Ejemplo n.º 1
0
        public IActionResult StartEnhanced(string userId, string userName, [FromServices] IImpersonationService service)
        {
            var errorMessage = service.StartImpersonation(userId, userName, true);

            return(RedirectToAction(nameof(Message),
                                    new { errorMessage, successMessage = $"You are now impersonating user {userName} with your own permissions." }));
        }
Ejemplo n.º 2
0
        [Authorize] //you must be logged in
        //Note: anyone call call Stop, as when impersonating someone you don't know what permissions (if any) that they have
        public IActionResult Stop([FromServices] IImpersonationService service)
        {
            var errorMessage = service.StopImpersonation();

            return(RedirectToAction(nameof(Message),
                                    new { errorMessage, successMessage = $"You have stopped impersonating another user." }));
        }
        public void ImpersonationServiceSupportsWindowsPrincipalImpersonation()
        {
            WindowsIdentity  identity  = WindowsIdentity.GetCurrent();
            WindowsPrincipal principal = new WindowsPrincipal(identity);

            Thread.CurrentPrincipal = principal;

            string currentUser          = Thread.CurrentPrincipal.Identity.Name;
            string impersonatedUsername = "******";

            WindowsAuthenticationService authService =
                mockContainer.Services.AddNew <WindowsAuthenticationService, IAuthenticationService>();

            authService.Identity = impersonatedUsername;

            IImpersonationService impersonator =
                mockContainer.Services.AddNew <WindowsImpersonationService, IImpersonationService>();

            using (IImpersonationContext context = impersonator.Impersonate())
            {
                Assert.IsTrue(Thread.CurrentPrincipal.Identity.IsAuthenticated);
                Assert.AreEqual(impersonatedUsername, Thread.CurrentPrincipal.Identity.Name);
            }

            Assert.IsTrue(Thread.CurrentPrincipal.Identity.IsAuthenticated);
            Assert.AreEqual(currentUser, Thread.CurrentPrincipal.Identity.Name);
        }
        public void AuthenticationServiceIsInjectedImpersonationService()
        {
            MockAuthenticationService authService =
                mockContainer.Services.AddNew <MockAuthenticationService, IAuthenticationService>();
            IImpersonationService impersonator =
                mockContainer.Services.AddNew <GenericPrincipalImpersonationService, IImpersonationService>();

            Assert.AreEqual(impersonator.AuthenticationService, authService);
        }
Ejemplo n.º 5
0
 public void ApproveAndPurchaseCD(Account source, decimal amount, int duration)
 {
     try
     {
         IImpersonationService impersonator = WorkItem.Services.Get <IImpersonationService>();
         using (IImpersonationContext context = impersonator.Impersonate())
         {
             PurchaseCD(source, amount, duration);
         }
     }
     catch (AuthenticationException)
     {
         View.ShowMessage(Resources.UserNotAuthorizedMessage);
     }
 }
        public void ImpersonateFailsIfAuthenticationFails()
        {
            string currentUser = Thread.CurrentPrincipal.Identity.Name;
            string userName    = "******";

            MockAuthenticationService authService =
                mockContainer.Services.AddNew <MockAuthenticationService, IAuthenticationService>();

            authService.Identity = userName;

            IImpersonationService impersonator =
                mockContainer.Services.AddNew <GenericPrincipalImpersonationService, IImpersonationService>();

            // fails
            impersonator.Impersonate();
        }
        public void ImpersonationContextCallsUndoOnDispose()
        {
            string currentUser          = Thread.CurrentPrincipal.Identity.Name;
            string impersonatedUsername = "******";

            MockAuthenticationService authService =
                mockContainer.Services.AddNew <MockAuthenticationService, IAuthenticationService>();

            authService.Identity = impersonatedUsername;

            IImpersonationService impersonator =
                mockContainer.Services.AddNew <GenericPrincipalImpersonationService, IImpersonationService>();

            using (IImpersonationContext context = impersonator.Impersonate())
            {
                Assert.IsTrue(Thread.CurrentPrincipal.Identity.IsAuthenticated);
                Assert.AreEqual(impersonatedUsername, Thread.CurrentPrincipal.Identity.Name);
            }

            Assert.IsTrue(Thread.CurrentPrincipal.Identity.IsAuthenticated);
            Assert.AreEqual(currentUser, Thread.CurrentPrincipal.Identity.Name);
        }
        public void ImpersonateChangesIdentity()
        {
            string currentUser          = Thread.CurrentPrincipal.Identity.Name;
            string impersonatedUsername = "******";

            MockAuthenticationService authService =
                mockContainer.Services.AddNew <MockAuthenticationService, IAuthenticationService>();

            authService.Identity = impersonatedUsername;

            IImpersonationService impersonator =
                mockContainer.Services.AddNew <GenericPrincipalImpersonationService, IImpersonationService>();
            IImpersonationContext context = impersonator.Impersonate();

            // user was impersonated
            Assert.IsTrue(Thread.CurrentPrincipal.Identity.IsAuthenticated);
            Assert.AreEqual(impersonatedUsername, Thread.CurrentPrincipal.Identity.Name);

            context.Undo();

            // previous principal
            Assert.IsTrue(Thread.CurrentPrincipal.Identity.IsAuthenticated);
            Assert.AreEqual(currentUser, Thread.CurrentPrincipal.Identity.Name);
        }
Ejemplo n.º 9
0
 public MyService(IEventHandler eventHandler, IImpersonationService impersonationService)
 {
     _eventHandler         = eventHandler;
     _impersonationService = impersonationService;
 }