public static string EncryptStringUsingLocalCertificate(string inputString, string thumbprint)
{
string encryptedText = String.Empty;
X509Certificate2 certificate = X509Krypto.FetchCertFromStoreImpl(StoreName.My, StoreLocation.LocalMachine, thumbprint);
byte[] inputAsByteArray = new byte[inputString.Length * sizeof(char)];
Buffer.BlockCopy(inputString.ToCharArray(), 0, inputAsByteArray, 0, inputAsByteArray.Length);
byte[] outputByteArray = X509Krypto.EncryptImpl(inputAsByteArray, true, certificate);
return(Convert.ToBase64String(outputByteArray));
}
private void button_RoundTrip_Click(object sender, EventArgs e)
{
try
{
///X509Krypto XK = new X509Krypto( "My", "LocalMachine", "339C80283637D69D9D9F0F5FE00970D93CB0A148");
X509Krypto XK = new X509Krypto( StoreName_t.Text, StoreLocation_t.Text, CertThumbprint_t.Text);
CipherText_t.Text = XK.Encrypt(ClearText_t.Text);
ClearText_t.Text = XK.Decrypt(CipherText_t.Text);
}
catch(Exception ex)
{
MessageBox.Show(ex.Message, "Exception", MessageBoxButtons.OK, MessageBoxIcon.Error);
}
}
private void button_Decrypt_Click(object sender, EventArgs e)
{
X509Krypto XK = new X509Krypto(StoreName_t.Text, StoreLocation_t.Text, CertThumbprint_t.Text);
ClearText_t.Text = XK.Decrypt(CipherText_t.Text);
}
public static string ConfigureWAPExtensionCommonCommandLineArguments()
{
StringBuilder arguments = new StringBuilder();
// Check to see if this is an uninstall
if (PropertyBagDictionary.Instance.PropertyExists(PropertyBagConstants.Uninstall))
{
arguments.Append("REMOVE=ALL ");
}
else
{
arguments.Append("ADDLOCAL=ProductFeature,ServiceFeature ");
// Save the user name to use on the cmp service database
String userName = SetupInputs.Instance.FindItem(SetupInputTags.SqlDBAdminNameTag);
// Add the SQL database information so that it can be written to the registry and accessed by the services
arguments.AppendFormat(CultureInfo.InvariantCulture, "SQLPORT=\"{0}\" ", (int)SetupInputs.Instance.FindItem(SetupInputTags.SqlServerPortTag));
string sqlInstanceName = InstallItemCustomDelegates.GetSQLServerInstanceNameStr(false);
arguments.AppendFormat(CultureInfo.InvariantCulture, "INSTANCENAME=\"{0}\" ", sqlInstanceName);
arguments.AppendFormat(CultureInfo.InvariantCulture, "WAPSQLPORT=\"{0}\" ", (int)SetupInputs.Instance.FindItem(SetupInputTags.WapSqlServerPortTag));
string wapSqlInstanceName = InstallItemCustomDelegates.GetSQLServerInstanceNameStr(true);
arguments.AppendFormat(CultureInfo.InvariantCulture, "WAPINSTANCENAME=\"{0}\" ", wapSqlInstanceName);
String dbName = (String)SetupInputs.Instance.FindItem(SetupInputTags.SqlDatabaseNameTag);
arguments.AppendFormat(CultureInfo.InvariantCulture, "DATABASENAME=\"{0}\" ", dbName);
string partialConnectionString = SetupDatabaseHelper.ConstructWebsiteConnectionString(SetupDatabaseHelper.SqlUsernameDuringInstall, sqlInstanceName);
string connectionString = String.Format("{0}database={1}", partialConnectionString, dbName);
arguments.AppendFormat(CultureInfo.InvariantCulture, "CMPCONNECTIONSTR=\"{0}\" ", connectionString);
String wapDbName = (String)SetupInputs.Instance.FindItem(SetupInputTags.WapSqlDatabaseNameTag);
arguments.AppendFormat(CultureInfo.InvariantCulture, "WAPDATABASENAME=\"{0}\" ", wapDbName);
string wapPartialConnectionString = SetupDatabaseHelper.ConstructWebsiteConnectionString(SetupDatabaseHelper.SqlUsernameDuringInstall, wapSqlInstanceName);
string wapConnectionString = String.Format("{0}database={1}", wapPartialConnectionString, wapDbName);
arguments.AppendFormat(CultureInfo.InvariantCulture, "WAPCONNECTIONSTR=\"{0}\" ", wapConnectionString);
string sqlMachineName = DnsHelper.GetComputerNameFromFqdnOrNetBios((String)SetupInputs.Instance.FindItem(SetupInputTags.GetSqlMachineNameTag(false)));
bool onRemoteMachine = String.Compare(sqlMachineName, Environment.MachineName, StringComparison.OrdinalIgnoreCase) != 0;
arguments.AppendFormat(CultureInfo.InvariantCulture, "ONREMOTESERVER=\"{0}\" ", onRemoteMachine ? 1 : 0);
string wapSqlMachineName = DnsHelper.GetComputerNameFromFqdnOrNetBios((String)SetupInputs.Instance.FindItem(SetupInputTags.GetSqlMachineNameTag(true)));
bool wapOnRemoteMachine = String.Compare(wapSqlMachineName, Environment.MachineName, StringComparison.OrdinalIgnoreCase) != 0;
arguments.AppendFormat(CultureInfo.InvariantCulture, "WAPONREMOTESERVER=\"{0}\" ", wapOnRemoteMachine ? 1 : 0);
String sqlMachineFqdn = DnsHelper.GetFullyQualifiedName(sqlMachineName);
arguments.AppendFormat(CultureInfo.InvariantCulture, "SQLMACHINENAME=\"{0}\" ", sqlMachineName);
arguments.AppendFormat(CultureInfo.InvariantCulture, "SQLMACHINEFQDN=\"{0}\" ", sqlMachineFqdn);
String wapSqlMachineFqdn = DnsHelper.GetFullyQualifiedName(sqlMachineName);
arguments.AppendFormat(CultureInfo.InvariantCulture, "WAPSQLMACHINENAME=\"{0}\" ", wapSqlMachineName);
arguments.AppendFormat(CultureInfo.InvariantCulture, "WAPSQLMACHINEFQDN=\"{0}\" ", wapSqlMachineFqdn);
String certificateThumbprint = (String)SetupInputs.Instance.FindItem(SetupInputTags.CmpCertificateThumbprintTag);
arguments.AppendFormat(CultureInfo.InvariantCulture, "CERTIFICATETHUMBPRINT=\"{0}\" ", "LocalMachine,My," + certificateThumbprint);
// Write the cmp database connection string
sqlInstanceName = InstallItemCustomDelegates.GetSQLServerInstanceNameStr(false);
wapDbName = (String)SetupInputs.Instance.FindItem(SetupInputTags.SqlDatabaseNameTag);
wapPartialConnectionString = SetupDatabaseHelper.ConstructWebsiteConnectionString(SetupDatabaseHelper.SqlUsernameDuringInstall, sqlInstanceName);
wapConnectionString = String.Format("{0}database={1}", wapPartialConnectionString, wapDbName);
arguments.AppendFormat(CultureInfo.InvariantCulture, "CMPCONNECTIONSTR=\"{0}\" ", wapConnectionString);
String domain = SetupInputs.Instance.FindItem(SetupInputTags.SqlDBAdminDomainTag);
string fullUserName = String.IsNullOrEmpty(domain) ? userName : domain + @"\" + userName;
arguments.AppendFormat(CultureInfo.InvariantCulture, "CMPDATABASEUSERNAME=\"{0}\" ", fullUserName);
// Encrypt the password of the worker service so that WAP extensions can use it
InputParameter pwd = SetupInputs.Instance.FindItem(SetupInputTags.SqlDBAdminPasswordTag);
string passwordAsText = null;
if (pwd != null)
{
IntPtr unmanagedString = IntPtr.Zero;
try
{
unmanagedString = Marshal.SecureStringToGlobalAllocUnicode(pwd);
passwordAsText = Marshal.PtrToStringUni(unmanagedString);
}
finally
{
Marshal.ZeroFreeGlobalAllocUnicode(unmanagedString);
}
}
string encryptedPassword = String.Format("{0}{1}{2}", "[KText]", UserAccountHelper.EncryptStringUsingLocalCertificate(passwordAsText, certificateThumbprint), "[KText]");
arguments.AppendFormat(CultureInfo.InvariantCulture, "CMPCONTEXTPASSWORDSTRING=\"{0}\" ", encryptedPassword);
//Write the MicrosoftMgmtSvcStoreContext connection string (part of WAP original installation)
wapDbName = SetupConstants.DefaultWapStoreDBName;
wapPartialConnectionString = SetupDatabaseHelper.ConstructWebsiteConnectionString(SetupDatabaseHelper.SqlUsernameDuringInstall, sqlInstanceName);
wapConnectionString = String.Format("{0}database={1}", wapPartialConnectionString, wapDbName);
arguments.AppendFormat(CultureInfo.InvariantCulture, "WAPSTORECONNECTIONSTR=\"{0}\" ", wapConnectionString);
X509Krypto krypto = new X509Krypto("My", "LocalMachine", certificateThumbprint);
// Encrypt the password of the sql user that will be used by the website to access CMP DB
//string encryptedCmpDbPassword = String.Format("{0}{1}{2}", "[KText]", UserAccountHelper.EncryptStringUsingLocalCertificate(SetupDatabaseHelper.SqlDbUserPassword, certificateThumbprint), "[KText]");
string encryptedCmpDbPassword = krypto.EncyptKText(SetupDatabaseHelper.SqlDbUserPassword);
arguments.AppendFormat(CultureInfo.InvariantCulture, "CMPDBPASSWORDSTRING=\"{0}\" ", encryptedCmpDbPassword);
// Encrypt the password of the sql user that will be used by the website to access CMP WAP DB
//string encryptedCmpWapDbPassword = String.Format("{0}{1}{2}", "[KText]", UserAccountHelper.EncryptStringUsingLocalCertificate(SetupDatabaseHelper.SqlDbUserPassword, certificateThumbprint), "[KText]");
string encryptedCmpWapDbPassword = krypto.EncyptKText(SetupDatabaseHelper.SqlDbUserPassword);
arguments.AppendFormat(CultureInfo.InvariantCulture, "CMPWAPDBPASSWORDSTRING=\"{0}\" ", encryptedCmpWapDbPassword);
// Encrypt the password of the sql user that will be used by the website to access WAP's Microsoft.MgmtSvc.Store DB
//string encryptedMgmtStoreDbPassword = String.Format("{0}{1}{2}", "[KText]", UserAccountHelper.EncryptStringUsingLocalCertificate(SetupDatabaseHelper.SqlDbUserPassword, certificateThumbprint), "[KText]");
string encryptedMgmtStoreDbPassword = krypto.EncyptKText(SetupDatabaseHelper.SqlDbUserPassword);
arguments.AppendFormat(CultureInfo.InvariantCulture, "MGMTSTOREPASSWORDSTRING=\"{0}\" ", encryptedMgmtStoreDbPassword);
}
return(arguments.ToString());
}
