Code:
/ WCF / WCF / 3.5.30729.1 / untmp / Orcas / SP / ndp / cdf / src / WCF / ServiceModel / System / ServiceModel / UpnEndpointIdentity.cs / 1 / UpnEndpointIdentity.cs
//---------------------------------------------------------- // Copyright (c) Microsoft Corporation. All rights reserved. //----------------------------------------------------------- namespace System.ServiceModel { using System; using System.ComponentModel; using System.Diagnostics; using System.Runtime.InteropServices; using System.IdentityModel.Claims; using System.IdentityModel.Policy; using System.Security.Cryptography; using System.Security.Principal; using System.ServiceModel.Diagnostics; using System.ServiceModel.ComIntegration; using System.Text; using System.Xml; using System.Xml.Serialization; public class UpnEndpointIdentity : EndpointIdentity { SecurityIdentifier upnSid; bool hasUpnSidBeenComputed; WindowsIdentity windowsIdentity; Object thisLock = new Object(); public UpnEndpointIdentity(string upnName) { if (upnName == null) throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("upnName"); base.Initialize(Claim.CreateUpnClaim(upnName)); this.hasUpnSidBeenComputed = false; } public UpnEndpointIdentity(Claim identity) { if (identity == null) throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("identity"); // PreSharp Bug: Parameter 'identity.ResourceType' to this public method must be validated: A null-dereference can occur here. #pragma warning suppress 56506 // Claim.ResourceType will never return null if (!identity.ClaimType.Equals(ClaimTypes.Upn)) throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgument(SR.GetString(SR.UnrecognizedClaimTypeForIdentity, identity.ClaimType, ClaimTypes.Upn)); base.Initialize(identity); } internal UpnEndpointIdentity(WindowsIdentity windowsIdentity) { if (windowsIdentity == null) throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("windowsIdentity"); this.windowsIdentity = windowsIdentity; this.upnSid = windowsIdentity.User; this.hasUpnSidBeenComputed = true; } internal override void EnsureIdentityClaim() { if (this.windowsIdentity != null) { lock (thisLock) { if (this.windowsIdentity != null) { base.Initialize(Claim.CreateUpnClaim(GetUpnFromWindowsIdentity(this.windowsIdentity))); this.windowsIdentity.Dispose(); this.windowsIdentity = null; } } } } string GetUpnFromWindowsIdentity(WindowsIdentity windowsIdentity) { string downlevelName = null; string upnName = null; try { downlevelName = windowsIdentity.Name; upnName = GetUpnFromDownlevelName(downlevelName); } #pragma warning suppress 56500 // covered by FxCOP catch (Exception e) { if (Diagnostics.ExceptionUtility.IsFatal(e)) { throw; } DiagnosticUtility.ExceptionUtility.TraceHandledException(e, TraceEventType.Warning); } // if the AD cannot be queried for the fully qualified domain name, // fall back to the downlevel UPN name return upnName ?? downlevelName; } // Duplicate code from SecurityImpersonationBehavior string GetUpnFromDownlevelName(string downlevelName) { if (downlevelName == null) { throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("downlevelName"); } int delimiterPos = downlevelName.IndexOf('\\'); if ((delimiterPos < 0) || (delimiterPos == 0) || (delimiterPos == downlevelName.Length - 1)) { throw DiagnosticUtility.ExceptionUtility.ThrowHelperWarning(new InvalidOperationException(SR.GetString(SR.DownlevelNameCannotMapToUpn, downlevelName))); } string shortDomainName = downlevelName.Substring(0, delimiterPos + 1); string userName = downlevelName.Substring(delimiterPos + 1); string fullDomainName; uint capacity = 50; StringBuilder fullyQualifiedDomainName = new StringBuilder((int)capacity); if (!SafeNativeMethods.TranslateName(shortDomainName, EXTENDED_NAME_FORMAT.NameSamCompatible, EXTENDED_NAME_FORMAT.NameCanonical, fullyQualifiedDomainName, out capacity)) { int errorCode = Marshal.GetLastWin32Error(); if (errorCode == (int)Win32Error.ERROR_INSUFFICIENT_BUFFER) { fullyQualifiedDomainName = new StringBuilder((int)capacity); if (!SafeNativeMethods.TranslateName(shortDomainName, EXTENDED_NAME_FORMAT.NameSamCompatible, EXTENDED_NAME_FORMAT.NameCanonical, fullyQualifiedDomainName, out capacity)) { errorCode = Marshal.GetLastWin32Error(); throw DiagnosticUtility.ExceptionUtility.ThrowHelperWarning(new Win32Exception(errorCode)); } } else { throw DiagnosticUtility.ExceptionUtility.ThrowHelperWarning(new Win32Exception(errorCode)); } } // trim the trailing / from fqdn fullyQualifiedDomainName = fullyQualifiedDomainName.Remove(fullyQualifiedDomainName.Length - 1, 1); fullDomainName = fullyQualifiedDomainName.ToString(); return userName + "@" + fullDomainName; } internal override void WriteContentsTo(XmlDictionaryWriter writer) { if (writer == null) throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("writer"); writer.WriteElementString(XD.AddressingDictionary.Upn, XD.AddressingDictionary.IdentityExtensionNamespace, (string)this.IdentityClaim.Resource); } internal SecurityIdentifier GetUpnSid() { DiagnosticUtility.DebugAssert(ClaimTypes.Upn.Equals(this.IdentityClaim.ClaimType), ""); if (!hasUpnSidBeenComputed) { lock (thisLock) { string upn = (string)this.IdentityClaim.Resource; if (!hasUpnSidBeenComputed) { try { NTAccount userAccount = new NTAccount(upn); this.upnSid = userAccount.Translate(typeof(SecurityIdentifier)) as SecurityIdentifier; } #pragma warning suppress 56500 // covered by FxCOP catch (Exception e) { // Always immediately rethrow fatal exceptions. if (DiagnosticUtility.IsFatal(e)) throw; if (e is NullReferenceException || e is SEHException) throw; SecurityTraceRecordHelper.TraceSpnToSidMappingFailure(upn, e); } finally { hasUpnSidBeenComputed = true; } } } } return this.upnSid; } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007. // Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu

This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- DataGridTable.cs
- CodeEntryPointMethod.cs
- WebRequestModulesSection.cs
- ConfigXmlSignificantWhitespace.cs
- BitmapVisualManager.cs
- SQLDecimal.cs
- Slider.cs
- XPathNodeList.cs
- SystemException.cs
- ReverseInheritProperty.cs
- ItemMap.cs
- ResourceReferenceExpression.cs
- Code.cs
- EdgeProfileValidation.cs
- DynamicQueryableWrapper.cs
- BindingsCollection.cs
- PersonalizationAdministration.cs
- Material.cs
- ProjectionQueryOptionExpression.cs
- ReadOnlyDataSourceView.cs
- RtfToXamlLexer.cs
- DataGridGeneralPage.cs
- HandlerMappingMemo.cs
- pingexception.cs
- BindingMemberInfo.cs
- TabControl.cs
- EntityTemplateUserControl.cs
- DefaultTraceListener.cs
- NonSerializedAttribute.cs
- WebCategoryAttribute.cs
- AuthenticatingEventArgs.cs
- DbModificationCommandTree.cs
- TreeNodeBindingCollection.cs
- PointKeyFrameCollection.cs
- EntityUtil.cs
- BaseTemplateBuildProvider.cs
- CacheMemory.cs
- MemberJoinTreeNode.cs
- InspectionWorker.cs
- BinaryCommonClasses.cs
- IISUnsafeMethods.cs
- XmlWellformedWriter.cs
- CommandSet.cs
- DoubleLink.cs
- RoutingConfiguration.cs
- CompiledRegexRunner.cs
- UnsignedPublishLicense.cs
- AssertValidation.cs
- DataGridColumnCollectionEditor.cs
- SelectionHighlightInfo.cs
- AccessibleObject.cs
- SymbolEqualComparer.cs
- Formatter.cs
- TypeConverterAttribute.cs
- ExpressionEditorAttribute.cs
- NamedPipeConnectionPoolSettings.cs
- followingsibling.cs
- TreeNodeMouseHoverEvent.cs
- NotifyInputEventArgs.cs
- EventBindingService.cs
- DefaultPropertyAttribute.cs
- _ListenerResponseStream.cs
- MissingFieldException.cs
- ResizeGrip.cs
- InvokerUtil.cs
- AttributeUsageAttribute.cs
- QueueProcessor.cs
- SByte.cs
- FontNamesConverter.cs
- MatrixAnimationUsingPath.cs
- FocusWithinProperty.cs
- HttpRequestCacheValidator.cs
- SmtpReplyReaderFactory.cs
- MergeFilterQuery.cs
- RequestQueryParser.cs
- ImageConverter.cs
- Expr.cs
- DragDrop.cs
- StackSpiller.Generated.cs
- SafeLibraryHandle.cs
- CalendarDataBindingHandler.cs
- CalloutQueueItem.cs
- NetSectionGroup.cs
- InvalidComObjectException.cs
- EncoderParameter.cs
- WCFBuildProvider.cs
- X509Certificate.cs
- SmtpTransport.cs
- TerminateWorkflow.cs
- ColumnResizeUndoUnit.cs
- InputScope.cs
- ReliableOutputSessionChannel.cs
- DataExpression.cs
- FontWeightConverter.cs
- MailAddress.cs
- Image.cs
- DeclaredTypeElementCollection.cs
- Form.cs
- QilVisitor.cs
- UserUseLicenseDictionaryLoader.cs