public SspiSecurityContext(string servicePrincipalName, SspiSecurityCredential credential)
: base(IntPtr.Zero, true)
{
_servicePrincipalName = servicePrincipalName;
_credential = credential;
_sspiHandle = new SspiHandle();
}
protected override void Dispose(bool disposing)
{
if (!_isDisposed && disposing)
{
_credential?.Dispose();
_credential = null;
_isDisposed = true;
}
base.Dispose(disposing);
}
// public methods
public static SspiSecurityCredential Acquire(SspiPackage package, string username, SecureString password)
{
long timestamp;
var credential = new SspiSecurityCredential();
#if NET472
RuntimeHelpers.PrepareConstrainedRegions();
#endif
try { }
finally
{
uint result;
if (password == null)
{
result = NativeMethods.AcquireCredentialsHandle(
null,
package.ToString(),
SecurityCredentialUse.Outbound,
IntPtr.Zero,
IntPtr.Zero,
0,
IntPtr.Zero,
ref credential._sspiHandle,
out timestamp);
}
else
{
using (var authIdentity = new AuthIdentity(username, password))
{
// TODO: make this secure by using SecurePassword
result = NativeMethods.AcquireCredentialsHandle(
null,
package.ToString(),
SecurityCredentialUse.Outbound,
IntPtr.Zero,
authIdentity,
0,
IntPtr.Zero,
ref credential._sspiHandle,
out timestamp);
}
}
if (result != NativeMethods.SEC_E_OK)
{
credential.SetHandleAsInvalid();
throw NativeMethods.CreateException(result, "Unable to acquire credential.");
}
}
return(credential);
}
