Code:
/ WCF / WCF / 3.5.30729.1 / untmp / Orcas / SP / ndp / cdf / src / WCF / ServiceModel / System / ServiceModel / ServiceAuthorizationManager.cs / 1 / ServiceAuthorizationManager.cs
//------------------------------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------------------------
namespace System.ServiceModel
{
using System.Collections.Generic;
using System.ServiceModel.Channels;
using System.ServiceModel.Description;
using System.Collections.ObjectModel;
using System.Diagnostics;
using System.IdentityModel.Policy;
using System.ServiceModel.Diagnostics;
using System.ServiceModel.Security;
public class ServiceAuthorizationManager
{
// This is the API called by framework to perform CheckAccess.
// The API is responsible for ...
// 1) Evaluate all policies (Forward\Backward)
// 2) Optionally wire up the resulting AuthorizationContext
// to ServiceSecurityContext.
// 3) An availability of message content to make an authoritive decision.
// 4) Return the authoritive decision true/false (allow/deny).
public virtual bool CheckAccess(OperationContext operationContext, ref Message message)
{
return CheckAccess(operationContext);
}
public virtual bool CheckAccess(OperationContext operationContext)
{
if (operationContext == null)
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("operationContext");
}
// default to forward-chaining implementation
// 1) Get policies that will participate in chain process.
// We provide a safe default policies set below.
ReadOnlyCollection authorizationPolicies = GetAuthorizationPolicies(operationContext);
// 2) Do forward chaining and wire the new ServiceSecurityContext
operationContext.IncomingMessageProperties.Security.ServiceSecurityContext =
new ServiceSecurityContext(authorizationPolicies ?? EmptyReadOnlyCollection.Instance);
// 3) Call the CheckAccessCore
return CheckAccessCore(operationContext);
}
// Define the set of policies taking part in chaining. We will provide
// the safe default set (primary token + all supporting tokens except token with
// with SecurityTokenAttachmentMode.Signed + transport token). Implementor
// can override and provide different selection of policies set.
protected virtual ReadOnlyCollection GetAuthorizationPolicies(OperationContext operationContext)
{
SecurityMessageProperty security = operationContext.IncomingMessageProperties.Security;
if (security == null)
{
return EmptyReadOnlyCollection.Instance;
}
ReadOnlyCollection externalPolicies = security.ExternalAuthorizationPolicies;
if (security.ServiceSecurityContext == null)
{
return externalPolicies ?? EmptyReadOnlyCollection.Instance;
}
ReadOnlyCollection authorizationPolicies = security.ServiceSecurityContext.AuthorizationPolicies;
if (externalPolicies == null || externalPolicies.Count <= 0)
{
return authorizationPolicies;
}
// Combine
List policies = new List(authorizationPolicies);
policies.AddRange(externalPolicies);
return policies.AsReadOnly();
}
// Implementor overrides this API to make authoritive decision.
// The AuthorizationContext in opContext is generally the result from forward chain.
protected virtual bool CheckAccessCore(OperationContext operationContext)
{
return true;
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
// Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- InternalTransaction.cs
- Operator.cs
- XmlSchemaDatatype.cs
- SelectionWordBreaker.cs
- ListViewPagedDataSource.cs
- GlyphElement.cs
- NotifyIcon.cs
- RSAPKCS1SignatureFormatter.cs
- ValueOfAction.cs
- TextCompositionEventArgs.cs
- SimpleType.cs
- SqlUDTStorage.cs
- TemplateEditingVerb.cs
- Serializer.cs
- ChangeConflicts.cs
- PlanCompiler.cs
- EventHandlers.cs
- ConstructorExpr.cs
- PointUtil.cs
- ZipFileInfo.cs
- UnsafeNativeMethods.cs
- FastPropertyAccessor.cs
- ReferentialConstraint.cs
- TableLayoutStyleCollection.cs
- OAVariantLib.cs
- WorkflowInvoker.cs
- CanonicalXml.cs
- DrawToolTipEventArgs.cs
- VariableValue.cs
- CustomAttribute.cs
- RightsManagementEncryptedStream.cs
- ProcessThreadCollection.cs
- WebHttpSecurity.cs
- GlyphInfoList.cs
- ReadOnlyDataSource.cs
- CachedCompositeFamily.cs
- ReachDocumentReferenceSerializer.cs
- XmlSerializationReader.cs
- Gdiplus.cs
- XmlValidatingReader.cs
- ListenerElementsCollection.cs
- AppLevelCompilationSectionCache.cs
- RefreshPropertiesAttribute.cs
- SafeHandles.cs
- SqlCommandBuilder.cs
- RelationshipConverter.cs
- BeginStoryboard.cs
- DataGridViewRowPrePaintEventArgs.cs
- Point3DAnimation.cs
- Bitmap.cs
- DesignConnection.cs
- QilInvoke.cs
- PersistChildrenAttribute.cs
- SqlRetyper.cs
- ContentElementAutomationPeer.cs
- RtfControls.cs
- EventProxy.cs
- ClosureBinding.cs
- SupportsEventValidationAttribute.cs
- ThreadExceptionDialog.cs
- XmlLangPropertyAttribute.cs
- SID.cs
- ArgumentDesigner.xaml.cs
- SynchronizedInputAdaptor.cs
- AlternationConverter.cs
- MobileErrorInfo.cs
- ECDsaCng.cs
- PkcsMisc.cs
- TracingConnectionInitiator.cs
- DelegateArgumentValue.cs
- MessageHeader.cs
- SizeChangedInfo.cs
- MetadataReference.cs
- ConfigXmlCDataSection.cs
- TraceHandler.cs
- SqlGatherProducedAliases.cs
- NumericExpr.cs
- SequenceNumber.cs
- EntityDataSourceState.cs
- LinkLabel.cs
- SessionState.cs
- DataBinding.cs
- ConstraintConverter.cs
- XmlAttributes.cs
- XslVisitor.cs
- MessageContractMemberAttribute.cs
- EventProviderWriter.cs
- _ListenerRequestStream.cs
- FunctionParameter.cs
- DynamicControl.cs
- CLRBindingWorker.cs
- OutOfProcStateClientManager.cs
- TreeNodeSelectionProcessor.cs
- ApplicationInfo.cs
- HttpHandlerActionCollection.cs
- EdgeModeValidation.cs
- EmptyEnumerable.cs
- TCPClient.cs
- DefaultMergeHelper.cs
- GroupBox.cs