public void SendPasswordResetToken(SendPasswordResetTokenParameters parameters) { if (parameters == null) { throw new ClientException("It is not allowed to call this authentication service method with no parameters provided."); } _logger.Trace("SendPasswordResetToken " + parameters.UserName); parameters.Validate(); const string logErrorFormat = "SendPasswordResetToken failed for {0}: {1}"; try { string passwordResetToken; try { var tokenParameters = new GeneratePasswordResetTokenParameters { UserName = parameters.UserName, TokenExpirationInMinutesFromNow = Int32.Parse(ConfigUtility.GetAppSetting("AspNetFormsAuth.SendPasswordResetToken.ExpirationInMinutes") ?? "1440") }; passwordResetToken = GeneratePasswordResetTokenInternal(tokenParameters); } // Providing an error information to the client might be a security issue, because this method allows anonymous access. catch (UserException ex) { _logger.Trace(logErrorFormat, parameters.UserName, ex); return; } catch (ClientException ex) { _logger.Info(logErrorFormat, parameters.UserName, ex); return; } // The plugin may choose it's own client error messages (UserException and ClientException will not be suppressed). _sendPasswordResetTokenPlugin.Value.SendPasswordResetToken(parameters.UserName, parameters.AdditionalClientInfo, passwordResetToken); } catch (Exception ex) { if (ex is UserException || ex is ClientException) { ExceptionsUtility.Rethrow(ex); } // Don't return an internal error to the client. Log it and return a generic error message: _logger.Error(logErrorFormat, parameters.UserName, ex); throw new FrameworkException(FrameworkException.GetInternalServerErrorMessage(_localizer, ex)); } }
private static bool FromConfigAllowBuiltinAdminOverride() { var setting = ConfigUtility.GetAppSetting("BuiltinAdminOverride"); if (setting != null) { bool allow; if (bool.TryParse(setting, out allow)) { return(allow); } throw new FrameworkException("Invalid setting of BuiltinAdminOverride in configuration file. Allowed values are True and False."); } return(false); }
private static bool ShouldAddUnregisteredPrincipal() { if (_shouldAddUnregisteredPrincipal == null) { string setting = ConfigUtility.GetAppSetting("AuthorizationAddUnregisteredPrincipals"); if (!string.IsNullOrEmpty(setting)) { _shouldAddUnregisteredPrincipal = bool.Parse(setting); } else { _shouldAddUnregisteredPrincipal = false; } } return(_shouldAddUnregisteredPrincipal.Value); }
private double GetDefaultExpirationSeconds() { if (_defaultExpirationSeconds == null) { string value = ConfigUtility.GetAppSetting("AuthorizationCacheExpirationSeconds"); if (!string.IsNullOrEmpty(value)) { _defaultExpirationSeconds = double.Parse(value); } else { _defaultExpirationSeconds = 30; } } return(_defaultExpirationSeconds.Value); }