// Token: 0x060000BB RID: 187 RVA: 0x0000858C File Offset: 0x0000678C
private void SetActiveSyncDeviceContainerPermissions(ActiveSyncDevices container)
{
ADDeviceManager.ReadStaticADData(this.protocolLogger);
RawSecurityDescriptor rawSecurityDescriptor = null;
ADNotificationAdapter.RunADOperation(delegate()
{
rawSecurityDescriptor = this.session.ReadSecurityDescriptor(container.Id);
});
if (rawSecurityDescriptor == null)
{
if (this.protocolLogger != null)
{
this.protocolLogger.SetValue(ProtocolLoggerData.Error, "ADObjectWithNoSecurityDescriptor");
}
AirSyncPermanentException ex = new AirSyncPermanentException(HttpStatusCode.InternalServerError, StatusCode.ServerError, EASServerStrings.NullNTSD(container.Id.DistinguishedName), true);
throw ex;
}
AirSyncDiagnostics.TraceDebug <string>(this.tracer, this, "Setting ACL on device container for user \"{0}\".", this.userName);
ActiveDirectorySecurity acl = new ActiveDirectorySecurity();
byte[] array = new byte[rawSecurityDescriptor.BinaryLength];
rawSecurityDescriptor.GetBinaryForm(array, 0);
acl.SetSecurityDescriptorBinaryForm(array);
acl.AddAccessRule(new ActiveDirectoryAccessRule(ADDeviceManager.exchangeServersGroupSid, ActiveDirectoryRights.CreateChild | ActiveDirectoryRights.DeleteChild | ActiveDirectoryRights.ListChildren | ActiveDirectoryRights.ReadProperty | ActiveDirectoryRights.WriteProperty | ActiveDirectoryRights.ListObject, AccessControlType.Allow, ADDeviceManager.activeSyncDeviceClass, ActiveDirectorySecurityInheritance.None));
acl.AddAccessRule(new ActiveDirectoryAccessRule(ADDeviceManager.exchangeServersGroupSid, ActiveDirectoryRights.Delete | ActiveDirectoryRights.ReadProperty | ActiveDirectoryRights.WriteProperty | ActiveDirectoryRights.ListObject, AccessControlType.Allow, ActiveDirectorySecurityInheritance.Children, ADDeviceManager.activeSyncDeviceClass));
ADNotificationAdapter.RunADOperation(delegate()
{
this.session.SaveSecurityDescriptor(container, new RawSecurityDescriptor(acl.GetSecurityDescriptorBinaryForm(), 0));
});
}
// Token: 0x060000B8 RID: 184 RVA: 0x00007D00 File Offset: 0x00005F00
private MobileDevice CreateMobileDevice(GlobalInfo globalInfo, ExDateTime syncStorageCreationTime, bool checkForMaxDevices, bool retryIfFailed, MailboxSession mailboxSession)
{
ActiveSyncDevices activeSyncDevices = this.GetActiveSyncDeviceContainer();
if (activeSyncDevices == null)
{
activeSyncDevices = this.CreateActiveSyncDeviceContainer(true);
}
AirSyncDiagnostics.TraceInfo <MobileClientType, DeviceIdentity, string>(ExTraceGlobals.RequestsTracer, null, "ADDeviceManager::CreateMobileDevice - ClientType: {0}, DeviceIdentity: {1}, mailboxSession from: {2}", this.clientType, this.deviceIdentity, (mailboxSession == null) ? "CurrentCommand" : "parameter");
this.CleanUpOldDevices(mailboxSession ?? Command.CurrentCommand.MailboxSession);
MobileDevice mobileDevice = this.InternalCreateDevice(globalInfo, syncStorageCreationTime);
IThrottlingPolicy throttlingPolicy = (this.budget != null) ? this.budget.ThrottlingPolicy : null;
if (checkForMaxDevices && throttlingPolicy != null)
{
if (!throttlingPolicy.EasMaxDevices.IsUnlimited)
{
MobileDevice[] easDevices = null;
ADNotificationAdapter.RunADOperation(delegate()
{
easDevices = this.session.Find <MobileDevice>(MobileDevice.GetRootId(this.userId), QueryScope.OneLevel, new ComparisonFilter(ComparisonOperator.LessThanOrEqual, ADObjectSchema.ExchangeVersion, ExchangeObjectVersion.Exchange2012), null, 0);
});
if (this.protocolLogger != null)
{
this.protocolLogger.SetValue(ProtocolLoggerData.DomainController, this.session.LastUsedDc);
}
if (easDevices != null && (long)easDevices.Length >= (long)((ulong)throttlingPolicy.EasMaxDevices.Value))
{
this.SendMaxDevicesExceededMailIfNeeded(easDevices.Length, throttlingPolicy.EasMaxDevices.Value);
throw new AirSyncPermanentException(HttpStatusCode.Forbidden, StatusCode.MaximumDevicesReached, null, false)
{
ErrorStringForProtocolLogger = "MaxDevicesExceeded"
};
}
}
else
{
AirSyncDiagnostics.TraceDebug(this.tracer, this, "throttlingPolicy.EasMaxDevices is unlimited. Skipping max devices check.");
}
}
else
{
AirSyncDiagnostics.TraceDebug(this.tracer, this, "No throttling policy is found. Skipping max devices check.");
}
switch (mobileDevice.ClientType)
{
case MobileClientType.EAS:
mobileDevice.SetId(activeSyncDevices.Id.GetChildId(ADDeviceManager.EasDeviceCnString(mobileDevice)));
break;
case MobileClientType.MOWA:
mobileDevice.SetId(activeSyncDevices.Id.GetChildId(ADDeviceManager.MowaDeviceCnString(mobileDevice)));
break;
default:
throw new PlatformNotSupportedException("New MobileClientType is not supported.");
}
try
{
ADNotificationAdapter.RunADOperation(delegate()
{
this.session.Save(mobileDevice);
});
}
catch (ADObjectAlreadyExistsException)
{
mobileDevice = this.GetMobileDevice();
if (mobileDevice == null)
{
throw new AirSyncPermanentException(HttpStatusCode.InternalServerError, StatusCode.ServerErrorRetryLater, EASServerStrings.FailedToCreateNewActiveDevice(this.deviceIdentity.DeviceId, this.deviceIdentity.DeviceType, this.userName), true)
{
ErrorStringForProtocolLogger = "CreateActiveSyncDevice:ADObjectAlreadyExistsException"
};
}
if (globalInfo != null)
{
this.UpdateMobileDevice(mobileDevice, globalInfo);
}
}
catch (ADOperationException ex)
{
DirectoryOperationException ex2 = ex.InnerException as DirectoryOperationException;
if (retryIfFailed)
{
if (ex.ErrorCode != 5)
{
if (ex2 == null || ex2.Response == null || ex2.Response.ResultCode != ResultCode.InsufficientAccessRights)
{
goto IL_308;
}
}
try
{
this.SetActiveSyncDeviceContainerPermissions(activeSyncDevices);
}
catch (ADOperationException ex3)
{
throw new AirSyncPermanentException(HttpStatusCode.InternalServerError, StatusCode.ServerErrorRetryLater, EASServerStrings.FailedToApplySecurityToContainer(activeSyncDevices.DistinguishedName), ex3, true)
{
ErrorStringForProtocolLogger = "SetEASDevContainerPerms:ADOperationException:" + ex3.Message
};
}
return(this.CreateMobileDevice(globalInfo, syncStorageCreationTime, checkForMaxDevices, false, mailboxSession));
}
IL_308:
AirSyncDiagnostics.LogEvent(this.unableToCreateADDeviceEventTuple, new string[]
{
mobileDevice.DeviceType,
mobileDevice.DeviceId,
activeSyncDevices.Id.ToDNString(),
ex.Message
});
throw new AirSyncPermanentException(HttpStatusCode.InternalServerError, StatusCode.ServerErrorRetryLater, ex, false)
{
ErrorStringForProtocolLogger = "CreateActiveSyncDevice:ADOperationException" + ex.Message
};
}
return(mobileDevice);
}
// Token: 0x060000B7 RID: 183 RVA: 0x00007A20 File Offset: 0x00005C20
private ActiveSyncDevices CreateActiveSyncDeviceContainer(bool retryIfFailed)
{
ActiveSyncDevices container = new ActiveSyncDevices();
try
{
container.Name = "ExchangeActiveSyncDevices";
container.SetId(this.userId.GetChildId(container.Name));
container.OrganizationId = this.organizationId;
ADNotificationAdapter.RunADOperation(delegate()
{
this.session.Save(container);
this.session.DomainController = container.OriginatingServer;
});
}
catch (ADObjectAlreadyExistsException innerException)
{
container = this.GetActiveSyncDeviceContainer();
if (container == null)
{
throw new AirSyncPermanentException(HttpStatusCode.InternalServerError, StatusCode.ServerErrorRetryLater, innerException, false)
{
ErrorStringForProtocolLogger = "ADObjectAlreadyExistsException:ButDevicesContainerDoesNotExist"
};
}
}
catch (ADOperationException ex)
{
AirSyncDiagnostics.LogPeriodicEvent(AirSyncEventLogConstants.Tuple_UnableToCreateADDevicesContainer, container.Name, new string[]
{
this.userId.ToDNString(),
ex.Message
});
throw new AirSyncPermanentException(HttpStatusCode.InternalServerError, StatusCode.ServerErrorRetryLater, ex, false)
{
ErrorStringForProtocolLogger = "ADOperationException1:" + ex.Message
};
}
bool flag = false;
try
{
this.SetActiveSyncDeviceContainerPermissions(container);
flag = true;
}
catch (ADNoSuchObjectException innerException2)
{
if (retryIfFailed)
{
return(this.CreateActiveSyncDeviceContainer(false));
}
throw new AirSyncPermanentException(HttpStatusCode.InternalServerError, StatusCode.ServerErrorRetryLater, innerException2, false)
{
ErrorStringForProtocolLogger = "ADNoSuchObjectException:OnDevicesContainerPermsSet"
};
}
catch (ADOperationException ex2)
{
AirSyncDiagnostics.LogPeriodicEvent(AirSyncEventLogConstants.Tuple_UnableToCreateADDevicesContainer, "ExchangeActiveSyncDevices", new string[]
{
this.userId.ToDNString(),
ex2.Message
});
throw new AirSyncPermanentException(HttpStatusCode.InternalServerError, StatusCode.ServerErrorRetryLater, ex2, false)
{
ErrorStringForProtocolLogger = "ADOperationException2:" + ex2.Message
};
}
finally
{
if (!flag)
{
try
{
ADNotificationAdapter.RunADOperation(delegate()
{
this.session.Delete(container);
});
}
catch (LocalizedException arg)
{
AirSyncDiagnostics.TraceError <LocalizedException>(this.tracer, this, "Failed to delete user container {0}", arg);
}
}
}
return(container);
}
