archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/inetsrv/uddi/source/api/publish.cs

637 lines
21 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. using System;
  2. using System.IO;
  3. using System.Web;
  4. using System.Data;
  5. using System.Data.SqlClient;
  6. using System.Collections;
  7. using System.Web.Services;
  8. using System.Xml.Serialization;
  9. using System.Security.Principal;
  10. using System.Web.Security;
  11. using System.Web.Services.Protocols;
  12. using UDDI.API;
  13. using UDDI;
  14. using UDDI.Diagnostics;
  15. using UDDI.API.Authentication;
  16. using UDDI.API.Binding;
  17. using UDDI.API.Service;
  18. using UDDI.API.Business;
  19. using UDDI.API.ServiceType;
  21. namespace UDDI.API
  22. {
  23. /// ****************************************************************
  24. /// class PublishMessages
  25. /// ----------------------------------------------------------------
  26. /// <summary>
  27. /// This is the web service class that contains the UDDI
  28. /// publish methods.
  29. /// </summary>
  30. /// ****************************************************************
  31. ///
  32. [SoapDocumentService( ParameterStyle=SoapParameterStyle.Bare, RoutingStyle=SoapServiceRoutingStyle.RequestElement )]
  33. [WebService( Namespace=UDDI.API.Constants.Namespace )]
  34. public class PublishMessages
  35. {
  36. /// ****************************************************************
  37. /// public AddPublisherAssertions
  38. /// ----------------------------------------------------------------
  39. /// <summary>
  40. /// Web method for adding publisher assertions. Users are
  41. /// authenticated and the message is processed as part of a
  42. /// transaction.
  43. /// </summary>
  44. /// ----------------------------------------------------------------
  45. /// <param name="message">
  46. /// A properly formed instance of the add_publisherAssertions
  47. /// message.
  48. /// </param>
  49. /// ----------------------------------------------------------------
  50. /// <returns>
  51. /// Returns a disposition report indicating success or failure.
  52. /// </returns>
  53. /// ****************************************************************
  54. ///
  55. [WebMethod, SoapDocumentMethod( Action = "\"\"", RequestElementName = "add_publisherAssertions" )]
  56. [UDDIExtension( authenticate = true, transaction = true, https = true, messageType = "add_publisherAssertions" )]
  57. public DispositionReport AddPublisherAssertions( AddPublisherAssertions message )
  58. {
  59. Debug.Enter();
  61. //
  62. // Create a disposition report indicating success
  63. //
  64. DispositionReport report = new DispositionReport();
  66. try
  67. {
  68. //
  69. // Add the publisher assertions.
  70. //
  71. message.Save();
  72. }
  73. catch( Exception e )
  74. {
  75. DispositionReport.Throw( e );
  76. }
  78. Debug.Leave();
  80. return report;
  81. }
  83. /// ****************************************************************
  84. /// public DeleteBinding
  85. /// ----------------------------------------------------------------
  86. /// <summary>
  87. /// Web method for removing a set of bindingTemplates from the UDDI registry.
  88. /// Users are authenticated and the message is processed as part of a
  89. /// transaction.
  90. /// </summary>
  91. /// ----------------------------------------------------------------
  92. /// <param name="dbind">
  93. /// A properly formed instance of the delete_binding message.
  94. /// </param>
  95. /// ----------------------------------------------------------------
  96. /// <returns>
  97. /// Returns a dispositionReport indicating success or failure.
  98. /// </returns>
  99. /// ****************************************************************
  100. ///
  101. [WebMethod, SoapDocumentMethod(Action="\"\"", RequestElementName="delete_binding")]
  102. [UDDIExtension( authenticate=true, transaction=true, https=true, messageType="delete_binding" )]
  103. public DispositionReport DeleteBinding( DeleteBinding dbind )
  104. {
  105. Debug.Enter();
  107. //
  108. // Create dispositionReport indicating success
  109. //
  110. DispositionReport dr = new DispositionReport();
  112. try
  113. {
  114. //
  115. // Delete the binding
  116. //
  117. dbind.Delete();
  118. }
  119. catch( Exception e )
  120. {
  121. DispositionReport.Throw( e );
  122. }
  124. return dr;
  125. }
  127. /// ****************************************************************
  128. /// public DeleteBusiness
  129. /// ----------------------------------------------------------------
  130. /// <summary>
  131. /// Web method for removing a set of businessEntities from the UDDI registry.
  132. /// Users are authenticated and the message is processed as part of a
  133. /// transaction.
  134. /// </summary>
  135. /// ----------------------------------------------------------------
  136. /// <param name="dbus">
  137. /// A properly formed instance of the delete_business message.
  138. /// </param>
  139. /// ----------------------------------------------------------------
  140. /// <returns>
  141. /// Returns a dispositionReport indicating success or failure.
  142. /// </returns>
  143. /// ****************************************************************
  144. ///
  145. [WebMethod, SoapDocumentMethod(Action="\"\"", RequestElementName="delete_business")]
  146. [UDDIExtension( authenticate=true, transaction=true, https=true, messageType="delete_business" )]
  147. public DispositionReport DeleteBusiness( DeleteBusiness dbus )
  148. {
  149. Debug.Enter();
  151. DispositionReport dr = new DispositionReport();
  152. try
  153. {
  154. //
  155. // Delete the business
  156. //
  157. dbus.Delete();
  158. }
  159. catch( Exception e )
  160. {
  161. DispositionReport.Throw( e );
  162. }
  164. return dr;
  165. }
  167. /// ****************************************************************
  168. /// public class DeletePublisherAssertions
  169. /// ----------------------------------------------------------------
  170. /// <summary>
  171. /// </summary>
  172. /// ****************************************************************
  173. ///
  174. [WebMethod]
  175. [SoapDocumentMethod( Action = "\"\"", RequestElementName = "delete_publisherAssertions" )]
  176. [UDDIExtension( authenticate = true, transaction = true, https = true, messageType = "delete_publisherAssertions" )]
  177. public DispositionReport DeletePublisherAssertions( DeletePublisherAssertions message )
  178. {
  179. Debug.Enter();
  181. DispositionReport report = new DispositionReport();
  183. try
  184. {
  185. message.Delete();
  186. }
  187. catch( Exception e )
  188. {
  189. DispositionReport.Throw( e );
  190. }
  192. Debug.Leave();
  194. return report;
  195. }
  197. /// ****************************************************************
  198. /// public DeleteService
  199. /// ----------------------------------------------------------------
  200. /// <summary>
  201. /// Web method for removing a set of businessServices from the UDDI registry.
  202. /// Users are authenticated and the message is processed as part of a
  203. /// transaction.
  204. /// </summary>
  205. /// ----------------------------------------------------------------
  206. /// <param name="ds">
  207. /// A properly formed instance of the delete_service message.
  208. /// </param>
  209. /// ----------------------------------------------------------------
  210. /// <returns>
  211. /// Returns a dispositionReport indicating success or failure.
  212. /// </returns>
  213. /// ****************************************************************
  214. ///
  215. [WebMethod, SoapDocumentMethod(Action="\"\"", RequestElementName="delete_service")]
  216. [UDDIExtension( authenticate=true, transaction=true, https=true, messageType="delete_service" )]
  217. public DispositionReport DeleteService( DeleteService ds )
  218. {
  219. Debug.Enter();
  220. DispositionReport dr = new DispositionReport();
  221. try
  222. {
  223. //
  224. // Delete the service
  225. //
  226. ds.Delete();
  227. }
  228. catch( Exception e )
  229. {
  230. DispositionReport.Throw( e );
  231. }
  233. return dr;
  234. }
  236. /// ****************************************************************
  237. /// public DeleteTModel
  238. /// ----------------------------------------------------------------
  239. /// <summary>
  240. /// Web method for removing a set of tModels from the UDDI registry.
  241. /// Users are authenticated and the message is processed as part of a
  242. /// transaction.
  243. /// </summary>
  244. /// ----------------------------------------------------------------
  245. /// <param name="dtm">
  246. /// A properly formed instance of the delete_tModel message.
  247. /// </param>
  248. /// ----------------------------------------------------------------
  249. /// <returns>
  250. /// Returns a dispositionReport indicating success or failure.
  251. /// </returns>
  252. /// ****************************************************************
  253. ///
  254. [WebMethod, SoapDocumentMethod(Action="\"\"", RequestElementName="delete_tModel")]
  255. [UDDIExtension( authenticate=true, transaction=true, https=true, messageType="delete_tModel" )]
  256. public DispositionReport DeleteTModel( DeleteTModel dtm )
  257. {
  258. Debug.Enter();
  259. DispositionReport dr = new DispositionReport();
  260. try
  261. {
  262. //
  263. // Delete the tModel
  264. //
  265. dtm.Delete();
  266. }
  267. catch( Exception e )
  268. {
  269. DispositionReport.Throw( e );
  270. }
  272. return dr;
  273. }
  275. /// ****************************************************************
  276. /// public DiscardAuthToken
  277. /// ----------------------------------------------------------------
  278. /// <summary>
  279. /// This optional message is used to deactivate an authentication token
  280. /// that was obtained by a call to get_authToken.
  281. /// </summary>
  282. /// ----------------------------------------------------------------
  283. /// <param name="dat">
  284. /// A properly formed instance of the discard_authToken message.
  285. /// </param>
  286. /// ----------------------------------------------------------------
  287. /// <returns>
  288. /// Returns a dispositionReport indicating success or failure.
  289. /// </returns>
  290. /// ****************************************************************
  291. ///
  292. [WebMethod, SoapDocumentMethod(Action="\"\"", RequestElementName="discard_authToken")]
  293. [UDDIExtension( https=true, messageType="discard_authToken" )]
  294. public DispositionReport DiscardAuthToken( DiscardAuthToken dat )
  295. {
  296. Debug.Enter();
  297. DispositionReport dr = new DispositionReport();
  299. try
  300. {
  301. if( ( Config.GetInt( "Security.AuthenticationMode" ) == (int) AuthenticationMode.Passport ) )
  302. {
  303. PassportAuthenticator authenticator = new PassportAuthenticator();
  304. authenticator.Authenticate( dat.AuthInfo, Config.GetInt( "Security.TimeOut" ) );
  306. //
  307. // Call to the database to update the user status to logged off.
  308. //
  309. SqlCommand cmd = new SqlCommand( "ADM_setPublisherStatus", ConnectionManager.GetConnection() );
  311. cmd.Transaction = ConnectionManager.GetTransaction();
  312. cmd.CommandType = CommandType.StoredProcedure;
  313. cmd.Parameters.Add( new SqlParameter( "@PUID", SqlDbType.NVarChar, UDDI.Constants.Lengths.UserID ) ).Direction = ParameterDirection.Input;
  314. cmd.Parameters.Add( new SqlParameter( "@publisherStatus", SqlDbType.NVarChar, UDDI.Constants.Lengths.PublisherStatus ) ).Direction = ParameterDirection.Input;
  316. SqlParameterAccessor paramacc = new SqlParameterAccessor( cmd.Parameters );
  317. paramacc.SetString( "@PUID", Context.User.ID );
  318. paramacc.SetString( "@publisherStatus", "loggedOut");
  319. cmd.ExecuteNonQuery();
  320. }
  322. }
  323. catch( Exception e )
  324. {
  325. DispositionReport.Throw( e );
  326. }
  328. return dr;
  329. }
  331. [WebMethod]
  332. [SoapDocumentMethod( Action = "\"\"", RequestElementName = "get_assertionStatusReport" )]
  333. [UDDIExtension( authenticate = true, https = true, messageType = "get_assertionStatusReport" )]
  334. public AssertionStatusReport GetAssertionStatusReport( GetAssertionStatusReport message )
  335. {
  336. Debug.Enter();
  338. AssertionStatusReport statusReport = new AssertionStatusReport();
  340. try
  341. {
  342. statusReport.Get( message.CompletionStatus );
  343. }
  344. catch( Exception e )
  345. {
  346. DispositionReport.Throw( e );
  347. }
  349. Debug.Leave();
  351. return statusReport;
  352. }
  355. [WebMethod, SoapDocumentMethod(Action="\"\"", RequestElementName="get_authToken")]
  356. [UDDIExtension( https=true, messageType="get_authToken" )]
  357. public AuthToken GetAuthToken( GetAuthToken gat )
  358. {
  359. Debug.Enter();
  360. AuthToken at = new AuthToken();
  362. try
  363. {
  364. //
  365. // XX-SECURITY: Review the value here in the case where we use
  366. // XX-this with a web.config with Authentication set to None or Passport
  367. //
  368. //
  369. // NOW: We now Get a Generic Identity. If the AuthenticationMode is AuthenticationMode.Passport (8),
  370. // we make sure the Identity is a PassportIdentity, then we authenticate. If AuthenticationMode
  371. // is Not set to AuthenticationMode.Passport, then process it as a WindowsIdentity.
  372. //
  373. //
  375. IIdentity identity = HttpContext.Current.User.Identity;
  377. int mode = Config.GetInt( "Security.AuthenticationMode", (int) AuthenticationMode.Both );
  378. if( ( (int) AuthenticationMode.Passport ) == mode )
  379. {
  380. if( identity is PassportIdentity )
  381. {
  382. Debug.Write( SeverityType.Info, CategoryType.Soap, "Generating credentials for Passport based authentication Identity is " + gat.UserID );
  384. PassportAuthenticator pa = new PassportAuthenticator();
  386. //
  387. // Get a Passport ticket for this user.
  388. //
  389. if( !pa.GetAuthenticationInfo( gat.UserID, gat.Cred, out at.AuthInfo ) )
  390. {
  391. // throw new UDDIException( ErrorType.E_unknownUser, "User failed authentication." ) ;
  392. throw new UDDIException( ErrorType.E_unknownUser, "USER_FAILED_AUTHENTICATION" ) ;
  393. }
  395. //
  396. // We need to extract the PUID from the ticket and put it into our Context.UserInfo.ID; a
  397. // successfull call to Authenticate will do all of this.
  398. //
  399. if( !pa.Authenticate( at.AuthInfo, UDDI.Constants.Passport.TimeWindow ) )
  400. {
  401. throw new UDDIException( ErrorType.E_unknownUser, "UDDI_ERROR_USER_FAILED_AUTHENTICATION" ) ;
  402. }
  404. //
  405. // Make sure this Passport user has registered with our UDDI site as a publisher.
  406. //
  407. if( !Context.User.IsVerified )
  408. {
  409. // throw new UDDIException( ErrorType.E_unknownUser, "Not a valid publisher." ) ;
  410. throw new UDDIException( ErrorType.E_unknownUser, "UDDI_ERROR_NOT_A_VALID_PUBLISHER" ) ;
  411. }
  412. }
  413. else
  414. {
  415. #if never
  416. throw new UDDIException( ErrorType.E_fatalError,
  417. "CONFIGURATION ERROR: Passport Identity Expected. \r\n"+
  418. "You are currently running in Passport Authentication Mode. \r\n"+
  419. "Check your web.config for the <authentication mode=\"Passport\" /> entry and try again." ) ;
  420. #endif
  422. throw new UDDIException( ErrorType.E_fatalError, "UDDI_ERROR_PASSPORT_CONFIGURATION_ERROR" );
  423. }
  424. }
  426. //
  427. // SECURITY: Check to make sure the password is blank too
  428. //
  429. else if( !((WindowsIdentity)identity).IsAnonymous &&
  430. ( ( mode & (int) AuthenticationMode.Windows ) != 0 ) &&
  431. Utility.StringEmpty( gat.UserID ) )
  432. {
  433. Debug.Write( SeverityType.Info, CategoryType.Soap, "Generating credentials for Windows based authentication Identity is " + identity.Name );
  434. WindowsAuthenticator wa = new WindowsAuthenticator();
  435. wa.GetAuthenticationInfo( gat.UserID, gat.Cred, out at.AuthInfo );
  436. }
  437. else if( ( mode & (int) AuthenticationMode.Uddi ) != 0 )
  438. {
  439. Debug.Write( SeverityType.Info, CategoryType.Soap, "Generating credentials for UDDI based authentication" );
  440. UDDIAuthenticator ua = new UDDIAuthenticator();
  441. ua.GetAuthenticationInfo( gat.UserID, gat.Cred, out at.AuthInfo );
  442. }
  443. else
  444. {
  445. // throw new UDDIException( UDDI.ErrorType.E_unsupported,
  446. //"The UDDI server is not configured to support the requested form of authentication." );
  447. throw new UDDIException( UDDI.ErrorType.E_unsupported, "UDDI_ERROR_AUTHENTICATION_CONFIGURATION_ERROR" );
  448. }
  450. Debug.Write( SeverityType.Info, CategoryType.Soap, "Windows Identity is " + WindowsIdentity.GetCurrent().Name );
  451. Debug.Write( SeverityType.Info, CategoryType.Soap, "Thread Identity is " + System.Threading.Thread.CurrentPrincipal.Identity.Name );
  452. Debug.Write( SeverityType.Info, CategoryType.Soap, "HttpContext Identity is " + identity.Name );
  454. //
  455. // Check to make sure the authenticated user has publisher credentials
  456. //
  457. #if never
  458. Debug.Verify( Context.User.IsPublisher,
  459. "The user account " + Context.User.ID + " does not have publisher credentials",
  460. UDDI.ErrorType.E_fatalError );
  461. #endif
  463. Debug.Verify( Context.User.IsPublisher,
  464. "UDDI_ERROR_NO_PUBLISHER_CREDENTIALS",
  465. UDDI.ErrorType.E_fatalError,
  466. Context.User.ID );
  468. Debug.Write(
  469. SeverityType.Info,
  470. CategoryType.Authorization,
  471. "Authenticated user (userid = " + gat.UserID + " )" );
  472. }
  473. catch( Exception e )
  474. {
  475. DispositionReport.Throw( e );
  476. }
  478. return at;
  479. }
  481. /// ****************************************************************
  482. /// public class GetPublisherAssertions
  483. /// ----------------------------------------------------------------
  484. /// <summary>
  485. /// </summary>
  486. /// ****************************************************************
  487. ///
  488. [WebMethod]
  489. [SoapDocumentMethod( Action = "\"\"", RequestElementName = "get_publisherAssertions" )]
  490. [UDDIExtension( authenticate = true, https = true, messageType = "get_publisherAssertions" )]
  491. public PublisherAssertionDetail GetPublisherAssertions( GetPublisherAssertions message )
  492. {
  493. Debug.Enter();
  495. PublisherAssertionDetail detail = new PublisherAssertionDetail();
  497. try
  498. {
  499. detail.Get();
  500. }
  501. catch( Exception e )
  502. {
  503. DispositionReport.Throw( e );
  504. }
  506. Debug.Leave();
  508. return detail;
  509. }
  511. /// ****************************************************************
  512. /// public class GetRegisteredInfo
  513. /// ----------------------------------------------------------------
  514. /// <summary>
  515. /// </summary>
  516. /// ****************************************************************
  517. ///
  518. [WebMethod, SoapDocumentMethod( Action="\"\"", RequestElementName="get_registeredInfo" )]
  519. [UDDIExtension( authenticate=true, https=true, messageType="get_registeredInfo")]
  520. public RegisteredInfo GetRegisteredInfo( GetRegisteredInfo gri )
  521. {
  522. Debug.Enter();
  523. RegisteredInfo ri = new RegisteredInfo();
  525. try
  526. {
  527. ri.Get();
  528. }
  529. catch( Exception e )
  530. {
  531. DispositionReport.Throw( e );
  532. }
  534. return ri;
  535. }
  537. [WebMethod, SoapDocumentMethod(Action="\"\"", RequestElementName="save_binding")]
  538. [UDDIExtension( authenticate=true, transaction=true, https=true, messageType="save_binding")]
  539. public BindingDetail SaveBinding( SaveBinding sb )
  540. {
  541. Debug.Enter();
  542. BindingDetail bd = new BindingDetail();
  544. try
  545. {
  546. sb.Save();
  547. bd.BindingTemplates = sb.BindingTemplates;
  548. }
  549. catch( Exception e )
  550. {
  551. DispositionReport.Throw( e );
  552. }
  554. return bd;
  555. }
  557. [WebMethod, SoapDocumentMethod(Action="\"\"", RequestElementName="save_business")]
  558. [UDDIExtension( authenticate=true, transaction=true, https=true, messageType="save_business" )]
  559. public BusinessDetail SaveBusiness( SaveBusiness sb )
  560. {
  561. Debug.Enter();
  562. BusinessDetail bd = new BusinessDetail();
  563. try
  564. {
  565. sb.Save();
  566. bd.BusinessEntities = sb.BusinessEntities;
  567. }
  568. catch( Exception e )
  569. {
  570. DispositionReport.Throw( e );
  571. }
  573. return bd;
  574. }
  576. [WebMethod, SoapDocumentMethod(Action="\"\"", RequestElementName="save_service")]
  577. [UDDIExtension( authenticate=true, transaction=true, https=true, messageType="save_service" )]
  578. public ServiceDetail SaveService( SaveService ss )
  579. {
  580. Debug.Enter();
  581. ServiceDetail sd = new ServiceDetail();
  583. try
  584. {
  585. ss.Save();
  586. sd.BusinessServices = ss.BusinessServices;
  587. }
  588. catch( Exception e )
  589. {
  590. DispositionReport.Throw( e );
  591. }
  593. return sd;
  594. }
  596. [WebMethod, SoapDocumentMethod(Action="\"\"", RequestElementName="save_tModel")]
  597. [UDDIExtension( authenticate=true, transaction=true, https=true, messageType="save_tModel" )]
  598. public TModelDetail SaveTModel( UDDI.API.ServiceType.SaveTModel stm )
  599. {
  600. Debug.Enter();
  601. TModelDetail tmd = new TModelDetail();
  602. try
  603. {
  604. stm.Save();
  605. tmd.TModels = stm.TModels;
  606. }
  607. catch( Exception e )
  608. {
  609. DispositionReport.Throw( e );
  610. }
  612. return tmd;
  613. }
  615. [WebMethod()]
  616. [SoapDocumentMethod( Action = "\"\"", RequestElementName = "set_publisherAssertions" )]
  617. [UDDIExtension( authenticate = true, transaction = true, https = true, messageType = "set_publisherAssertions" )]
  618. public PublisherAssertionDetail SetPublisherAssertions( SetPublisherAssertions message )
  619. {
  620. Debug.Enter();
  622. PublisherAssertionDetail detail = new PublisherAssertionDetail();
  624. try
  625. {
  626. detail = message.Set();
  627. }
  628. catch( Exception e )
  629. {
  630. DispositionReport.Throw( e );
  631. }
  633. Debug.Leave();
  635. return detail;
  636. }
  637. }
  638. }