public void Test_LoadCustom()
{
MockRepository mocks = new MockRepository();
// Set new controller type
EsapiConfig.Instance.AccessController.Type = typeof(SurrogateAccessController).AssemblyQualifiedName;
// Get existing
IAccessController accessController = Esapi.AccessController;
Assert.IsTrue(accessController.GetType().Equals(typeof(SurrogateAccessController)));
// Call some methods
IAccessController mockController = mocks.StrictMock <IAccessController>();
((SurrogateAccessController)accessController).Impl = mockController;
Expect.Call(mockController.IsAuthorized(null, null)).Return(true);
Expect.Call(mockController.IsAuthorized(null, null, null)).Return(false);
mocks.ReplayAll();
Assert.IsTrue(Esapi.AccessController.IsAuthorized(null, null));
Assert.IsFalse(Esapi.AccessController.IsAuthorized(null, null, null));
mocks.VerifyAll();
}
/// <summary>
/// The access controller accessor.
/// </summary>
/// <returns> The access controller implementation
/// </returns>
public static IAccessController AccessController()
{
if (Esapi.accessController == null)
{
Esapi.accessController = new AccessController();
}
return(Esapi.accessController);
}
public static IAccessController AccessController()
{
if (Owasp.Esapi.Esapi.accessController == null)
{
Owasp.Esapi.Esapi.accessController = (IAccessController) new AccessController();
}
return(Owasp.Esapi.Esapi.accessController);
}
/// <summary>
/// The access controller accessor.
/// </summary>
/// <returns> The access controller implementation
/// </returns>
public static IAccessController AccessController()
{
if (Esapi.accessController == null)
Esapi.accessController = new AccessController();
return Esapi.accessController;
}
/// <summary>
/// Creates a new Security Block for data transporting messages
/// </summary>
/// <param name="signerCert">X.509 PKC of the request originator</param>
/// <param name="certs">X.509 PKCs for validation data</param>
public SecurityBlock(ReloadConfig rc, SignerIdentity myIdentity, List<byte[]> certs)
{
m_ReloadConfig = rc;
m_AccessControl = rc.AccessController;
/* Add the certificate of signer */
certificates = new List<GenericCertificate>();
GenericCertificate myCert = m_AccessControl.GetPKC(myIdentity);
certificates.Add(myCert);
/* Add all other PKCs */
foreach (byte[] pkc in certs)
{
certificates.Add(new GenericCertificate(pkc));
}
signerId = myIdentity;
}
/// <summary>
/// Creates a new Security Block for ordinary messages
/// </summary>
/// <param name="signerCert">X.509 PKC of the request originator</param>
public SecurityBlock(ReloadConfig rc, SignerIdentity myIdentity)
{
m_ReloadConfig = rc;
m_AccessControl = rc.AccessController;
/* Add the certificate of signer */
certificates = new List<GenericCertificate>();
GenericCertificate myCert = m_AccessControl.GetPKC(myIdentity);
certificates.Add(myCert);
signerId = myIdentity;
}
/// <summary>
/// Default constructor. Use it as receiver of a request.
/// </summary>
public SecurityBlock(ReloadConfig rc)
{
m_ReloadConfig = rc;
m_AccessControl = rc.AccessController;
certificates = new List<GenericCertificate>();
}
public AccessController(IAuthenticationManager authManager
, IAccessController accessController)
{
this.authManager = authManager;
this.accessController = accessController;
}
