mcs/class/System/System.Net/HttpListenerContext.cs

   1 //
   2 // System.Net.HttpListenerContext
   3 //
   4 // Author:
   5 //      Gonzalo Paniagua Javier (gonzalo@novell.com)
   6 //
   7 // Copyright (c) 2005 Novell, Inc. (http://www.novell.com)
   8 //
   9 // Permission is hereby granted, free of charge, to any person obtaining
  10 // a copy of this software and associated documentation files (the
  11 // "Software"), to deal in the Software without restriction, including
  12 // without limitation the rights to use, copy, modify, merge, publish,
  13 // distribute, sublicense, and/or sell copies of the Software, and to
  14 // permit persons to whom the Software is furnished to do so, subject to
  15 // the following conditions:
  16 //
  17 // The above copyright notice and this permission notice shall be
  18 // included in all copies or substantial portions of the Software.
  19 //
  20 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
  21 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
  22 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
  23 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
  24 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
  25 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
  26 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
  27 //
  28
  29 #if SECURITY_DEP
  30
  31 using System.Collections.Specialized;
  32 using System.IO;
  33 using System.Security.Principal;
  34 using System.Text;
  35 using System.Threading.Tasks;
  36 using System.Net.WebSockets;
  37
  38 namespace System.Net {
  39         public sealed class HttpListenerContext {
  40                 HttpListenerRequest request;
  41                 HttpListenerResponse response;
  42                 IPrincipal user;
  43                 HttpConnection cnc;
  44                 string error;
  45                 int err_status = 400;
  46                 internal HttpListener Listener;
  47
  48                 internal HttpListenerContext (HttpConnection cnc)
  49                 {
  50                         this.cnc = cnc;
  51                         request = new HttpListenerRequest (this);
  52                         response = new HttpListenerResponse (this);
  53                 }
  54
  55                 internal int ErrorStatus {
  56                         get { return err_status; }
  57                         set { err_status = value; }
  58                 }
  59
  60                 internal string ErrorMessage {
  61                         get { return error; }
  62                         set { error = value; }
  63                 }
  64
  65                 internal bool HaveError {
  66                         get { return (error != null); }
  67                 }
  68
  69                 internal HttpConnection Connection {
  70                         get { return cnc; }
  71                 }
  72
  73                 public HttpListenerRequest Request {
  74                         get { return request; }
  75                 }
  76
  77                 public HttpListenerResponse Response {
  78                         get { return response; }
  79                 }
  80
  81                 public IPrincipal User {
  82                         get { return user; }
  83                 }
  84
  85                 internal void ParseAuthentication (AuthenticationSchemes expectedSchemes) {
  86                         if (expectedSchemes == AuthenticationSchemes.Anonymous)
  87                                 return;
  88
  89                         // TODO: Handle NTLM/Digest modes
  90                         string header = request.Headers ["Authorization"];
  91                         if (header == null || header.Length < 2)
  92                                 return;
  93
  94                         string [] authenticationData = header.Split (new char [] {' '}, 2);
  95                         if (string.Compare (authenticationData [0], "basic", true) == 0) {
  96                                 user = ParseBasicAuthentication (authenticationData [1]);
  97                         }
  98                         // TODO: throw if malformed -> 400 bad request
  99                 }
 100
 101                 internal IPrincipal ParseBasicAuthentication (string authData) {
 102                         try {
 103                                 // Basic AUTH Data is a formatted Base64 String
 104                                 //string domain = null;
 105                                 string user = null;
 106                                 string password = null;
 107                                 int pos = -1;
 108                                 string authString = System.Text.Encoding.Default.GetString (Convert.FromBase64String (authData));
 109
 110                                 // The format is DOMAIN\username:password
 111                                 // Domain is optional
 112
 113                                 pos = authString.IndexOf (':');
 114
 115                                 // parse the password off the end
 116                                 password = authString.Substring (pos+1);
 117
 118                                 // discard the password
 119                                 authString = authString.Substring (0, pos);
 120
 121                                 // check if there is a domain
 122                                 pos = authString.IndexOf ('\\');
 123
 124                                 if (pos > 0) {
 125                                         //domain = authString.Substring (0, pos);
 126                                         user = authString.Substring (pos);
 127                                 } else {
 128                                         user = authString;
 129                                 }
 130
 131                                 HttpListenerBasicIdentity identity = new HttpListenerBasicIdentity (user, password);
 132                                 // TODO: What are the roles MS sets
 133                                 return new GenericPrincipal (identity, new string [0]);
 134                         } catch (Exception) {
 135                                 // Invalid auth data is swallowed silently
 136                                 return null;
 137                         }
 138                 }
 139
 140                 [MonoTODO]
 141                 public Task<HttpListenerWebSocketContext> AcceptWebSocketAsync (string subProtocol)
 142                 {
 143                         throw new NotImplementedException ();
 144                 }
 145
 146                 [MonoTODO]
 147                 public Task<HttpListenerWebSocketContext> AcceptWebSocketAsync (string subProtocol, TimeSpan keepAliveInterval)
 148                 {
 149                         throw new NotImplementedException ();
 150                 }
 151
 152                 [MonoTODO]
 153                 public Task<HttpListenerWebSocketContext> AcceptWebSocketAsync (string subProtocol, int receiveBufferSize, TimeSpan keepAliveInterval)
 154                 {
 155                         throw new NotImplementedException ();
 156                 }
 157
 158                 [MonoTODO]
 159                 public Task<HttpListenerWebSocketContext> AcceptWebSocketAsync (string subProtocol, int receiveBufferSize, TimeSpan keepAliveInterval, ArraySegment<byte> internalBuffer)
 160                 {
 161                         throw new NotImplementedException ();
 162                 }
 163         }
 164 }
 165 #endif
 166