Code:
/ Net / Net / 3.5.50727.3053 / DEVDIV / depot / DevDiv / releases / Orcas / SP / wpf / src / Shared / MS / Utility / bindurihelper.cs / 1 / bindurihelper.cs
using System; using System.IO; using System.Net; // HttpWebRequest using System.Net.Cache; // HttpRequestCachePolicy using System.ComponentModel; using System.Diagnostics; using System.Globalization; using System.Text; using System.Windows.Navigation; // BaseUriHelper #if !PBTCOMPILER using MS.Win32; #endif using System.Security; using System.Security.Permissions; // The functionality in this class is shared across framework and core. The functionality in core // is a subset of the functionality in framework, so rather than create a dependency from core to // framework we have choses to duplicate this chunk of code. #if PRESENTATION_CORE namespace MS.Internal.PresentationCore #elif PRESENTATIONFRAMEWORK using MS.Internal.PresentationFramework; // SecurityHelper namespace MS.Internal.Utility #elif PBTCOMPILER using MS.Internal.PresentationBuildTasks // SecurityHelper namespace MS.Internal.Utility #elif REACHFRAMEWORK using MS.Internal.ReachFramework; // SecurityHelper namespace MS.Internal.Utility #else #error Class is being used from an unknown assembly. #endif { // // Methods in this partial class are shared by PresentationFramework and PresentationBuildTasks. // See also WpfWebRequestHelper. // internal static partial class BindUriHelper { private const int MAX_PATH_LENGTH = 2048 ; private const int MAX_SCHEME_LENGTH = 32; public const int MAX_URL_LENGTH = MAX_PATH_LENGTH + MAX_SCHEME_LENGTH + 3; /*=sizeof("://")*/ // // Uri-toString does 3 things over the standard .toString() // // 1) We don't unescape special control characters. The default Uri.ToString() // will unescape a character like ctrl-g, or ctrl-h so the actual char is emitted. // However it's considered safer to emit the escaped version. // // 2) We truncate urls so that they are always <= MAX_URL_LENGTH // // This method should be called whenever you are taking a Uri // and performing a p-invoke on it. // internal static string UriToString(Uri uri) { if (uri == null) { throw new ArgumentNullException("uri"); } return new StringBuilder( uri.GetComponents( uri.IsAbsoluteUri ? UriComponents.AbsoluteUri : UriComponents.SerializationInfoString, UriFormat.SafeUnescaped), MAX_URL_LENGTH).ToString(); } #if PRESENTATION_CORE || PRESENTATIONFRAMEWORK // Base Uri. ////// Critical: as it sets the baseUri /// static internal Uri BaseUri { get { return BaseUriHelper.BaseUri; } [SecurityCritical] set { BaseUriHelper.BaseUri = BaseUriHelper.FixFileUri(value); } } static internal bool DoSchemeAndHostMatch(Uri first, Uri second) { // Check that both the scheme and the host match. return (SecurityHelper.AreStringTypesEqual(first.Scheme, second.Scheme) && first.Host.Equals(second.Host) == true); } static internal Uri GetResolvedUri(Uri baseUri, Uri orgUri) { Uri newUri; if (orgUri == null) { newUri = null; } else if (orgUri.IsAbsoluteUri == false) { // if the orgUri is an absolute Uri, don't need to resolve it again. Uri baseuri = (baseUri == null) ? BindUriHelper.BaseUri : baseUri; #if CF_Envelope_Activation_Enabled bool isContainer = false ; // // if the BaseUri starts with pack://application we know that we're not in a container. // // By deferring the registration of the container scheme - we avoid registering the ssres protocol. // and enable less code that requires elevation. // // Note that when container moves to pack: ( PS 25616) - we won't need this check anyway. // if ( // Check that the baseuri starts with pack://application:,,,/ ! DoSchemeAndHostMatch(baseuri, BaseUriHelper.PackAppBaseUri)) { isContainer = String.Compare(baseuri.Scheme, CompoundFileUri.UriSchemeContainer, StringComparison.OrdinalIgnoreCase) == 0; } Debug.Assert(baseuri.OriginalString == BaseUriHelper.FixFileUri(baseuri).OriginalString, "Base Uri is legacy file Uri and may not resolve relative uris correctly. This method should be updated"); // ToDo (younggk): PS# 25616 Once we move to PackUri, we don't need a special way // of resolving Uri. We can use the regurlar one. if (isContainer) { newUri = ResolveContainerUri(baseuri, orgUri); } else { #endif newUri = new Uri(baseuri, orgUri); #if CF_Envelope_Activation_Enabled } #endif } else { newUri = BaseUriHelper.FixFileUri(orgUri); } return newUri; } ////// Gets the referer to set as a header on the HTTP request. /// We do not set the referer if we are navigating to a /// differnet security zone or to a different Uri scheme. /// internal static string GetReferer(Uri destinationUri) { string referer = null; Uri sourceUri = MS.Internal.AppModel.SiteOfOriginContainer.BrowserSource; if (sourceUri != null) { SecurityZone sourceZone = MS.Internal.AppModel.CustomCredentialPolicy.MapUrlToZone(sourceUri); SecurityZone targetZone = MS.Internal.AppModel.CustomCredentialPolicy.MapUrlToZone(destinationUri); // We don't send any referer when crossing zone if (sourceZone == targetZone) { // We don't send any referer when going cross-scheme if (SecurityHelper.AreStringTypesEqual(sourceUri.Scheme, destinationUri.Scheme)) { // HTTPHeader requires the referer uri to be escaped. referer = sourceUri.GetComponents(UriComponents.AbsoluteUri, UriFormat.UriEscaped); } } } return referer; } #endif // PRESENTATION_CORE || PRESENTATIONFRAMEWORK } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007. // Copyright (c) Microsoft Corporation. All rights reserved. using System; using System.IO; using System.Net; // HttpWebRequest using System.Net.Cache; // HttpRequestCachePolicy using System.ComponentModel; using System.Diagnostics; using System.Globalization; using System.Text; using System.Windows.Navigation; // BaseUriHelper #if !PBTCOMPILER using MS.Win32; #endif using System.Security; using System.Security.Permissions; // The functionality in this class is shared across framework and core. The functionality in core // is a subset of the functionality in framework, so rather than create a dependency from core to // framework we have choses to duplicate this chunk of code. #if PRESENTATION_CORE namespace MS.Internal.PresentationCore #elif PRESENTATIONFRAMEWORK using MS.Internal.PresentationFramework; // SecurityHelper namespace MS.Internal.Utility #elif PBTCOMPILER using MS.Internal.PresentationBuildTasks // SecurityHelper namespace MS.Internal.Utility #elif REACHFRAMEWORK using MS.Internal.ReachFramework; // SecurityHelper namespace MS.Internal.Utility #else #error Class is being used from an unknown assembly. #endif { // // Methods in this partial class are shared by PresentationFramework and PresentationBuildTasks. // See also WpfWebRequestHelper. // internal static partial class BindUriHelper { private const int MAX_PATH_LENGTH = 2048 ; private const int MAX_SCHEME_LENGTH = 32; public const int MAX_URL_LENGTH = MAX_PATH_LENGTH + MAX_SCHEME_LENGTH + 3; /*=sizeof("://")*/ // // Uri-toString does 3 things over the standard .toString() // // 1) We don't unescape special control characters. The default Uri.ToString() // will unescape a character like ctrl-g, or ctrl-h so the actual char is emitted. // However it's considered safer to emit the escaped version. // // 2) We truncate urls so that they are always <= MAX_URL_LENGTH // // This method should be called whenever you are taking a Uri // and performing a p-invoke on it. // internal static string UriToString(Uri uri) { if (uri == null) { throw new ArgumentNullException("uri"); } return new StringBuilder( uri.GetComponents( uri.IsAbsoluteUri ? UriComponents.AbsoluteUri : UriComponents.SerializationInfoString, UriFormat.SafeUnescaped), MAX_URL_LENGTH).ToString(); } #if PRESENTATION_CORE || PRESENTATIONFRAMEWORK // Base Uri. ////// Critical: as it sets the baseUri /// static internal Uri BaseUri { get { return BaseUriHelper.BaseUri; } [SecurityCritical] set { BaseUriHelper.BaseUri = BaseUriHelper.FixFileUri(value); } } static internal bool DoSchemeAndHostMatch(Uri first, Uri second) { // Check that both the scheme and the host match. return (SecurityHelper.AreStringTypesEqual(first.Scheme, second.Scheme) && first.Host.Equals(second.Host) == true); } static internal Uri GetResolvedUri(Uri baseUri, Uri orgUri) { Uri newUri; if (orgUri == null) { newUri = null; } else if (orgUri.IsAbsoluteUri == false) { // if the orgUri is an absolute Uri, don't need to resolve it again. Uri baseuri = (baseUri == null) ? BindUriHelper.BaseUri : baseUri; #if CF_Envelope_Activation_Enabled bool isContainer = false ; // // if the BaseUri starts with pack://application we know that we're not in a container. // // By deferring the registration of the container scheme - we avoid registering the ssres protocol. // and enable less code that requires elevation. // // Note that when container moves to pack: ( PS 25616) - we won't need this check anyway. // if ( // Check that the baseuri starts with pack://application:,,,/ ! DoSchemeAndHostMatch(baseuri, BaseUriHelper.PackAppBaseUri)) { isContainer = String.Compare(baseuri.Scheme, CompoundFileUri.UriSchemeContainer, StringComparison.OrdinalIgnoreCase) == 0; } Debug.Assert(baseuri.OriginalString == BaseUriHelper.FixFileUri(baseuri).OriginalString, "Base Uri is legacy file Uri and may not resolve relative uris correctly. This method should be updated"); // ToDo (younggk): PS# 25616 Once we move to PackUri, we don't need a special way // of resolving Uri. We can use the regurlar one. if (isContainer) { newUri = ResolveContainerUri(baseuri, orgUri); } else { #endif newUri = new Uri(baseuri, orgUri); #if CF_Envelope_Activation_Enabled } #endif } else { newUri = BaseUriHelper.FixFileUri(orgUri); } return newUri; } ////// Gets the referer to set as a header on the HTTP request. /// We do not set the referer if we are navigating to a /// differnet security zone or to a different Uri scheme. /// internal static string GetReferer(Uri destinationUri) { string referer = null; Uri sourceUri = MS.Internal.AppModel.SiteOfOriginContainer.BrowserSource; if (sourceUri != null) { SecurityZone sourceZone = MS.Internal.AppModel.CustomCredentialPolicy.MapUrlToZone(sourceUri); SecurityZone targetZone = MS.Internal.AppModel.CustomCredentialPolicy.MapUrlToZone(destinationUri); // We don't send any referer when crossing zone if (sourceZone == targetZone) { // We don't send any referer when going cross-scheme if (SecurityHelper.AreStringTypesEqual(sourceUri.Scheme, destinationUri.Scheme)) { // HTTPHeader requires the referer uri to be escaped. referer = sourceUri.GetComponents(UriComponents.AbsoluteUri, UriFormat.UriEscaped); } } } return referer; } #endif // PRESENTATION_CORE || PRESENTATIONFRAMEWORK } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007. // Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- DictionarySectionHandler.cs
- ToolStripRenderEventArgs.cs
- EventLogEntry.cs
- ApplicationSecurityManager.cs
- SiteMap.cs
- DataGridCommandEventArgs.cs
- SerializationStore.cs
- RuleSettingsCollection.cs
- StylusPointPropertyInfo.cs
- PlaceHolder.cs
- WhitespaceSignificantCollectionAttribute.cs
- ServiceDescriptionContext.cs
- SessionStateItemCollection.cs
- RC2CryptoServiceProvider.cs
- Expander.cs
- CompensationDesigner.cs
- SessionStateModule.cs
- ZeroOpNode.cs
- ConfigurationLocationCollection.cs
- HttpChannelFactory.cs
- HttpHandlerAction.cs
- XamlInt32CollectionSerializer.cs
- KnownBoxes.cs
- UrlPath.cs
- SchemaReference.cs
- GlyphRunDrawing.cs
- Encoder.cs
- ScriptManager.cs
- FilterQuery.cs
- DynamicResourceExtensionConverter.cs
- WeakReferenceEnumerator.cs
- HttpProtocolImporter.cs
- ColumnWidthChangedEvent.cs
- PathFigure.cs
- ScrollContentPresenter.cs
- AllMembershipCondition.cs
- DataTableMapping.cs
- HostingPreferredMapPath.cs
- SessionPageStatePersister.cs
- ImageField.cs
- CatalogZone.cs
- SharedMemory.cs
- GridItemPatternIdentifiers.cs
- JsonEncodingStreamWrapper.cs
- mansign.cs
- IntSecurity.cs
- WindowsRichEditRange.cs
- ContextMenuStripGroup.cs
- WorkflowRuntimeBehavior.cs
- counter.cs
- CollectionType.cs
- FrameworkObject.cs
- AnnotationStore.cs
- InternalRelationshipCollection.cs
- BlobPersonalizationState.cs
- Vector3DAnimationUsingKeyFrames.cs
- TextBoxDesigner.cs
- TextEditorTyping.cs
- DesignerLoader.cs
- basemetadatamappingvisitor.cs
- XslTransform.cs
- SemanticResolver.cs
- Comparer.cs
- EncoderReplacementFallback.cs
- NestedContainer.cs
- Codec.cs
- QueryLifecycle.cs
- ProfilePropertySettings.cs
- FamilyMap.cs
- XmlSchemaObjectCollection.cs
- StorageScalarPropertyMapping.cs
- DataGridViewRowsAddedEventArgs.cs
- FtpWebRequest.cs
- OleDbMetaDataFactory.cs
- StandardBindingImporter.cs
- VisualStyleInformation.cs
- VBIdentifierTrimConverter.cs
- ZipIOExtraFieldPaddingElement.cs
- DesignerCategoryAttribute.cs
- Application.cs
- LayoutTable.cs
- SiteOfOriginPart.cs
- EventItfInfo.cs
- ClientRolePrincipal.cs
- PreviewControlDesigner.cs
- XsltException.cs
- SpeakInfo.cs
- WindowsGraphics.cs
- ScriptReference.cs
- ThreadNeutralSemaphore.cs
- MasterPage.cs
- LicenseException.cs
- EncoderFallback.cs
- AnnotationResourceChangedEventArgs.cs
- ColorTranslator.cs
- PasswordBoxAutomationPeer.cs
- PropertyDescriptorCollection.cs
- ProbeDuplexAsyncResult.cs
- InvokeMethodActivity.cs
- VectorCollectionConverter.cs