mcs/class/System.Web/System.Web.Security/AnonymousIdentificationModule.cs

   1 //
   2 // System.Web.Security.AnonymousIdentificationModule
   3 //
   4 // Authors:
   5 //      Ben Maurer (bmaurer@users.sourceforge.net)
   6 //      Chris Toshok (toshok@ximian.com)
   7 //
   8 // (C) 2003 Ben Maurer
   9 // Copyright (c) 2005 Novell, Inc (http://www.novell.com)
  10 //
  11 // Permission is hereby granted, free of charge, to any person obtaining
  12 // a copy of this software and associated documentation files (the
  13 // "Software"), to deal in the Software without restriction, including
  14 // without limitation the rights to use, copy, modify, merge, publish,
  15 // distribute, sublicense, and/or sell copies of the Software, and to
  16 // permit persons to whom the Software is furnished to do so, subject to
  17 // the following conditions:
  18 //
  19 // The above copyright notice and this permission notice shall be
  20 // included in all copies or substantial portions of the Software.
  21 //
  22 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
  23 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
  24 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
  25 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
  26 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
  27 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
  28 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
  29 //
  30
  31
  32 using System;
  33 using System.ComponentModel;
  34 using System.Web;
  35 using System.Web.Configuration;
  36 using System.Text;
  37
  38 namespace System.Web.Security {
  39
  40         public sealed class AnonymousIdentificationModule : IHttpModule {
  41                 static readonly object creatingEvent = new object ();
  42
  43                 HttpApplication app;
  44                 EventHandlerList events = new EventHandlerList ();
  45
  46                 public event AnonymousIdentificationEventHandler Creating  {
  47                         add { events.AddHandler (creatingEvent, value); }
  48                         remove { events.RemoveHandler (creatingEvent, value); }
  49                 }
  50
  51                 public static void ClearAnonymousIdentifier ()
  52                 {
  53                         if (Config == null || !Config.Enabled)
  54                                 /* XXX The user for the current request is anonymous */
  55                                 throw new NotSupportedException ();
  56                 }
  57
  58                 public void Dispose ()
  59                 {
  60                         app.PostAuthenticateRequest -= OnEnter;
  61                         app = null;
  62                 }
  63
  64                 public void Init (HttpApplication app)
  65                 {
  66                         this.app = app;
  67                         app.PostAuthenticateRequest += OnEnter;
  68                 }
  69
  70                 [MonoTODO ("cookieless userid")]
  71                 void OnEnter (object source, EventArgs eventArgs)
  72                 {
  73                         if (!Enabled)
  74                                 return;
  75
  76                         string anonymousID = null;
  77
  78                         HttpCookie cookie = app.Request.Cookies [Config.CookieName];
  79                         if (cookie != null && (cookie.Expires == DateTime.MinValue || cookie.Expires > DateTime.Now)) {
  80                                 try {
  81                                         anonymousID = Encoding.Unicode.GetString (Convert.FromBase64String (cookie.Value));
  82                                 }
  83                                 catch { }
  84                         }
  85
  86                         if (anonymousID == null) {
  87                                 AnonymousIdentificationEventHandler eh = events [creatingEvent] as AnonymousIdentificationEventHandler;
  88                                 if (eh != null) {
  89                                         AnonymousIdentificationEventArgs e = new AnonymousIdentificationEventArgs (HttpContext.Current);
  90                                         eh (this, e);
  91
  92                                         anonymousID = e.AnonymousID;
  93                                 }
  94
  95                                 if (anonymousID == null)
  96                                         anonymousID = Guid.NewGuid ().ToString ();
  97
  98                                 HttpCookie newCookie = new HttpCookie (Config.CookieName);
  99                                 newCookie.Path = app.Request.ApplicationPath;
 100                                 newCookie.Expires = DateTime.Now + Config.CookieTimeout;
 101                                 newCookie.Value = Convert.ToBase64String (Encoding.Unicode.GetBytes (anonymousID));
 102                                 app.Response.AppendCookie (newCookie);
 103                         }
 104                         app.Request.AnonymousID = anonymousID;
 105                 }
 106
 107                 public static bool Enabled {
 108                         get {
 109                                 if (Config == null)
 110                                         return false;
 111
 112                                 return Config.Enabled;
 113                         }
 114                 }
 115
 116                 static AnonymousIdentificationSection Config = (AnonymousIdentificationSection) WebConfigurationManager.GetSection ("system.web/anonymousIdentification");
 117         }
 118 }
 119