public DispositionReport DiscardAuthToken(DiscardAuthToken dat) { Debug.Enter(); DispositionReport dr = new DispositionReport(); try { if ((Config.GetInt("Security.AuthenticationMode") == (int)AuthenticationMode.Passport)) { PassportAuthenticator authenticator = new PassportAuthenticator(); authenticator.Authenticate(dat.AuthInfo, Config.GetInt("Security.TimeOut")); // // Call to the database to update the user status to logged off. // SqlCommand cmd = new SqlCommand("ADM_setPublisherStatus", ConnectionManager.GetConnection()); cmd.Transaction = ConnectionManager.GetTransaction(); cmd.CommandType = CommandType.StoredProcedure; cmd.Parameters.Add(new SqlParameter("@PUID", SqlDbType.NVarChar, UDDI.Constants.Lengths.UserID)).Direction = ParameterDirection.Input; cmd.Parameters.Add(new SqlParameter("@publisherStatus", SqlDbType.NVarChar, UDDI.Constants.Lengths.PublisherStatus)).Direction = ParameterDirection.Input; SqlParameterAccessor paramacc = new SqlParameterAccessor(cmd.Parameters); paramacc.SetString("@PUID", Context.User.ID); paramacc.SetString("@publisherStatus", "loggedOut"); cmd.ExecuteNonQuery(); } } catch (Exception e) { DispositionReport.Throw(e); } return(dr); }
public DispositionReport AddPublisherAssertions(AddPublisherAssertions message) { Debug.Enter(); // // Create a disposition report indicating success // DispositionReport report = new DispositionReport(); try { // // Add the publisher assertions. // message.Save(); } catch (Exception e) { DispositionReport.Throw(e); } Debug.Leave(); return(report); }
public ServiceList FindService(FindService fs) { Debug.Enter(); ServiceList sl = null; try { sl = fs.Find(); // // Maybe we could filter service projections out earlier, but this seems to be the // most readable place to do it. // if (1 == Context.ApiVersionMajor) { sl.ServiceInfos = FilterServiceProjections(sl.ServiceInfos, fs.BusinessKey); } } catch (Exception e) { DispositionReport.Throw(e); } return(sl); }
//public BusinessList FindBusiness( FindBusiness fbus, [XmlAnyElement] XmlElement[] trash ) public BusinessList FindBusiness(FindBusiness fbus) { Debug.Enter(); BusinessList bl = null; try { bl = fbus.Find(); // // If this request came from a v1 message, filter out any service projections in our list of // businesses // if (1 == Context.ApiVersionMajor) { foreach (BusinessInfo businessInfo in bl.BusinessInfos) { businessInfo.ServiceInfos = FilterServiceProjections(businessInfo.ServiceInfos, businessInfo.BusinessKey); } } } catch (Exception e) { DispositionReport.Throw(e); } return(bl); }
public DispositionReport ValidateCategorization(ValidateCategorization vc) { Debug.Enter(); try { vc.Validate(); } catch (Exception e) { DispositionReport.Throw(e); } return(new DispositionReport()); }
public BindingDetail FindBinding(FindBinding fbind) { Debug.Enter(); BindingDetail bd = null; try { bd = fbind.Find(); } catch (Exception e) { DispositionReport.Throw(e); } return(bd); }
public TModelDetail GetTModelDetail(GetTModelDetail gtmd) { Debug.Enter(); TModelDetail tmd = new TModelDetail(); try { tmd.Get(gtmd.TModelKeys); } catch (Exception e) { DispositionReport.Throw(e); } return(tmd); }
public ServiceDetail GetServiceDetail(GetServiceDetail gsd) { Debug.Enter(); ServiceDetail sd = new ServiceDetail(); try { sd.Get(gsd.ServiceKeys); } catch (Exception e) { DispositionReport.Throw(e); } return(sd); }
public BusinessDetailExt GetBusinessDetailExt(GetBusinessDetailExt gbde) { Debug.Enter(); BusinessDetailExt bde = new BusinessDetailExt(); try { bde.Get(gbde.BusinessKeys); } catch (Exception e) { DispositionReport.Throw(e); } return(bde); }
public BindingDetail GetBindingDetail(GetBindingDetail gbd) { Debug.Enter(); BindingDetail bd = new BindingDetail(); try { bd.Get(gbd.BindingKeys); } catch (Exception e) { DispositionReport.Throw(e); } return(bd); }
public RelatedBusinessList FindRelatedBusinesses(FindRelatedBusinesses frelbus) { Debug.Enter(); RelatedBusinessList rbl = null; try { rbl = frelbus.Find(); } catch (Exception e) { DispositionReport.Throw(e); } return(rbl); }
public RegisteredInfo GetRegisteredInfo(GetRegisteredInfo gri) { Debug.Enter(); RegisteredInfo ri = new RegisteredInfo(); try { ri.Get(); } catch (Exception e) { DispositionReport.Throw(e); } return(ri); }
public BindingDetail SaveBinding(SaveBinding sb) { Debug.Enter(); BindingDetail bd = new BindingDetail(); try { sb.Save(); bd.BindingTemplates = sb.BindingTemplates; } catch (Exception e) { DispositionReport.Throw(e); } return(bd); }
public TModelList FindTModel(UDDI.API.ServiceType.FindTModel ftm) { Debug.Enter(); TModelList tml = null; try { tml = ftm.Find(); } catch (Exception e) { DispositionReport.Throw(e); } Debug.Leave(); return(tml); }
public BusinessDetail GetBusinessDetail(GetBusinessDetail gbd) { Debug.Enter(); BusinessDetail bd = new BusinessDetail(); try { bd.Get(gbd.BusinessKeys); } catch (Exception e) { DispositionReport.Throw(e); } return(bd); }
public BusinessDetail SaveBusiness(SaveBusiness sb) { Debug.Enter(); BusinessDetail bd = new BusinessDetail(); try { sb.Save(); bd.BusinessEntities = sb.BusinessEntities; } catch (Exception e) { DispositionReport.Throw(e); } return(bd); }
public ServiceDetail SaveService(SaveService ss) { Debug.Enter(); ServiceDetail sd = new ServiceDetail(); try { ss.Save(); sd.BusinessServices = ss.BusinessServices; } catch (Exception e) { DispositionReport.Throw(e); } return(sd); }
public TModelDetail SaveTModel(UDDI.API.ServiceType.SaveTModel stm) { Debug.Enter(); TModelDetail tmd = new TModelDetail(); try { stm.Save(); tmd.TModels = stm.TModels; } catch (Exception e) { DispositionReport.Throw(e); } return(tmd); }
public AssertionStatusReport GetAssertionStatusReport(GetAssertionStatusReport message) { Debug.Enter(); AssertionStatusReport statusReport = new AssertionStatusReport(); try { statusReport.Get(message.CompletionStatus); } catch (Exception e) { DispositionReport.Throw(e); } Debug.Leave(); return(statusReport); }
public DispositionReport DeleteTModel(DeleteTModel dtm) { Debug.Enter(); DispositionReport dr = new DispositionReport(); try { // // Delete the tModel // dtm.Delete(); } catch (Exception e) { DispositionReport.Throw(e); } return(dr); }
public DispositionReport DeletePublisherAssertions(DeletePublisherAssertions message) { Debug.Enter(); DispositionReport report = new DispositionReport(); try { message.Delete(); } catch (Exception e) { DispositionReport.Throw(e); } Debug.Leave(); return(report); }
public DispositionReport DeleteService(DeleteService ds) { Debug.Enter(); DispositionReport dr = new DispositionReport(); try { // // Delete the service // ds.Delete(); } catch (Exception e) { DispositionReport.Throw(e); } return(dr); }
public PublisherAssertionDetail SetPublisherAssertions(SetPublisherAssertions message) { Debug.Enter(); PublisherAssertionDetail detail = new PublisherAssertionDetail(); try { detail = message.Set(); } catch (Exception e) { DispositionReport.Throw(e); } Debug.Leave(); return(detail); }
public DispositionReport DeleteBusiness(DeleteBusiness dbus) { Debug.Enter(); DispositionReport dr = new DispositionReport(); try { // // Delete the business // dbus.Delete(); } catch (Exception e) { DispositionReport.Throw(e); } return(dr); }
public DispositionReport DeleteBinding(DeleteBinding dbind) { Debug.Enter(); // // Create dispositionReport indicating success // DispositionReport dr = new DispositionReport(); try { // // Delete the binding // dbind.Delete(); } catch (Exception e) { DispositionReport.Throw(e); } return(dr); }
public override void ProcessMessage(SoapMessage message) { try { switch (message.Stage) { case SoapMessageStage.BeforeDeserialize: // // Check to see if the server has been manually stopped. // if (0 == Config.GetInt("Run", 1)) { DispositionReport.ThrowFinal(new UDDIException(ErrorType.E_busy, "UDDI_ERROR_BUSY_SERVICENOTAVAILABLE")); // // DispositionReport.ThrowFinal will close the HTTP stream so there is no point going on in this method // return; } try { // // Validate against the UDDI schemas // SchemaCollection.Validate(oldStream); } catch (Exception e) { DispositionReport.ThrowFinal(new UDDIException(ErrorType.E_fatalError, "UDDI_ERROR_FATALERROR_SCHEMAVALIDATIONFAILED", e.Message)); // // DispositionReport.ThrowFinal will close the HTTP stream so there is no point going on in this method // return; } // // Make sure we only have 1 UDDI request in the SOAP body. This method will also set the versionMajor // member. // CheckForSingleRequest(oldStream); // // If this is a v1 message, we'll first map it to the v2 // namespace so that it can be processed by the new // library. // if (1 == Context.ApiVersionMajor || 2 == Context.ApiVersionMajor) { TextReader reader = new StreamReader(oldStream); TextWriter writer = new StreamWriter(newStream, new System.Text.UTF8Encoding(false)); string xml = reader.ReadToEnd(); if (1 == Context.ApiVersionMajor) { xml = xml.Replace("=\"urn:uddi-org:api\"", "=\"urn:uddi-org:api_v2\""); xml = xml.Replace("='urn:uddi-org:api'", "=\"urn:uddi-org:api_v2\""); } writer.Write(xml); writer.Flush(); newStream.Position = 0; } break; case SoapMessageStage.AfterDeserialize: // // After the message is deserialized is the earliest place where we // have access to our SOAP headers. // CheckSOAPHeaders(message); // // Now that the message has been deserialized, make // sure that the generic and xmlns attributes agree. // IMessage obj = message.GetInParameterValue(0) as IMessage; if (null != obj) { // // We only need to do this if the deserialized object supports IMessage // string expected = Context.ApiVersionMajor + ".0"; string actual = obj.Generic.Trim(); if (expected != actual) { throw new UDDIException(ErrorType.E_unrecognizedVersion, "UDDI_ERROR_UNKNOWNVERSION_GENERICNAMESPACEMISMATCH"); } } break; case SoapMessageStage.BeforeSerialize: break; case SoapMessageStage.AfterSerialize: // // There may have been exceptions thrown during serialization. // if (null != message.Exception && (null == message.Exception.Detail || 0 == message.Exception.Detail.ChildNodes.Count)) { DispositionReport.ThrowFinal(new UDDIException(ErrorType.E_fatalError, "UDDI_ERROR_FATALERROR_FAILEDDESERIALIZATION")); // // DispositionReport.ThrowFinal will close the HTTP stream so there is no point going on in this method // return; } // // If the original request was v1, then we'll need to // remap the output to use the v1 namespace. // if (1 == Context.ApiVersionMajor || 2 == Context.ApiVersionMajor) { newStream.Position = 0; TextReader reader = new StreamReader(newStream); TextWriter writer = new StreamWriter(oldStream, new System.Text.UTF8Encoding(false)); string xml = reader.ReadToEnd(); // // We don't have to use the same 'loose' replacement as we did on the incoming request // because our response will be serialized such that the default namespace is our UDDI // namespace. // if (1 == Context.ApiVersionMajor) { xml = xml.Replace("xmlns=\"urn:uddi-org:api_v2\"", "xmlns=\"urn:uddi-org:api\""); xml = xml.Replace("generic=\"2.0\"", "generic=\"1.0\""); } writer.Write(xml); writer.Flush(); } break; default: throw new UDDIException(ErrorType.E_fatalError, "UDDI_ERROR_FATALERROR_UNKNOWNEXTSTAGE"); } } catch (Exception e) { DispositionReport.Throw(e); } }
public override void ProcessMessage(SoapMessage message) { Debug.Enter(); #if DEBUG string info = "log: " + data.log.ToString() + "; https: " + data.https.ToString() + "; validate: " + data.validate.ToString() + "; performance: " + data.performance.ToString() + "; authenticate: " + data.authenticate.ToString() + "; transaction: " + data.transaction.ToString() + "; messageType: " + data.messageType; Debug.Write(SeverityType.Info, CategoryType.Soap, info); #endif try { switch (message.Stage) { // // First Event // case SoapMessageStage.BeforeDeserialize: // // Initialize our context. // Context.Current.Initialize(); Config.CheckForUpdate(); // // TODO: Since we are using DispositionReport.ThrowFinal() I don't think this is // needed anymore. // // // Check to make sure the authenticated user has user credentials // Debug.Verify("1" != HttpContext.Current.Request.ServerVariables["Exception"], "UDDI_ERROR_FATALERROR_VERSIONCHECKERROR", UDDI.ErrorType.E_fatalError); Debug.Write(SeverityType.Info, CategoryType.Soap, "URL: " + message.Url); Debug.Write(SeverityType.Info, CategoryType.Soap, "SOAPAction: " + HttpContext.Current.Request.Headers["SOAPAction"]); string contentType = HttpContext.Current.Request.ContentType.ToLower(); bool validEncoding = (contentType.IndexOf("charset=\"utf-8\"") >= 0) || (contentType.IndexOf("charset=utf-8") >= 0); Debug.Verify(validEncoding, "UDDI_ERROR_UNSUPPORTED_CONTENTTYPEHEADERMISSING", ErrorType.E_unsupported); if (data.performance) { PublishMethodBegin(message); } if (data.https) { CheckForHttps(message); } // // Validation has been moved into the other SOAP extension // // if( data.validate ) // Validate( message ); break; // // Second Event // case SoapMessageStage.AfterDeserialize: ConnectionManager.Open(data.transaction, data.transaction); if (data.certificate) { CheckCertificate(message); } if (data.authenticate) { Authenticate(message); } else if (0 != (Config.GetInt("Security.AuthenticationMode", (int)AuthenticationMode.Both) & (int)AuthenticationMode.AuthenticatedRead)) { // // Authenticated reads are turned on and this is a read request // Make sure the caller is authenticated using Windows and is at least a user // WindowsIdentity identity = (WindowsIdentity)HttpContext.Current.User.Identity; WindowsAuthenticator wa = new WindowsAuthenticator(); wa.Authenticate("", 0 /* not used */); Debug.Write(SeverityType.Info, CategoryType.Soap, "Authenticated user: using Windows based authentication Identity is " + identity.Name); // // Check to make sure the authenticated user has user credentials // Debug.Verify(Context.User.IsUser, "UDDI_ERROR_FATALERROR_NOUSERCREDS", UDDI.ErrorType.E_fatalError, Context.User.ID); } break; // // Third Event // case SoapMessageStage.BeforeSerialize: break; // // Last Event // case SoapMessageStage.AfterSerialize: // // Cleanup the connection and commit the database activity // if (data.transaction && (null != (object)ConnectionManager.GetConnection()) && (null != (object)ConnectionManager.GetTransaction())) { if (null == (object)message.Exception) { ConnectionManager.Commit(); } else { ConnectionManager.Abort(); } } ConnectionManager.Close(); try { if (data.performance) { PublishMethodEnd(message); } } catch { Debug.OperatorMessage( SeverityType.Warning, CategoryType.None, OperatorMessageType.UnableToPublishCounter, "An error occurred while trying to publish a performance counter, the system will continue"); } break; default: throw new UDDIException(ErrorType.E_fatalError, "UDDI_ERROR_FATALERROR_UNKNOWNEXTSTAGE"); } } catch (Exception e) { DispositionReport.Throw(e); } Debug.Leave(); }
public AuthToken GetAuthToken(GetAuthToken gat) { Debug.Enter(); AuthToken at = new AuthToken(); try { // // XX-SECURITY: Review the value here in the case where we use // XX-this with a web.config with Authentication set to None or Passport // // // NOW: We now Get a Generic Identity. If the AuthenticationMode is AuthenticationMode.Passport (8), // we make sure the Identity is a PassportIdentity, then we authenticate. If AuthenticationMode // is Not set to AuthenticationMode.Passport, then process it as a WindowsIdentity. // // IIdentity identity = HttpContext.Current.User.Identity; int mode = Config.GetInt("Security.AuthenticationMode", (int)AuthenticationMode.Both); if (((int)AuthenticationMode.Passport) == mode) { if (identity is PassportIdentity) { Debug.Write(SeverityType.Info, CategoryType.Soap, "Generating credentials for Passport based authentication Identity is " + gat.UserID); PassportAuthenticator pa = new PassportAuthenticator(); // // Get a Passport ticket for this user. // if (!pa.GetAuthenticationInfo(gat.UserID, gat.Cred, out at.AuthInfo)) { // throw new UDDIException( ErrorType.E_unknownUser, "User failed authentication." ) ; throw new UDDIException(ErrorType.E_unknownUser, "USER_FAILED_AUTHENTICATION"); } // // We need to extract the PUID from the ticket and put it into our Context.UserInfo.ID; a // successfull call to Authenticate will do all of this. // if (!pa.Authenticate(at.AuthInfo, UDDI.Constants.Passport.TimeWindow)) { throw new UDDIException(ErrorType.E_unknownUser, "UDDI_ERROR_USER_FAILED_AUTHENTICATION"); } // // Make sure this Passport user has registered with our UDDI site as a publisher. // if (!Context.User.IsVerified) { // throw new UDDIException( ErrorType.E_unknownUser, "Not a valid publisher." ) ; throw new UDDIException(ErrorType.E_unknownUser, "UDDI_ERROR_NOT_A_VALID_PUBLISHER"); } } else { #if never throw new UDDIException(ErrorType.E_fatalError, "CONFIGURATION ERROR: Passport Identity Expected. \r\n" + "You are currently running in Passport Authentication Mode. \r\n" + "Check your web.config for the <authentication mode=\"Passport\" /> entry and try again."); #endif throw new UDDIException(ErrorType.E_fatalError, "UDDI_ERROR_PASSPORT_CONFIGURATION_ERROR"); } } // // SECURITY: Check to make sure the password is blank too // else if (!((WindowsIdentity)identity).IsAnonymous && ((mode & (int)AuthenticationMode.Windows) != 0) && Utility.StringEmpty(gat.UserID)) { Debug.Write(SeverityType.Info, CategoryType.Soap, "Generating credentials for Windows based authentication Identity is " + identity.Name); WindowsAuthenticator wa = new WindowsAuthenticator(); wa.GetAuthenticationInfo(gat.UserID, gat.Cred, out at.AuthInfo); } else if ((mode & (int)AuthenticationMode.Uddi) != 0) { Debug.Write(SeverityType.Info, CategoryType.Soap, "Generating credentials for UDDI based authentication"); UDDIAuthenticator ua = new UDDIAuthenticator(); ua.GetAuthenticationInfo(gat.UserID, gat.Cred, out at.AuthInfo); } else { // throw new UDDIException( UDDI.ErrorType.E_unsupported, //"The UDDI server is not configured to support the requested form of authentication." ); throw new UDDIException(UDDI.ErrorType.E_unsupported, "UDDI_ERROR_AUTHENTICATION_CONFIGURATION_ERROR"); } Debug.Write(SeverityType.Info, CategoryType.Soap, "Windows Identity is " + WindowsIdentity.GetCurrent().Name); Debug.Write(SeverityType.Info, CategoryType.Soap, "Thread Identity is " + System.Threading.Thread.CurrentPrincipal.Identity.Name); Debug.Write(SeverityType.Info, CategoryType.Soap, "HttpContext Identity is " + identity.Name); // // Check to make sure the authenticated user has publisher credentials // #if never Debug.Verify(Context.User.IsPublisher, "The user account " + Context.User.ID + " does not have publisher credentials", UDDI.ErrorType.E_fatalError); #endif Debug.Verify(Context.User.IsPublisher, "UDDI_ERROR_NO_PUBLISHER_CREDENTIALS", UDDI.ErrorType.E_fatalError, Context.User.ID); Debug.Write( SeverityType.Info, CategoryType.Authorization, "Authenticated user (userid = " + gat.UserID + " )"); } catch (Exception e) { DispositionReport.Throw(e); } return(at); }