Code:
/ WCF / WCF / 3.5.30729.1 / untmp / Orcas / SP / ndp / cdf / src / WCF / ServiceModel / System / ServiceModel / Dispatcher / AuthorizationBehavior.cs / 1 / AuthorizationBehavior.cs
//------------------------------------------------------------------------------ // Copyright (c) Microsoft Corporation. All rights reserved. //----------------------------------------------------------------------------- namespace System.ServiceModel.Dispatcher { using System.Diagnostics; using System.Collections.Generic; using System.ServiceModel.Channels; using System.ServiceModel; using System.ServiceModel.Description; using System.Collections.ObjectModel; using System.Globalization; using System.ServiceModel.Diagnostics; using System.ServiceModel.Security; using System.ServiceModel.Security.Tokens; using System.IdentityModel.Claims; using System.IdentityModel.Policy; using System.Security.Principal; using System.Runtime.CompilerServices; sealed class AuthorizationBehavior { static ServiceAuthorizationManager DefaultServiceAuthorizationManager = new ServiceAuthorizationManager(); ReadOnlyCollectionexternalAuthorizationPolicies; ServiceAuthorizationManager serviceAuthorizationManager; AuditLogLocation auditLogLocation; bool suppressAuditFailure; AuditLevel serviceAuthorizationAuditLevel; AuthorizationBehavior() { } public void Authorize(ref MessageRpc rpc) { SecurityMessageProperty security = SecurityMessageProperty.GetOrCreate(rpc.Request); security.ExternalAuthorizationPolicies = this.externalAuthorizationPolicies; ServiceAuthorizationManager serviceAuthorizationManager = this.serviceAuthorizationManager ?? DefaultServiceAuthorizationManager; try { if (!serviceAuthorizationManager.CheckAccess(rpc.OperationContext, ref rpc.Request)) { throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(CreateAccessDeniedFaultException()); } } catch (Exception ex) { if (DiagnosticUtility.IsFatal(ex)) { throw; } if (PerformanceCounters.PerformanceCountersEnabled) { PerformanceCounters.AuthorizationFailed(rpc.Operation.Name); } if (AuditLevel.Failure == (this.serviceAuthorizationAuditLevel & AuditLevel.Failure)) { try { string primaryIdentity; string authContextId = null; AuthorizationContext authContext = security.ServiceSecurityContext.AuthorizationContext; if (authContext != null) { primaryIdentity = SecurityUtils.GetIdentityNamesFromContext(authContext); authContextId = authContext.Id; } else { primaryIdentity = SecurityUtils.AnonymousIdentity.Name; authContextId = " "; } SecurityAuditHelper.WriteServiceAuthorizationFailureEvent(this.auditLogLocation, this.suppressAuditFailure, rpc.Request, rpc.Request.Headers.To, rpc.Request.Headers.Action, primaryIdentity, authContextId, serviceAuthorizationManager == DefaultServiceAuthorizationManager ? " " : serviceAuthorizationManager.GetType().Name, ex); } #pragma warning suppress 56500 catch (Exception auditException) { if (DiagnosticUtility.IsFatal(auditException)) throw; DiagnosticUtility.ExceptionUtility.TraceHandledException(auditException, TraceEventType.Error); } } throw; } if (AuditLevel.Success == (this.serviceAuthorizationAuditLevel & AuditLevel.Success)) { string primaryIdentity; string authContextId; AuthorizationContext authContext = security.ServiceSecurityContext.AuthorizationContext; if (authContext != null) { primaryIdentity = SecurityUtils.GetIdentityNamesFromContext(authContext); authContextId = authContext.Id; } else { primaryIdentity = SecurityUtils.AnonymousIdentity.Name; authContextId = " "; } SecurityAuditHelper.WriteServiceAuthorizationSuccessEvent(this.auditLogLocation, this.suppressAuditFailure, rpc.Request, rpc.Request.Headers.To, rpc.Request.Headers.Action, primaryIdentity, authContextId, serviceAuthorizationManager == DefaultServiceAuthorizationManager ? " " : serviceAuthorizationManager.GetType().Name); } } [MethodImpl(MethodImplOptions.NoInlining)] static AuthorizationBehavior CreateAuthorizationBehavior(DispatchRuntime dispatch) { AuthorizationBehavior behavior = new AuthorizationBehavior(); behavior.externalAuthorizationPolicies = dispatch.ExternalAuthorizationPolicies; behavior.serviceAuthorizationManager = dispatch.ServiceAuthorizationManager; behavior.auditLogLocation = dispatch.SecurityAuditLogLocation; behavior.suppressAuditFailure = dispatch.SuppressAuditFailure; behavior.serviceAuthorizationAuditLevel = dispatch.ServiceAuthorizationAuditLevel; return behavior; } public static AuthorizationBehavior TryCreate(DispatchRuntime dispatch) { if (dispatch == null) throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(new ArgumentNullException("dispatch")); if (!dispatch.RequiresAuthorization) return null; return CreateAuthorizationBehavior(dispatch); } internal static Exception CreateAccessDeniedFaultException() { // always use default version? SecurityVersion wss = SecurityVersion.Default; FaultCode faultCode = FaultCode.CreateSenderFaultCode(wss.FailedAuthenticationFaultCode.Value, wss.HeaderNamespace.Value); FaultReason faultReason = new FaultReason(SR.GetString(SR.AccessDenied), CultureInfo.CurrentCulture); return new FaultException(faultReason, faultCode); } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007. // Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- streamingZipPartStream.cs
- BasicKeyConstraint.cs
- SQLDateTime.cs
- RightsManagementInformation.cs
- InvokeHandlers.cs
- CmsUtils.cs
- TextTrailingCharacterEllipsis.cs
- StickyNoteHelper.cs
- DbParameterCollectionHelper.cs
- _SecureChannel.cs
- XmlQualifiedName.cs
- FrameworkContentElement.cs
- UriWriter.cs
- RangeContentEnumerator.cs
- PartialCachingAttribute.cs
- WebPartDescription.cs
- FunctionCommandText.cs
- VScrollBar.cs
- MonthCalendar.cs
- ResetableIterator.cs
- OracleConnectionString.cs
- SoapCommonClasses.cs
- ValidationHelper.cs
- ProfileSettingsCollection.cs
- SqlGenerator.cs
- SelfIssuedTokenFactoryCredential.cs
- CaretElement.cs
- Attributes.cs
- QilChoice.cs
- ComplexType.cs
- Clipboard.cs
- BamlResourceContent.cs
- TcpWorkerProcess.cs
- RtfToXamlReader.cs
- MenuItemStyleCollection.cs
- PrefixQName.cs
- Boolean.cs
- TiffBitmapDecoder.cs
- TextLineBreak.cs
- Internal.cs
- QuaternionConverter.cs
- SymDocumentType.cs
- SizeIndependentAnimationStorage.cs
- Attributes.cs
- CompilationLock.cs
- AsmxEndpointPickerExtension.cs
- EndOfStreamException.cs
- ElementAction.cs
- LongTypeConverter.cs
- Int16Animation.cs
- CodeCatchClause.cs
- MobileTemplatedControlDesigner.cs
- AttachmentCollection.cs
- XmlLinkedNode.cs
- RelatedView.cs
- BamlRecords.cs
- SubqueryRules.cs
- CellNormalizer.cs
- MetadataItemSerializer.cs
- FixedSOMLineCollection.cs
- FormsAuthenticationModule.cs
- SEHException.cs
- UnsafeNativeMethods.cs
- StatusStrip.cs
- FlowPosition.cs
- PipelineModuleStepContainer.cs
- ZipIOBlockManager.cs
- Scheduler.cs
- XmlSchemaObjectCollection.cs
- PeerInputChannelListener.cs
- MenuItemBindingCollection.cs
- HttpCookieCollection.cs
- ConsoleTraceListener.cs
- TreeView.cs
- EntityCommand.cs
- DataDocumentXPathNavigator.cs
- BinaryKeyIdentifierClause.cs
- FullTrustAssembliesSection.cs
- DynamicHyperLink.cs
- Content.cs
- AsyncOperation.cs
- SQLInt32Storage.cs
- ParallelActivityDesigner.cs
- ResetableIterator.cs
- UrlAuthFailedErrorFormatter.cs
- Baml2006ReaderContext.cs
- ComponentChangingEvent.cs
- ErrorEventArgs.cs
- FullTextState.cs
- HistoryEventArgs.cs
- DataGridViewSelectedRowCollection.cs
- DataGridViewDataConnection.cs
- MultiDataTrigger.cs
- XmlUtf8RawTextWriter.cs
- CreateUserWizardStep.cs
- StackBuilderSink.cs
- WebServiceHost.cs
- InfoCardKeyedHashAlgorithm.cs
- ApplicationSecurityInfo.cs
- TransactionWaitAsyncResult.cs