Code:
/ WCF / WCF / 3.5.30729.1 / untmp / Orcas / SP / ndp / cdf / src / WCF / ServiceModel / System / ServiceModel / UpnEndpointIdentity.cs / 1 / UpnEndpointIdentity.cs
//----------------------------------------------------------
// Copyright (c) Microsoft Corporation. All rights reserved.
//-----------------------------------------------------------
namespace System.ServiceModel
{
using System;
using System.ComponentModel;
using System.Diagnostics;
using System.Runtime.InteropServices;
using System.IdentityModel.Claims;
using System.IdentityModel.Policy;
using System.Security.Cryptography;
using System.Security.Principal;
using System.ServiceModel.Diagnostics;
using System.ServiceModel.ComIntegration;
using System.Text;
using System.Xml;
using System.Xml.Serialization;
public class UpnEndpointIdentity : EndpointIdentity
{
SecurityIdentifier upnSid;
bool hasUpnSidBeenComputed;
WindowsIdentity windowsIdentity;
Object thisLock = new Object();
public UpnEndpointIdentity(string upnName)
{
if (upnName == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("upnName");
base.Initialize(Claim.CreateUpnClaim(upnName));
this.hasUpnSidBeenComputed = false;
}
public UpnEndpointIdentity(Claim identity)
{
if (identity == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("identity");
// PreSharp Bug: Parameter 'identity.ResourceType' to this public method must be validated: A null-dereference can occur here.
#pragma warning suppress 56506 // Claim.ResourceType will never return null
if (!identity.ClaimType.Equals(ClaimTypes.Upn))
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgument(SR.GetString(SR.UnrecognizedClaimTypeForIdentity, identity.ClaimType, ClaimTypes.Upn));
base.Initialize(identity);
}
internal UpnEndpointIdentity(WindowsIdentity windowsIdentity)
{
if (windowsIdentity == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("windowsIdentity");
this.windowsIdentity = windowsIdentity;
this.upnSid = windowsIdentity.User;
this.hasUpnSidBeenComputed = true;
}
internal override void EnsureIdentityClaim()
{
if (this.windowsIdentity != null)
{
lock (thisLock)
{
if (this.windowsIdentity != null)
{
base.Initialize(Claim.CreateUpnClaim(GetUpnFromWindowsIdentity(this.windowsIdentity)));
this.windowsIdentity.Dispose();
this.windowsIdentity = null;
}
}
}
}
string GetUpnFromWindowsIdentity(WindowsIdentity windowsIdentity)
{
string downlevelName = null;
string upnName = null;
try
{
downlevelName = windowsIdentity.Name;
upnName = GetUpnFromDownlevelName(downlevelName);
}
#pragma warning suppress 56500 // covered by FxCOP
catch (Exception e)
{
if (Diagnostics.ExceptionUtility.IsFatal(e))
{
throw;
}
DiagnosticUtility.ExceptionUtility.TraceHandledException(e, TraceEventType.Warning);
}
// if the AD cannot be queried for the fully qualified domain name,
// fall back to the downlevel UPN name
return upnName ?? downlevelName;
}
// Duplicate code from SecurityImpersonationBehavior
string GetUpnFromDownlevelName(string downlevelName)
{
if (downlevelName == null)
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("downlevelName");
}
int delimiterPos = downlevelName.IndexOf('\\');
if ((delimiterPos < 0) || (delimiterPos == 0) || (delimiterPos == downlevelName.Length - 1))
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperWarning(new InvalidOperationException(SR.GetString(SR.DownlevelNameCannotMapToUpn, downlevelName)));
}
string shortDomainName = downlevelName.Substring(0, delimiterPos + 1);
string userName = downlevelName.Substring(delimiterPos + 1);
string fullDomainName;
uint capacity = 50;
StringBuilder fullyQualifiedDomainName = new StringBuilder((int)capacity);
if (!SafeNativeMethods.TranslateName(shortDomainName, EXTENDED_NAME_FORMAT.NameSamCompatible, EXTENDED_NAME_FORMAT.NameCanonical,
fullyQualifiedDomainName, out capacity))
{
int errorCode = Marshal.GetLastWin32Error();
if (errorCode == (int)Win32Error.ERROR_INSUFFICIENT_BUFFER)
{
fullyQualifiedDomainName = new StringBuilder((int)capacity);
if (!SafeNativeMethods.TranslateName(shortDomainName, EXTENDED_NAME_FORMAT.NameSamCompatible, EXTENDED_NAME_FORMAT.NameCanonical,
fullyQualifiedDomainName, out capacity))
{
errorCode = Marshal.GetLastWin32Error();
throw DiagnosticUtility.ExceptionUtility.ThrowHelperWarning(new Win32Exception(errorCode));
}
}
else
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperWarning(new Win32Exception(errorCode));
}
}
// trim the trailing / from fqdn
fullyQualifiedDomainName = fullyQualifiedDomainName.Remove(fullyQualifiedDomainName.Length - 1, 1);
fullDomainName = fullyQualifiedDomainName.ToString();
return userName + "@" + fullDomainName;
}
internal override void WriteContentsTo(XmlDictionaryWriter writer)
{
if (writer == null)
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("writer");
writer.WriteElementString(XD.AddressingDictionary.Upn, XD.AddressingDictionary.IdentityExtensionNamespace, (string)this.IdentityClaim.Resource);
}
internal SecurityIdentifier GetUpnSid()
{
DiagnosticUtility.DebugAssert(ClaimTypes.Upn.Equals(this.IdentityClaim.ClaimType), "");
if (!hasUpnSidBeenComputed)
{
lock (thisLock)
{
string upn = (string)this.IdentityClaim.Resource;
if (!hasUpnSidBeenComputed)
{
try
{
NTAccount userAccount = new NTAccount(upn);
this.upnSid = userAccount.Translate(typeof(SecurityIdentifier)) as SecurityIdentifier;
}
#pragma warning suppress 56500 // covered by FxCOP
catch (Exception e)
{
// Always immediately rethrow fatal exceptions.
if (DiagnosticUtility.IsFatal(e)) throw;
if (e is NullReferenceException || e is SEHException)
throw;
SecurityTraceRecordHelper.TraceSpnToSidMappingFailure(upn, e);
}
finally
{
hasUpnSidBeenComputed = true;
}
}
}
}
return this.upnSid;
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
// Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- DataGridTable.cs
- CodeEntryPointMethod.cs
- WebRequestModulesSection.cs
- ConfigXmlSignificantWhitespace.cs
- BitmapVisualManager.cs
- SQLDecimal.cs
- Slider.cs
- XPathNodeList.cs
- SystemException.cs
- ReverseInheritProperty.cs
- ItemMap.cs
- ResourceReferenceExpression.cs
- Code.cs
- EdgeProfileValidation.cs
- DynamicQueryableWrapper.cs
- BindingsCollection.cs
- PersonalizationAdministration.cs
- Material.cs
- ProjectionQueryOptionExpression.cs
- ReadOnlyDataSourceView.cs
- RtfToXamlLexer.cs
- DataGridGeneralPage.cs
- HandlerMappingMemo.cs
- pingexception.cs
- BindingMemberInfo.cs
- TabControl.cs
- EntityTemplateUserControl.cs
- DefaultTraceListener.cs
- NonSerializedAttribute.cs
- WebCategoryAttribute.cs
- AuthenticatingEventArgs.cs
- DbModificationCommandTree.cs
- TreeNodeBindingCollection.cs
- PointKeyFrameCollection.cs
- EntityUtil.cs
- BaseTemplateBuildProvider.cs
- CacheMemory.cs
- MemberJoinTreeNode.cs
- InspectionWorker.cs
- BinaryCommonClasses.cs
- IISUnsafeMethods.cs
- XmlWellformedWriter.cs
- CommandSet.cs
- DoubleLink.cs
- RoutingConfiguration.cs
- CompiledRegexRunner.cs
- UnsignedPublishLicense.cs
- AssertValidation.cs
- DataGridColumnCollectionEditor.cs
- SelectionHighlightInfo.cs
- AccessibleObject.cs
- SymbolEqualComparer.cs
- Formatter.cs
- TypeConverterAttribute.cs
- ExpressionEditorAttribute.cs
- NamedPipeConnectionPoolSettings.cs
- followingsibling.cs
- TreeNodeMouseHoverEvent.cs
- NotifyInputEventArgs.cs
- EventBindingService.cs
- DefaultPropertyAttribute.cs
- _ListenerResponseStream.cs
- MissingFieldException.cs
- ResizeGrip.cs
- InvokerUtil.cs
- AttributeUsageAttribute.cs
- QueueProcessor.cs
- SByte.cs
- FontNamesConverter.cs
- MatrixAnimationUsingPath.cs
- FocusWithinProperty.cs
- HttpRequestCacheValidator.cs
- SmtpReplyReaderFactory.cs
- MergeFilterQuery.cs
- RequestQueryParser.cs
- ImageConverter.cs
- Expr.cs
- DragDrop.cs
- StackSpiller.Generated.cs
- SafeLibraryHandle.cs
- CalendarDataBindingHandler.cs
- CalloutQueueItem.cs
- NetSectionGroup.cs
- InvalidComObjectException.cs
- EncoderParameter.cs
- WCFBuildProvider.cs
- X509Certificate.cs
- SmtpTransport.cs
- TerminateWorkflow.cs
- ColumnResizeUndoUnit.cs
- InputScope.cs
- ReliableOutputSessionChannel.cs
- DataExpression.cs
- FontWeightConverter.cs
- MailAddress.cs
- Image.cs
- DeclaredTypeElementCollection.cs
- Form.cs
- QilVisitor.cs
- UserUseLicenseDictionaryLoader.cs