2 // SslSecurityTokenParameters.cs
5 // Atsushi Enomoto <atsushi@ximian.com>
7 // Copyright (C) 2006 Novell, Inc. http://www.novell.com
9 // Permission is hereby granted, free of charge, to any person obtaining
10 // a copy of this software and associated documentation files (the
11 // "Software"), to deal in the Software without restriction, including
12 // without limitation the rights to use, copy, modify, merge, publish,
13 // distribute, sublicense, and/or sell copies of the Software, and to
14 // permit persons to whom the Software is furnished to do so, subject to
15 // the following conditions:
17 // The above copyright notice and this permission notice shall be
18 // included in all copies or substantial portions of the Software.
20 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
21 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
22 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
23 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
24 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
25 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
26 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
28 using System.IdentityModel.Selectors;
29 using System.IdentityModel.Tokens;
30 using System.ServiceModel.Security;
32 using ReqType = System.ServiceModel.Security.Tokens.ServiceModelSecurityTokenRequirement;
34 namespace System.ServiceModel.Security.Tokens
36 public class SslSecurityTokenParameters : SecurityTokenParameters
38 public SslSecurityTokenParameters ()
43 public SslSecurityTokenParameters (bool requireClientCertificate)
44 : this (requireClientCertificate, false)
48 public SslSecurityTokenParameters (bool requireClientCertificate,
49 bool requireCancellation)
51 this.cert = requireClientCertificate;
52 this.cancel = requireCancellation;
55 protected SslSecurityTokenParameters (SslSecurityTokenParameters other)
59 cancel = other.cancel;
64 public bool RequireClientCertificate {
69 public bool RequireCancellation {
70 get { return cancel; }
71 set { cancel = value; }
74 public override string ToString ()
76 return base.ToString ();
79 protected override bool HasAsymmetricKey {
83 protected override bool SupportsClientAuthentication {
87 protected override bool SupportsClientWindowsIdentity {
91 protected override bool SupportsServerAuthentication {
95 protected override SecurityTokenParameters CloneCore ()
97 return new SslSecurityTokenParameters (this);
100 protected override SecurityKeyIdentifierClause CreateKeyIdentifierClause (
101 SecurityToken token, SecurityTokenReferenceStyle referenceStyle)
104 throw new ArgumentNullException ("token");
106 SecurityContextSecurityToken sct = token as SecurityContextSecurityToken;
108 throw new ArgumentException (String.Format ("Not supported SecurityToken: '{0}'", token));
109 return referenceStyle == SecurityTokenReferenceStyle.Internal ?
110 (SecurityKeyIdentifierClause)
111 new LocalIdKeyIdentifierClause (sct.Id) :
112 new SecurityContextKeyIdentifierClause (sct.ContextId, sct.KeyGeneration);
114 GenericXmlSecurityToken x = token as GenericXmlSecurityToken;
116 throw new ArgumentException (String.Format ("Not supported SecurityToken: '{0}'", token));
117 return referenceStyle == SecurityTokenReferenceStyle.Internal ? x.InternalTokenReference : x.ExternalTokenReference;
121 protected internal override void InitializeSecurityTokenRequirement (SecurityTokenRequirement requirement)
123 requirement.TokenType =
124 RequireClientCertificate ?
125 ServiceModelSecurityTokenTypes.MutualSslnego :
126 ServiceModelSecurityTokenTypes.AnonymousSslnego;
127 requirement.RequireCryptographicToken = true;
128 requirement.Properties [ReqType.SupportSecurityContextCancellationProperty] = RequireCancellation;
129 requirement.Properties [ReqType.IssuedSecurityTokenParametersProperty] = this.Clone ();
130 requirement.KeyType = SecurityKeyType.SymmetricKey;