2 // AuthenticationService.cs
\r
5 // Konstantin Triger <kostat@mainsoft.com>
\r
7 // (C) 2008 Mainsoft, Inc. http://www.mainsoft.com
\r
10 // Permission is hereby granted, free of charge, to any person obtaining
\r
11 // a copy of this software and associated documentation files (the
\r
12 // "Software"), to deal in the Software without restriction, including
\r
13 // without limitation the rights to use, copy, modify, merge, publish,
\r
14 // distribute, sublicense, and/or sell copies of the Software, and to
\r
15 // permit persons to whom the Software is furnished to do so, subject to
\r
16 // the following conditions:
\r
18 // The above copyright notice and this permission notice shall be
\r
19 // included in all copies or substantial portions of the Software.
\r
21 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
\r
22 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
\r
23 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
\r
24 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
\r
25 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
\r
26 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
\r
27 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
\r
31 using System.Collections.Generic;
\r
33 using System.Web.Services;
\r
34 using System.Web.Configuration;
\r
35 using System.Web.Security;
\r
37 namespace System.Web.Script.Services
\r
39 sealed class AuthenticationService
\r
41 public const string DefaultWebServicePath = "/Authentication_JSON_AppService.axd";
\r
43 readonly ScriptingAuthenticationServiceSection _section;
\r
45 public AuthenticationService () {
\r
46 _section = (ScriptingAuthenticationServiceSection) WebConfigurationManager.GetSection ("system.web.extensions/scripting/webServices/authenticationService");
49 void EnsureEnabled() {
\r
50 if (_section == null || !_section.Enabled)
\r
51 throw new InvalidOperationException ("Authentication service is disabled.");
\r
53 if (_section.RequireSSL && !HttpContext.Current.Request.IsSecureConnection)
\r
54 throw new HttpException ("SSL is required for this operation.");
\r
58 public bool Login (string userName, string password, bool createPersistentCookie) {
\r
61 if (!Membership.Provider.ValidateUser (userName, password))
\r
64 FormsAuthentication.SetAuthCookie (userName, createPersistentCookie);
\r
70 public void Logout () {
\r
73 FormsAuthentication.SignOut ();
\r