mcs/class/System/System.Net/HttpListenerContext.cs

   1 //
   2 // System.Net.HttpListenerContext
   3 //
   4 // Author:
   5 //      Gonzalo Paniagua Javier (gonzalo@novell.com)
   6 //
   7 // Copyright (c) 2005 Novell, Inc. (http://www.novell.com)
   8 //
   9 // Permission is hereby granted, free of charge, to any person obtaining
  10 // a copy of this software and associated documentation files (the
  11 // "Software"), to deal in the Software without restriction, including
  12 // without limitation the rights to use, copy, modify, merge, publish,
  13 // distribute, sublicense, and/or sell copies of the Software, and to
  14 // permit persons to whom the Software is furnished to do so, subject to
  15 // the following conditions:
  16 //
  17 // The above copyright notice and this permission notice shall be
  18 // included in all copies or substantial portions of the Software.
  19 //
  20 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
  21 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
  22 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
  23 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
  24 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
  25 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
  26 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
  27 //
  28
  29 #if SECURITY_DEP
  30
  31 using System.Collections.Specialized;
  32 using System.IO;
  33 using System.Security.Principal;
  34 using System.Text;
  35 #if NET_4_5
  36 using System.Threading.Tasks;
  37 using System.Net.WebSockets;
  38 #endif
  39
  40 namespace System.Net {
  41         public sealed class HttpListenerContext {
  42                 HttpListenerRequest request;
  43                 HttpListenerResponse response;
  44                 IPrincipal user;
  45                 HttpConnection cnc;
  46                 string error;
  47                 int err_status = 400;
  48                 internal HttpListener Listener;
  49
  50                 internal HttpListenerContext (HttpConnection cnc)
  51                 {
  52                         this.cnc = cnc;
  53                         request = new HttpListenerRequest (this);
  54                         response = new HttpListenerResponse (this);
  55                 }
  56
  57                 internal int ErrorStatus {
  58                         get { return err_status; }
  59                         set { err_status = value; }
  60                 }
  61
  62                 internal string ErrorMessage {
  63                         get { return error; }
  64                         set { error = value; }
  65                 }
  66
  67                 internal bool HaveError {
  68                         get { return (error != null); }
  69                 }
  70
  71                 internal HttpConnection Connection {
  72                         get { return cnc; }
  73                 }
  74
  75                 public HttpListenerRequest Request {
  76                         get { return request; }
  77                 }
  78
  79                 public HttpListenerResponse Response {
  80                         get { return response; }
  81                 }
  82
  83                 public IPrincipal User {
  84                         get { return user; }
  85                 }
  86
  87                 internal void ParseAuthentication (AuthenticationSchemes expectedSchemes) {
  88                         if (expectedSchemes == AuthenticationSchemes.Anonymous)
  89                                 return;
  90
  91                         // TODO: Handle NTLM/Digest modes
  92                         string header = request.Headers ["Authorization"];
  93                         if (header == null || header.Length < 2)
  94                                 return;
  95
  96                         string [] authenticationData = header.Split (new char [] {' '}, 2);
  97                         if (string.Compare (authenticationData [0], "basic", true) == 0) {
  98                                 user = ParseBasicAuthentication (authenticationData [1]);
  99                         }
 100                         // TODO: throw if malformed -> 400 bad request
 101                 }
 102
 103                 internal IPrincipal ParseBasicAuthentication (string authData) {
 104                         try {
 105                                 // Basic AUTH Data is a formatted Base64 String
 106                                 //string domain = null;
 107                                 string user = null;
 108                                 string password = null;
 109                                 int pos = -1;
 110                                 string authString = System.Text.Encoding.Default.GetString (Convert.FromBase64String (authData));
 111
 112                                 // The format is DOMAIN\username:password
 113                                 // Domain is optional
 114
 115                                 pos = authString.IndexOf (':');
 116
 117                                 // parse the password off the end
 118                                 password = authString.Substring (pos+1);
 119
 120                                 // discard the password
 121                                 authString = authString.Substring (0, pos);
 122
 123                                 // check if there is a domain
 124                                 pos = authString.IndexOf ('\\');
 125
 126                                 if (pos > 0) {
 127                                         //domain = authString.Substring (0, pos);
 128                                         user = authString.Substring (pos);
 129                                 } else {
 130                                         user = authString;
 131                                 }
 132
 133                                 HttpListenerBasicIdentity identity = new HttpListenerBasicIdentity (user, password);
 134                                 // TODO: What are the roles MS sets
 135                                 return new GenericPrincipal (identity, new string [0]);
 136                         } catch (Exception) {
 137                                 // Invalid auth data is swallowed silently
 138                                 return null;
 139                         }
 140                 }
 141
 142 #if NET_4_5
 143                 public Task<HttpListenerWebSocketContext> AcceptWebSocketAsync (string subProtocol)
 144                 {
 145                         throw new NotImplementedException ();
 146                 }
 147
 148                 public Task<HttpListenerWebSocketContext> AcceptWebSocketAsync (string subProtocol, int receiveBufferSize, TimeSpan keepAliveInterval)
 149                 {
 150                         throw new NotImplementedException ();
 151                 }
 152
 153                 public Task<HttpListenerWebSocketContext> AcceptWebSocketAsync (string subProtocol, int receiveBufferSize, TimeSpan keepAliveInterval, ArraySegment<byte> internalBuffer)
 154                 {
 155                         throw new NotImplementedException ();
 156                 }
 157 #endif
 158         }
 159 }
 160 #endif
 161