Code:
/ DotNET / DotNET / 8.0 / untmp / Orcas / RTM / ndp / fx / src / xsp / System / Web / Extensions / ApplicationServices / AuthenticationService.cs / 1 / AuthenticationService.cs
//------------------------------------------------------------------------------ //// Copyright (c) Microsoft Corporation. All rights reserved. // //----------------------------------------------------------------------------- namespace System.Web.ApplicationServices { using System; using System.Diagnostics.CodeAnalysis; using System.Security.Permissions; using System.ServiceModel; using System.ServiceModel.Activation; using System.Web; using System.Web.Management; using System.Web.Resources; using System.Web.Security; ////// Implements login service contract to be exposed as a WCF service. Uses Membership provider /// or custom authentication login in the Authenticating event. Also uses Forms.SetAuthCookie() or /// custom cookie generation via the CreatingCookie event. /// [ AspNetCompatibilityRequirements(RequirementsMode = AspNetCompatibilityRequirementsMode.Required), AspNetHostingPermission(SecurityAction.LinkDemand, Level = AspNetHostingPermissionLevel.Minimal), AspNetHostingPermission(SecurityAction.InheritanceDemand, Level = AspNetHostingPermissionLevel.Minimal), ServiceContract(Namespace="http://asp.net/ApplicationServices/v200"), ServiceBehavior(Namespace="http://asp.net/ApplicationServices/v200", InstanceContextMode = InstanceContextMode.Single, ConcurrencyMode = ConcurrencyMode.Multiple) ] public class AuthenticationService { ////// Raised to authenticate the user . The event handler sets the e.AuthenticationIsComplete flag to true /// and e.Authenticated to the result. /// private static object _authenticatingEventHandlerLock = new object(); private static EventHandler_authenticating; public static event EventHandler Authenticating { add { lock (_authenticatingEventHandlerLock) { _authenticating += value; } } remove { lock (_authenticatingEventHandlerLock) { _authenticating -= value; } } } /// /// Raised to create and set the cookie. The event handler shouldset the e.CookieIsSet flag to true, if it is /// setting the cookie. /// private static object _creatingCookieEventHandlerLock = new object(); private static EventHandler_creatingCookie; public static event EventHandler CreatingCookie { add { lock (_creatingCookieEventHandlerLock) { _creatingCookie += value; } } remove { lock (_creatingCookieEventHandlerLock) { _creatingCookie -= value; } } } //hiding constructors internal AuthenticationService() { } /// /// Raises the AuthentincatingEvent if atleast one handler is assigned. /// private void OnAuthenticating(AuthenticatingEventArgs e) { EventHandlerhandler = _authenticating; if (null != handler) { handler(this, e); } } /// /// Raises the CreatingCookieEvent if atleast one handler is assigned. /// private void OnCreatingCookie(CreatingCookieEventArgs e) { EventHandlerhandler = _creatingCookie; if (null != handler) { handler(this, e); } } /// /// Validates user credentials,without actually setting the FormAuth cookie /// /// Username of the account /// Password of the account /// Any misc. string to be used by custom authentication logic ///True, if credentials are valid, otherwise false [OperationContract] [SuppressMessage("Microsoft.Naming", "CA1702:CompoundWordsShouldBeCasedCorrectly", MessageId="username", Justification="consistent with Whidbey")] public bool ValidateUser(string username, string password, string customCredential) { ApplicationServiceHelper.EnsureAuthenticationServiceEnabled(HttpContext.Current, true); return LoginInternal(username, password, customCredential, false, false); } ////// Validates user credentials,and sets the FormAuth cookie if the credentials are valid. /// /// Username of the account /// Password of the account /// Any misc. string to be used by custom authentication logic /// If true the persistant cookie is generated. ///True, if credentials are valid, otherwise false [OperationContract] [SuppressMessage("Microsoft.Naming", "CA1702:CompoundWordsShouldBeCasedCorrectly", MessageId="username", Justification="consistent with Whidbey")] public bool Login(string username, string password, string customCredential, bool isPersistent) { ApplicationServiceHelper.EnsureAuthenticationServiceEnabled(HttpContext.Current, true); return LoginInternal(username, password, customCredential, isPersistent, true); } ////// Checks whether the Forms Authentication cookie attached to the request is valid. /// [OperationContract] public bool IsLoggedIn() { ApplicationServiceHelper.EnsureAuthenticationServiceEnabled(HttpContext.Current, true); return HttpContext.Current.User.Identity.IsAuthenticated; } ////// Clears the Forms Authentication cookie /// [OperationContract] public void Logout() { ApplicationServiceHelper.EnsureAuthenticationServiceEnabled(HttpContext.Current, false); FormsAuthentication.SignOut(); } ////// Validates the user credentials. /// /// /// /// /// /// If this is true, CreatingCookie event is raised, and cookie is set in HttpResponse ///private bool LoginInternal(string username, string password, string customCredential, bool isPersistent, bool setCookie) { if (null == username) { throw new ArgumentNullException("username"); } if (null == password) { throw new ArgumentNullException("password"); } AuthenticatingEventArgs authEventArgs = new AuthenticatingEventArgs(username, password, customCredential); try { OnAuthenticating(authEventArgs); if (!authEventArgs.AuthenticationIsComplete) { MembershipValidate(authEventArgs); } if (!authEventArgs.Authenticated) { Logout(); } if (authEventArgs.Authenticated && setCookie) { CreatingCookieEventArgs cookieEventArgs = new CreatingCookieEventArgs(username, password, isPersistent, customCredential); OnCreatingCookie(cookieEventArgs); if (!cookieEventArgs.CookieIsSet) { SetCookie(username, isPersistent); } } } catch (Exception e) { LogException(e); throw; } return authEventArgs.Authenticated; } private static void MembershipValidate(AuthenticatingEventArgs e) { e.Authenticated = Membership.ValidateUser(e.UserName, e.Password); } private static void SetCookie(string username, bool isPersistent) { FormsAuthentication.SetAuthCookie(username, isPersistent); } private void LogException(Exception e) { WebServiceErrorEvent errorevent = new WebServiceErrorEvent(AtlasWeb.UnhandledExceptionEventLogMessage, this, e); errorevent.Raise(); } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007. // Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- WebResourceAttribute.cs
- HighlightVisual.cs
- RemoteWebConfigurationHost.cs
- MSAAEventDispatcher.cs
- WebColorConverter.cs
- QueryResponse.cs
- LogStore.cs
- FloatUtil.cs
- OraclePermission.cs
- ActivationArguments.cs
- EnumMemberAttribute.cs
- UpdatePanel.cs
- RuntimeConfig.cs
- HashCoreRequest.cs
- Lookup.cs
- CompressedStack.cs
- Pts.cs
- HtmlContainerControl.cs
- ControlTemplate.cs
- FontStyleConverter.cs
- SqlNodeAnnotation.cs
- ControlCachePolicy.cs
- ObjectListCommandCollection.cs
- Mouse.cs
- DataBindingsDialog.cs
- BypassElement.cs
- ObfuscateAssemblyAttribute.cs
- XhtmlBasicPanelAdapter.cs
- DependencyPropertyKind.cs
- StreamGeometry.cs
- StructureChangedEventArgs.cs
- PopupControlService.cs
- MsmqInputChannelBase.cs
- DataSourceHelper.cs
- WorkflowServiceBehavior.cs
- EventTrigger.cs
- WorkerRequest.cs
- Thumb.cs
- XsdDateTime.cs
- ActivityPreviewDesigner.cs
- WindowsFont.cs
- SHA256.cs
- UrlPath.cs
- LexicalChunk.cs
- WorkflowInlining.cs
- StorageModelBuildProvider.cs
- ObjectDisposedException.cs
- MdiWindowListItemConverter.cs
- Pen.cs
- XmlSchemaSubstitutionGroup.cs
- DataGridViewComboBoxCell.cs
- ItemsPanelTemplate.cs
- SynchronousChannelMergeEnumerator.cs
- TemplateXamlParser.cs
- StringSorter.cs
- ImageDrawing.cs
- DataAdapter.cs
- GroupDescription.cs
- DataGridViewAddColumnDialog.cs
- PrintingPermission.cs
- RegexTree.cs
- Stopwatch.cs
- RoutedEventConverter.cs
- DocumentXmlWriter.cs
- DataView.cs
- XmlUtil.cs
- updatecommandorderer.cs
- LoginView.cs
- X509Certificate2.cs
- DateTimeConverter.cs
- VectorAnimationUsingKeyFrames.cs
- Canvas.cs
- querybuilder.cs
- OracleDataAdapter.cs
- BamlStream.cs
- CodeRemoveEventStatement.cs
- DesignerAdapterUtil.cs
- BinaryHeap.cs
- DateTimePickerDesigner.cs
- DiscreteKeyFrames.cs
- TriggerBase.cs
- MethodToken.cs
- BooleanProjectedSlot.cs
- CardSpaceSelector.cs
- StyleSheetRefUrlEditor.cs
- DbCommandTree.cs
- LiteralLink.cs
- NumericPagerField.cs
- CodeTypeParameter.cs
- ViewManagerAttribute.cs
- EventHandlers.cs
- BaseParser.cs
- GcSettings.cs
- ScalarOps.cs
- Emitter.cs
- HTTPNotFoundHandler.cs
- CmsUtils.cs
- RepeatBehavior.cs
- DataGridViewComboBoxEditingControl.cs
- UnsafeNativeMethods.cs