/// <summary>
/// Constructor.
/// </summary>
/// <param name="creds">Credential handle.</param>
/// <param name="req_attributes">Request attribute flags.</param>
/// <param name="channel_binding">Optional channel binding token.</param>
/// <param name="data_rep">Data representation.</param>
public ServerAuthenticationContext(CredentialHandle creds, AcceptContextReqFlags req_attributes,
byte[] channel_binding, SecDataRep data_rep)
{
_creds = creds;
RequestAttributes = req_attributes & ~AcceptContextReqFlags.AllocateMemory;
DataRepresentation = data_rep;
_token_count = 0;
ChannelBinding = channel_binding;
}
/// <summary>
/// Constructor.
/// </summary>
/// <param name="creds">Credential handle.</param>
/// <param name="req_attributes">Request attribute flags.</param>
/// <param name="data_rep">Data representation.</param>
/// <param name="token">Initial authentication token.</param>
public ServerAuthenticationContext(CredentialHandle creds, byte[] token,
AcceptContextReqFlags req_attributes, SecDataRep data_rep)
{
_creds = creds;
_context = new SecHandle();
_req_flags = req_attributes & ~AcceptContextReqFlags.AllocateMemory;
_data_rep = data_rep;
Done = GenServerContext(true, token);
}
internal static extern SecStatusCode AcceptSecurityContext(
[In] SecHandle phCredential,
[In] SecHandle phContext,
SecBufferDesc pInput,
AcceptContextReqFlags fContextReq,
SecDataRep TargetDataRep,
[In, Out] SecHandle phNewContext,
[In, Out] SecBufferDesc pOutput,
out AcceptContextRetFlags pfContextAttr,
[Out] LargeInteger ptsExpiry
);
/// <summary>
/// Constructor.
/// </summary>
/// <param name="creds">Credential handle.</param>
/// <param name="req_attributes">Request attribute flags.</param>
/// <param name="channel_binding">Optional channel binding token.</param>
/// <param name="data_rep">Data representation.</param>
public ServerAuthenticationContext(CredentialHandle creds, AcceptContextReqFlags req_attributes,
byte[] channel_binding, SecDataRep data_rep)
{
_creds = creds;
_context = new SecHandle();
_req_flags = req_attributes & ~AcceptContextReqFlags.AllocateMemory;
_data_rep = data_rep;
_new_context = true;
_token_count = 0;
_channel_binding = channel_binding;
}
internal static SecStatusCode AcceptSecurityContext(
CredentialHandle credential,
SecHandle context,
AcceptContextReqFlags req_attributes,
SecDataRep data_rep,
IList <SecurityBuffer> input,
SecHandle new_context,
IList <SecurityBuffer> output,
out AcceptContextRetFlags ret_attributes,
LargeInteger expiry,
bool throw_on_error)
{
using (DisposableList list = new DisposableList())
{
var input_buffers = input?.ToBufferList(list);
var output_buffers = output?.ToBufferList(list);
var in_buffer_desc = input_buffers.ToDesc(list);
var out_buffer_desc = output_buffers.ToDesc(list);
SecStatusCode result = SecurityNativeMethods.AcceptSecurityContext(credential.CredHandle, context,
in_buffer_desc, req_attributes, data_rep, new_context, out_buffer_desc, out ret_attributes, expiry).CheckResult(throw_on_error);
if (!result.IsSuccess())
{
return(result);
}
try
{
if (result == SecStatusCode.SEC_I_COMPLETE_NEEDED || result == SecStatusCode.SEC_I_COMPLETE_AND_CONTINUE)
{
var comp_result = SecurityNativeMethods.CompleteAuthToken(context, out_buffer_desc).CheckResult(throw_on_error);
if (!comp_result.IsSuccess())
{
return(comp_result);
}
}
}
finally
{
if (result.IsSuccess())
{
output?.UpdateBuffers(out_buffer_desc);
}
}
return(result);
}
}
/// <summary>
/// Constructor.
/// </summary>
/// <param name="creds">Credential handle.</param>
/// <param name="req_attributes">Request attribute flags.</param>
/// <param name="data_rep">Data representation.</param>
public ServerAuthenticationContext(CredentialHandle creds,
AcceptContextReqFlags req_attributes, SecDataRep data_rep)
: this(creds, req_attributes, null, data_rep)
{
}
