mcs/class/System.ServiceModel/System.ServiceModel.Security.Tokens/SslSecurityTokenParameters.cs

   1 //
   2 // SslSecurityTokenParameters.cs
   3 //
   4 // Author:
   5 //      Atsushi Enomoto <atsushi@ximian.com>
   6 //
   7 // Copyright (C) 2006 Novell, Inc.  http://www.novell.com
   8 //
   9 // Permission is hereby granted, free of charge, to any person obtaining
  10 // a copy of this software and associated documentation files (the
  11 // "Software"), to deal in the Software without restriction, including
  12 // without limitation the rights to use, copy, modify, merge, publish,
  13 // distribute, sublicense, and/or sell copies of the Software, and to
  14 // permit persons to whom the Software is furnished to do so, subject to
  15 // the following conditions:
  16 //
  17 // The above copyright notice and this permission notice shall be
  18 // included in all copies or substantial portions of the Software.
  19 //
  20 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
  21 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
  22 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
  23 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
  24 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
  25 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
  26 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
  27 //
  28 using System.IdentityModel.Selectors;
  29 using System.IdentityModel.Tokens;
  30 using System.ServiceModel.Security;
  31
  32 using ReqType = System.ServiceModel.Security.Tokens.ServiceModelSecurityTokenRequirement;
  33
  34 namespace System.ServiceModel.Security.Tokens
  35 {
  36         public class SslSecurityTokenParameters : SecurityTokenParameters
  37         {
  38                 public SslSecurityTokenParameters ()
  39                         : this (false, false)
  40                 {
  41                 }
  42
  43                 public SslSecurityTokenParameters (bool requireClientCertificate)
  44                         : this (requireClientCertificate, false)
  45                 {
  46                 }
  47
  48                 public SslSecurityTokenParameters (bool requireClientCertificate,
  49                         bool requireCancellation)
  50                 {
  51                         this.cert = requireClientCertificate;
  52                         this.cancel = requireCancellation;
  53                 }
  54
  55                 protected SslSecurityTokenParameters (SslSecurityTokenParameters other)
  56                         : base (other)
  57                 {
  58                         cert = other.cert;
  59                         cancel = other.cancel;
  60                 }
  61
  62                 bool cert, cancel;
  63
  64                 public bool RequireClientCertificate {
  65                         get { return cert; }
  66                         set { cert = value; }
  67                 }
  68
  69                 public bool RequireCancellation {
  70                         get { return cancel; }
  71                         set { cancel = value; }
  72                 }
  73
  74                 public override string ToString ()
  75                 {
  76                         return base.ToString ();
  77                 }
  78
  79                 protected override bool HasAsymmetricKey {
  80                         get { return false; }
  81                 }
  82
  83                 protected override bool SupportsClientAuthentication {
  84                         get { return false; }
  85                 }
  86
  87                 protected override bool SupportsClientWindowsIdentity {
  88                         get { return false; }
  89                 }
  90
  91                 protected override bool SupportsServerAuthentication {
  92                         get { return true; }
  93                 }
  94
  95                 protected override SecurityTokenParameters CloneCore ()
  96                 {
  97                         return new SslSecurityTokenParameters (this);
  98                 }
  99
 100                 protected override SecurityKeyIdentifierClause CreateKeyIdentifierClause (
 101                         SecurityToken token, SecurityTokenReferenceStyle referenceStyle)
 102                 {
 103                         if (token == null)
 104                                 throw new ArgumentNullException ("token");
 105
 106                         SecurityContextSecurityToken sct = token as SecurityContextSecurityToken;
 107                         if (sct == null)
 108                                 throw new ArgumentException (String.Format ("Not supported SecurityToken: '{0}'", token));
 109                         return referenceStyle == SecurityTokenReferenceStyle.Internal ?
 110                                 (SecurityKeyIdentifierClause)
 111                                 new LocalIdKeyIdentifierClause (sct.Id) :
 112                                 new SecurityContextKeyIdentifierClause (sct.ContextId, sct.KeyGeneration);
 113                         /*
 114                         GenericXmlSecurityToken x = token as GenericXmlSecurityToken;
 115                         if (x == null)
 116                                 throw new ArgumentException (String.Format ("Not supported SecurityToken: '{0}'", token));
 117                         return referenceStyle == SecurityTokenReferenceStyle.Internal ? x.InternalTokenReference : x.ExternalTokenReference;
 118                         */
 119                 }
 120
 121                 protected internal override void InitializeSecurityTokenRequirement (SecurityTokenRequirement requirement)
 122                 {
 123                         requirement.TokenType =
 124                                 RequireClientCertificate ?
 125                                 ServiceModelSecurityTokenTypes.MutualSslnego :
 126                                 ServiceModelSecurityTokenTypes.AnonymousSslnego;
 127                         requirement.RequireCryptographicToken = true;
 128                         requirement.Properties [ReqType.SupportSecurityContextCancellationProperty] = RequireCancellation;
 129                         requirement.Properties [ReqType.IssuedSecurityTokenParametersProperty] = this.Clone ();
 130                         requirement.KeyType = SecurityKeyType.SymmetricKey;
 131                 }
 132         }
 133 }