mcs/class/System.Web/System.Web.Security/AnonymousIdentificationModule.cs

   1 //
   2 // System.Web.Security.AnonymousIdentificationModule
   3 //
   4 // Authors:
   5 //      Ben Maurer (bmaurer@users.sourceforge.net)
   6 //      Chris Toshok (toshok@ximian.com)
   7 //
   8 // (C) 2003 Ben Maurer
   9 // Copyright (c) 2005 Novell, Inc (http://www.novell.com)
  10 //
  11 // Permission is hereby granted, free of charge, to any person obtaining
  12 // a copy of this software and associated documentation files (the
  13 // "Software"), to deal in the Software without restriction, including
  14 // without limitation the rights to use, copy, modify, merge, publish,
  15 // distribute, sublicense, and/or sell copies of the Software, and to
  16 // permit persons to whom the Software is furnished to do so, subject to
  17 // the following conditions:
  18 //
  19 // The above copyright notice and this permission notice shall be
  20 // included in all copies or substantial portions of the Software.
  21 //
  22 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
  23 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
  24 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
  25 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
  26 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
  27 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
  28 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
  29 //
  30
  31 #if NET_2_0
  32
  33 using System;
  34 using System.ComponentModel;
  35 using System.Web;
  36 using System.Web.Configuration;
  37 using System.Text;
  38
  39 namespace System.Web.Security {
  40
  41         public sealed class AnonymousIdentificationModule : IHttpModule {
  42                 static readonly object creatingEvent = new object ();
  43
  44                 HttpApplication app;
  45                 EventHandlerList events = new EventHandlerList ();
  46
  47                 public event AnonymousIdentificationEventHandler Creating  {
  48                         add { events.AddHandler (creatingEvent, value); }
  49                         remove { events.RemoveHandler (creatingEvent, value); }
  50                 }
  51
  52                 public static void ClearAnonymousIdentifier ()
  53                 {
  54                         if (Config == null || !Config.Enabled)
  55                                 /* XXX The user for the current request is anonymous */
  56                                 throw new NotSupportedException ();
  57                 }
  58
  59                 public void Dispose ()
  60                 {
  61                         app.PostAuthenticateRequest -= OnEnter;
  62                         app = null;
  63                 }
  64
  65                 public void Init (HttpApplication app)
  66                 {
  67                         this.app = app;
  68                         app.PostAuthenticateRequest += OnEnter;
  69                 }
  70
  71                 [MonoTODO ("cookieless userid")]
  72                 void OnEnter (object source, EventArgs eventArgs)
  73                 {
  74                         if (!Enabled)
  75                                 return;
  76
  77                         string anonymousID = null;
  78
  79                         HttpCookie cookie = app.Request.Cookies [Config.CookieName];
  80                         if (cookie != null && (cookie.Expires == DateTime.MinValue || cookie.Expires > DateTime.Now)) {
  81                                 try {
  82                                         anonymousID = Encoding.Unicode.GetString (Convert.FromBase64String (cookie.Value));
  83                                 }
  84                                 catch { }
  85                         }
  86
  87                         if (anonymousID == null) {
  88                                 AnonymousIdentificationEventHandler eh = events [creatingEvent] as AnonymousIdentificationEventHandler;
  89                                 if (eh != null) {
  90                                         AnonymousIdentificationEventArgs e = new AnonymousIdentificationEventArgs (HttpContext.Current);
  91                                         eh (this, e);
  92
  93                                         anonymousID = e.AnonymousID;
  94                                 }
  95
  96                                 if (anonymousID == null)
  97                                         anonymousID = Guid.NewGuid ().ToString ();
  98
  99                                 HttpCookie newCookie = new HttpCookie (Config.CookieName);
 100                                 newCookie.Path = app.Request.ApplicationPath;
 101                                 newCookie.Expires = DateTime.Now + Config.CookieTimeout;
 102                                 newCookie.Value = Convert.ToBase64String (Encoding.Unicode.GetBytes (anonymousID));
 103                                 app.Response.AppendCookie (newCookie);
 104                         }
 105                         app.Request.AnonymousID = anonymousID;
 106                 }
 107
 108                 public static bool Enabled {
 109                         get {
 110                                 if (Config == null)
 111                                         return false;
 112
 113                                 return Config.Enabled;
 114                         }
 115                 }
 116
 117 #if TARGET_JVM
 118                 static AnonymousIdentificationSection Config
 119                 {
 120                         get
 121                         {
 122                                 AnonymousIdentificationSection config = (AnonymousIdentificationSection) AppDomain.CurrentDomain.GetData ("Anonymous.Config");
 123                                 if (config == null) {
 124                                         lock (typeof (AnonymousIdentificationModule)) {
 125                                                 config = (AnonymousIdentificationSection) AppDomain.CurrentDomain.GetData ("Anonymous.Config");
 126                                                 if (config == null)
 127                                                         config = (AnonymousIdentificationSection) WebConfigurationManager.GetSection ("system.web/anonymousIdentification");
 128                                                 AppDomain.CurrentDomain.SetData ("Anonymous.Config", config);
 129                                         }
 130                                 }
 131                                 return config;
 132                         }
 133                 }
 134 #else
 135                 static AnonymousIdentificationSection Config = (AnonymousIdentificationSection) WebConfigurationManager.GetSection ("system.web/anonymousIdentification");
 136 #endif
 137         }
 138 }
 139 #endif
 140