException(SR.GetString(SR.Value_too_big, valueName, maxValueAllowed.ToString(CultureInfo.InvariantCulture))); } return iValue; } #if !FEATURE_PAL // internal static void CheckSchemaVersion(ProviderBase provider, SqlConnection connection, string[] features, string version, ref int schemaVersionCheck) { if (connection == null) { throw new ArgumentNullException("connection"); } if (features == null) { throw new ArgumentNullException("features"); } if (version == null) { throw new ArgumentNullException("version"); } if (schemaVersionCheck == -1) { throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version)); } else if (schemaVersionCheck == 0) { lock (provider) { if (schemaVersionCheck == -1) { throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version)); } else if (schemaVersionCheck == 0) { int iStatus = 0; SqlCommand cmd = null; SqlParameter p = null; foreach (string feature in features) { cmd = new SqlCommand("dbo.aspnet_CheckSchemaVersion", connection); cmd.CommandType = CommandType.StoredProcedure; p = new SqlParameter("@Feature", feature); cmd.Parameters.Add(p); p = new SqlParameter("@CompatibleSchemaVersion", version); cmd.Parameters.Add(p); p = new SqlParameter("@ReturnValue", SqlDbType.Int); p.Direction = ParameterDirection.ReturnValue; cmd.Parameters.Add(p); cmd.ExecuteNonQuery(); iStatus = ((p.Value != null) ? ((int)p.Value) : -1); if (iStatus != 0) { schemaVersionCheck = -1; throw new ProviderException(SR.GetString(SR.Provider_Schema_Version_Not_Match, provider.ToString(), version)); } } schemaVersionCheck = 1; } } } } #endif // !FEATURE_PAL } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- TransactionException.cs
- WebZone.cs
- TransformDescriptor.cs
- NativeRightsManagementAPIsStructures.cs
- SqlFacetAttribute.cs
- PassportIdentity.cs
- DataGridViewRowDividerDoubleClickEventArgs.cs
- MethodCallTranslator.cs
- ExpressionDumper.cs
- ExpressionNode.cs
- SQLInt64.cs
- TextDecoration.cs
- httpstaticobjectscollection.cs
- assertwrapper.cs
- TraceLog.cs
- WebAdminConfigurationHelper.cs
- ShaderEffect.cs
- SQLChars.cs
- EditingCommands.cs
- ToolboxItemFilterAttribute.cs
- LiteralControl.cs
- PointCollection.cs
- QueryComponents.cs
- DesignerVerbToolStripMenuItem.cs
- SafeLibraryHandle.cs
- DeviceContext2.cs
- UnsafeNativeMethods.cs
- ConfigXmlWhitespace.cs
- SQLDoubleStorage.cs
- TypeUtil.cs
- Rotation3DKeyFrameCollection.cs
- PartialCachingControl.cs
- SecurityCredentialsManager.cs
- HealthMonitoringSectionHelper.cs
- SemanticResolver.cs
- Quaternion.cs
- SamlAssertionDirectKeyIdentifierClause.cs
- DataTemplateSelector.cs
- ServerIdentity.cs
- LocationUpdates.cs
- OleTxTransaction.cs
- ArcSegment.cs
- SelectedGridItemChangedEvent.cs
- TypeGeneratedEventArgs.cs
- CodePageUtils.cs
- XmlDataSourceNodeDescriptor.cs
- TreeNodeStyleCollection.cs
- PropertyToken.cs
- RTLAwareMessageBox.cs
- XmlRootAttribute.cs
- ResourceManagerWrapper.cs
- StylusCaptureWithinProperty.cs
- DbXmlEnabledProviderManifest.cs
- GetPageCompletedEventArgs.cs
- EntityCodeGenerator.cs
- PeerNameRecordCollection.cs
- HttpHeaderCollection.cs
- DataList.cs
- CryptoStream.cs
- PathFigureCollection.cs
- DataGridViewColumnDividerDoubleClickEventArgs.cs
- securitycriticaldataClass.cs
- BitmapCache.cs
- SessionStateModule.cs
- ServicesExceptionNotHandledEventArgs.cs
- FilePrompt.cs
- WebPartCancelEventArgs.cs
- XhtmlBasicPanelAdapter.cs
- StandardCommands.cs
- ModuleBuilderData.cs
- NumberEdit.cs
- Point3DIndependentAnimationStorage.cs
- WindowsClientElement.cs
- DataGridViewAutoSizeModeEventArgs.cs
- RunWorkerCompletedEventArgs.cs
- FixedTextContainer.cs
- StylusButtonEventArgs.cs
- RequestCache.cs
- ResXResourceWriter.cs
- XmlWhitespace.cs
- NetworkStream.cs
- XamlPointCollectionSerializer.cs
- MediaTimeline.cs
- ResourceProperty.cs
- NegationPusher.cs
- XmlBindingWorker.cs
- AutomationElementIdentifiers.cs
- backend.cs
- AsymmetricSignatureDeformatter.cs
- EventQueueState.cs
- StylusPoint.cs
- ALinqExpressionVisitor.cs
- ConstantProjectedSlot.cs
- XmlEncApr2001.cs
- CodeSnippetExpression.cs
- TableLayoutSettings.cs
- PageVisual.cs
- JpegBitmapEncoder.cs
- SafeCoTaskMem.cs
- CodeNamespaceImportCollection.cs