archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
3.3 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/inetsrv/iis/iisrearc/iisplus/ulw3/iiscertmapprovider.hxx

232 lines
4.5 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #ifndef _IISCERTMAPPROVIDER_HXX_
  2. #define _IISCERTMAPPROVIDER_HXX_
  4. class IISCERTMAP_AUTH_PROVIDER : public AUTH_PROVIDER
  5. {
  6. public:
  8. IISCERTMAP_AUTH_PROVIDER()
  9. {
  10. }
  12. virtual ~IISCERTMAP_AUTH_PROVIDER()
  13. {
  14. }
  16. HRESULT
  17. Initialize(
  18. DWORD dwInternalId
  19. )
  20. {
  21. SetInternalId( dwInternalId );
  23. return NO_ERROR;
  24. }
  26. VOID
  27. Terminate(
  28. VOID
  29. )
  30. {
  31. }
  33. HRESULT
  34. DoesApply(
  35. W3_MAIN_CONTEXT * pMainContext,
  36. BOOL * pfApplies
  37. );
  39. HRESULT
  40. DoAuthenticate(
  41. W3_MAIN_CONTEXT * pMainContext,
  42. BOOL * pfFilterFinished
  43. );
  45. HRESULT
  46. OnAccessDenied(
  47. W3_MAIN_CONTEXT * pMainContext
  48. );
  50. DWORD
  51. QueryAuthType(
  52. VOID
  53. )
  54. {
  55. //
  56. // This really isn't a metabase auth type.
  57. // It is important to note that
  58. // there must be no MD_AUTH_* defined that
  59. // equals to MD_ACCESS_MAP_CERT
  60. //
  62. return MD_ACCESS_MAP_CERT;
  63. }
  64. };
  67. //
  68. // IISCERTMAP_CONTEXT_STATE is used to communicate information from DoesApply()
  69. // to DoAuthenticate() of IISCERTMAP_AUTH_PROVIDER
  70. //
  72. class IISCERTMAP_CONTEXT_STATE : public W3_MAIN_CONTEXT_STATE
  73. {
  74. public:
  76. IISCERTMAP_CONTEXT_STATE(
  77. TOKEN_CACHE_ENTRY * pCachedToken,
  78. BOOL fClientCertDeniedByIISCertMap
  79. )
  80. {
  81. if ( pCachedToken != NULL )
  82. {
  83. pCachedToken->ReferenceCacheEntry();
  84. }
  85. else
  86. {
  87. //
  88. // if fClientCertDeniedByIISCertMap is TRUE then p
  89. // CachedToken should be NULL
  90. //
  92. DBG_ASSERT( fClientCertDeniedByIISCertMap );
  93. }
  94. _pCachedIISCertMapToken = pCachedToken;
  95. _fClientCertDeniedByIISCertMap = fClientCertDeniedByIISCertMap;
  96. }
  98. BOOL
  99. Cleanup(
  100. W3_MAIN_CONTEXT * /*pMainContext*/
  101. )
  102. {
  103. if ( _pCachedIISCertMapToken != NULL )
  104. {
  105. _pCachedIISCertMapToken->DereferenceCacheEntry();
  106. _pCachedIISCertMapToken = NULL;
  107. }
  109. delete this;
  110. return TRUE;
  111. }
  113. TOKEN_CACHE_ENTRY *
  114. QueryCachedIISCertMapToken(
  115. VOID
  116. )
  117. {
  118. return _pCachedIISCertMapToken;
  119. }
  121. BOOL
  122. QueryClientCertDeniedByIISCertMap(
  123. VOID
  124. )
  125. {
  126. return _fClientCertDeniedByIISCertMap;
  127. }
  129. private:
  131. TOKEN_CACHE_ENTRY * _pCachedIISCertMapToken;
  132. //
  133. // flag that IIS certificate mapper has denied authentication
  134. //
  135. BOOL _fClientCertDeniedByIISCertMap;
  136. };
  138. class IISCERTMAP_USER_CONTEXT : public W3_USER_CONTEXT
  139. {
  140. public:
  141. IISCERTMAP_USER_CONTEXT( AUTH_PROVIDER * pProvider )
  142. : W3_USER_CONTEXT( pProvider )
  143. {
  144. _achUserName[ 0 ] = L'\0';
  145. }
  147. virtual ~IISCERTMAP_USER_CONTEXT()
  148. {
  149. if ( _pCachedToken != NULL )
  150. {
  151. _pCachedToken->DereferenceCacheEntry();
  152. _pCachedToken = NULL;
  153. }
  154. }
  156. HRESULT
  157. Create(
  158. TOKEN_CACHE_ENTRY * _pCachedToken
  159. );
  161. WCHAR *
  162. QueryUserName(
  163. VOID
  164. )
  165. {
  166. return _achUserName;
  167. }
  169. WCHAR *
  170. QueryPassword(
  171. VOID
  172. )
  173. {
  174. return L"";
  175. }
  177. DWORD
  178. QueryAuthType(
  179. VOID
  180. )
  181. {
  182. //
  183. // This really isn't a metabase auth type.
  184. // It is important to note that
  185. // there must be no MD_AUTH_* defined that
  186. // equals to MD_ACCESS_MAP_CERT
  187. //
  188. return MD_ACCESS_MAP_CERT;
  189. }
  191. TOKEN_CACHE_ENTRY *
  192. QueryCachedToken(
  193. VOID
  194. )
  195. {
  196. return _pCachedToken;
  197. }
  199. HANDLE
  200. QueryImpersonationToken(
  201. VOID
  202. )
  203. {
  204. DBG_ASSERT( _pCachedToken != NULL );
  205. return _pCachedToken->QueryImpersonationToken();
  206. }
  208. HANDLE
  209. QueryPrimaryToken(
  210. VOID
  211. )
  212. {
  213. DBG_ASSERT( _pCachedToken != NULL );
  214. return _pCachedToken->QueryPrimaryToken();
  215. }
  218. BOOL
  219. IsValid(
  220. VOID
  221. )
  222. {
  223. return TRUE;
  224. }
  226. private:
  227. WCHAR _achUserName[ UNLEN + 1 ];
  228. TOKEN_CACHE_ENTRY * _pCachedToken;
  230. };
  232. #endif