You've already forked linux-packaging-mono
							
							
		
			
	
	
		
			296 lines
		
	
	
		
			9.7 KiB
		
	
	
	
		
			C#
		
	
	
	
	
	
		
		
			
		
	
	
			296 lines
		
	
	
		
			9.7 KiB
		
	
	
	
		
			C#
		
	
	
	
	
	
|   | // | ||
|  | // SecurityMessagePropertyTest.cs | ||
|  | // | ||
|  | // Author: | ||
|  | //	Atsushi Enomoto <atsushi@ximian.com> | ||
|  | // | ||
|  | // Copyright (C) 2006 Novell, Inc.  http://www.novell.com | ||
|  | // | ||
|  | // Permission is hereby granted, free of charge, to any person obtaining | ||
|  | // a copy of this software and associated documentation files (the | ||
|  | // "Software"), to deal in the Software without restriction, including | ||
|  | // without limitation the rights to use, copy, modify, merge, publish, | ||
|  | // distribute, sublicense, and/or sell copies of the Software, and to | ||
|  | // permit persons to whom the Software is furnished to do so, subject to | ||
|  | // the following conditions: | ||
|  | //  | ||
|  | // The above copyright notice and this permission notice shall be | ||
|  | // included in all copies or substantial portions of the Software. | ||
|  | //  | ||
|  | // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, | ||
|  | // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF | ||
|  | // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND | ||
|  | // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE | ||
|  | // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION | ||
|  | // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION | ||
|  | // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. | ||
|  | // | ||
|  | using System; | ||
|  | using System.Collections.ObjectModel; | ||
|  | using System.Net; | ||
|  | using System.Net.Security; | ||
|  | using System.Security.Principal; | ||
|  | using System.Security.Cryptography.X509Certificates; | ||
|  | using System.ServiceModel; | ||
|  | using System.ServiceModel.Channels; | ||
|  | using System.ServiceModel.Description; | ||
|  | using System.ServiceModel.Security; | ||
|  | using System.ServiceModel.Security.Tokens; | ||
|  | using System.Security.Cryptography.Xml; | ||
|  | using System.Threading; | ||
|  | using NUnit.Framework; | ||
|  | 
 | ||
|  | using MonoTests.System.ServiceModel.Channels; | ||
|  | 
 | ||
|  | namespace MonoTests.System.ServiceModel.Security | ||
|  | { | ||
|  | 	[TestFixture] | ||
|  | 	public class SecurityMessagePropertyTest | ||
|  | 	{ | ||
|  | 		static X509Certificate2 cert = new X509Certificate2 ("Test/Resources/test.pfx", "mono"); | ||
|  | 		static X509Certificate2 cert2 = new X509Certificate2 ("Test/Resources/test2.pfx", "mono"); | ||
|  | 
 | ||
|  | 		[ServiceContract] | ||
|  | 		public interface ICalc | ||
|  | 		{ | ||
|  | 			[OperationContract] | ||
|  | 			int Sum (int a, int b); | ||
|  | 
 | ||
|  | 			[OperationContract (AsyncPattern = true)] | ||
|  | 			IAsyncResult BeginSum (int a, int b, AsyncCallback cb, object state); | ||
|  | 
 | ||
|  | 			int EndSum (IAsyncResult result); | ||
|  | 		} | ||
|  | 
 | ||
|  | 		public class CalcProxy : ClientBase<ICalc>, ICalc | ||
|  | 		{ | ||
|  | 			public CalcProxy (Binding binding, EndpointAddress address) | ||
|  | 				: base (binding, address) | ||
|  | 			{ | ||
|  | 			} | ||
|  | 
 | ||
|  | 			public int Sum (int a, int b) | ||
|  | 			{ | ||
|  | 				return Channel.Sum (a, b); | ||
|  | 			} | ||
|  | 
 | ||
|  | 			public IAsyncResult BeginSum (int a, int b, AsyncCallback cb, object state) | ||
|  | 			{ | ||
|  | 				return Channel.BeginSum (a, b, cb, state); | ||
|  | 			} | ||
|  | 
 | ||
|  | 			public int EndSum (IAsyncResult result) | ||
|  | 			{ | ||
|  | 				return Channel.EndSum (result); | ||
|  | 			} | ||
|  | 		} | ||
|  | 
 | ||
|  | 		public class CalcService : ICalc | ||
|  | 		{ | ||
|  | 			public int Sum (int a, int b) | ||
|  | 			{ | ||
|  | 				return a + b; | ||
|  | 			} | ||
|  | 
 | ||
|  | 			public IAsyncResult BeginSum (int a, int b, AsyncCallback cb, object state) | ||
|  | 			{ | ||
|  | 				return new CalcAsyncResult (a, b, cb, state); | ||
|  | 			} | ||
|  | 
 | ||
|  | 			public int EndSum (IAsyncResult result) | ||
|  | 			{ | ||
|  | 				CalcAsyncResult c = (CalcAsyncResult) result; | ||
|  | 				return c.A + c.B; | ||
|  | 			} | ||
|  | 		} | ||
|  | 
 | ||
|  | 		class CalcAsyncResult : IAsyncResult | ||
|  | 		{ | ||
|  | 			public int A, B; | ||
|  | 			AsyncCallback callback; | ||
|  | 			object state; | ||
|  | 
 | ||
|  | 			public CalcAsyncResult (int a, int b, AsyncCallback cb, object state) | ||
|  | 			{ | ||
|  | 				A = a; | ||
|  | 				B = b; | ||
|  | 				callback = cb; | ||
|  | 				this.state = state; | ||
|  | 			} | ||
|  | 
 | ||
|  | 			public object AsyncState { | ||
|  | 				get { return state; } | ||
|  | 			} | ||
|  | 
 | ||
|  | 			public WaitHandle AsyncWaitHandle { | ||
|  | 				get { return null; } | ||
|  | 			} | ||
|  | 
 | ||
|  | 			public bool CompletedSynchronously { | ||
|  | 				get { return true; } | ||
|  | 			} | ||
|  | 
 | ||
|  | 			public bool IsCompleted { | ||
|  | 				get { return true; } | ||
|  | 			} | ||
|  | 		} | ||
|  | 
 | ||
|  | 		[Test] | ||
|  | 		public void GetOrCreateNonSecureMessage () | ||
|  | 		{ | ||
|  | 			Message m = Message.CreateMessage (MessageVersion.Default, "urn:myaction"); | ||
|  | 			SecurityMessageProperty p = | ||
|  | 				SecurityMessageProperty.GetOrCreate (m); | ||
|  | 			Assert.IsNull (p.InitiatorToken, "#1"); | ||
|  | 			Assert.IsNull (p.RecipientToken, "#2"); | ||
|  | 			Assert.IsNull (p.ProtectionToken, "#3"); | ||
|  | 			Assert.IsNull (p.TransportToken, "#4"); | ||
|  | 			Assert.IsNull (p.ExternalAuthorizationPolicies, "#5"); | ||
|  | //			Assert.AreEqual (0, p.ExternalAuthorizationPolicies.Count, "#5"); | ||
|  | 			Assert.IsFalse (p.HasIncomingSupportingTokens, "#6"); | ||
|  | 			Assert.IsNotNull (p.IncomingSupportingTokens, "#6-2"); | ||
|  | 			Assert.AreEqual ("_", p.SenderIdPrefix, "#6-3"); | ||
|  | 			ServiceSecurityContext ssc = p.ServiceSecurityContext; | ||
|  | 			Assert.IsNotNull (ssc, "#7"); | ||
|  | 
 | ||
|  | 			// not sure if it is worthy of testing though ... | ||
|  | 			GenericIdentity identity = ssc.PrimaryIdentity as GenericIdentity; | ||
|  | 			Assert.IsNotNull (identity, "#8-1"); | ||
|  | 			Assert.AreEqual ("", identity.Name, "#8-2"); | ||
|  | 			Assert.AreEqual ("", identity.AuthenticationType, "#8-3"); | ||
|  | 
 | ||
|  | 			Assert.AreEqual (0, ssc.AuthorizationPolicies.Count, "#9"); | ||
|  | 			Assert.IsTrue (ssc.IsAnonymous, "#10"); | ||
|  | 		} | ||
|  | 
 | ||
|  | 		[Test] | ||
|  | 		[Ignore ("This hangs on .NET")] | ||
|  | 		// not sure how "good" this test is ... if it fails at | ||
|  | 		// service side, it just results in timeout error. | ||
|  | 		// The assertion makes sure that it passes all the tests, but | ||
|  | 		// in case it failed, there is almost no hint ... | ||
|  | 		public void GetOrCreateSecureMessage () | ||
|  | 		{ | ||
|  | 			bool passed = false; | ||
|  | 			ServiceHost host = new ServiceHost (typeof (CalcService)); | ||
|  | 			InterceptorRequestContextHandler handler = delegate (MessageBuffer src) { | ||
|  | 				Message msg = src.CreateMessage (); | ||
|  | 				GetOrCreateSecureMessageAtService (msg); | ||
|  | 				passed = true; | ||
|  | 			}; | ||
|  | 
 | ||
|  | 			try { | ||
|  | 				SymmetricSecurityBindingElement clisbe = | ||
|  | 					new SymmetricSecurityBindingElement (); | ||
|  | 				clisbe.ProtectionTokenParameters = | ||
|  | 					new X509SecurityTokenParameters (X509KeyIdentifierClauseType.Thumbprint, SecurityTokenInclusionMode.Never); | ||
|  | 				BindingElement transport = new HttpTransportBindingElement (); | ||
|  | 				BindingElement sintercept = new InterceptorBindingElement (handler); | ||
|  | 				CustomBinding b_res = new CustomBinding (clisbe, | ||
|  | 					sintercept, | ||
|  | 					transport); | ||
|  | 				b_res.ReceiveTimeout = b_res.SendTimeout = TimeSpan.FromSeconds (5); | ||
|  | 				host.AddServiceEndpoint (typeof (ICalc), b_res, "http://localhost:37564"); | ||
|  | 
 | ||
|  | 				ServiceCredentials cred = new ServiceCredentials (); | ||
|  | 				cred.ServiceCertificate.Certificate = cert; | ||
|  | 				cred.ClientCertificate.Authentication.CertificateValidationMode = X509CertificateValidationMode.None; | ||
|  | 				host.Description.Behaviors.Add (cred); | ||
|  | 
 | ||
|  | 				host.Open (); | ||
|  | 
 | ||
|  | 				ProcessClient (); | ||
|  | 
 | ||
|  | 			} finally { | ||
|  | 				if (host.State == CommunicationState.Opened) | ||
|  | 					host.Close (); | ||
|  | 			} | ||
|  | 			if (!passed) | ||
|  | 				Assert.Fail ("Didn't pass the interceptor."); | ||
|  | 		} | ||
|  | 
 | ||
|  | 		void ProcessClient () | ||
|  | 		{ | ||
|  | 			SymmetricSecurityBindingElement svcsbe = | ||
|  | 				new SymmetricSecurityBindingElement (); | ||
|  | 			svcsbe.ProtectionTokenParameters = | ||
|  | 				new X509SecurityTokenParameters (X509KeyIdentifierClauseType.Thumbprint, SecurityTokenInclusionMode.Never); | ||
|  | 
 | ||
|  | 			BindingElement cintercept = new InterceptorBindingElement (null); | ||
|  | 			CustomBinding b_req = new CustomBinding (svcsbe, | ||
|  | 				cintercept, | ||
|  | 				new HttpTransportBindingElement ()); | ||
|  | 
 | ||
|  | 			b_req.ReceiveTimeout = b_req.SendTimeout = TimeSpan.FromSeconds (5); | ||
|  | 			EndpointAddress remaddr = new EndpointAddress ( | ||
|  | 				new Uri ("http://localhost:37564"), | ||
|  | 				new X509CertificateEndpointIdentity (cert)); | ||
|  | 			CalcProxy proxy = new CalcProxy (b_req, remaddr); | ||
|  | 			proxy.ClientCredentials.ClientCertificate.Certificate = cert2; | ||
|  | 
 | ||
|  | 			proxy.Sum (1, 2); | ||
|  | 			proxy.Close (); | ||
|  | 		} | ||
|  | 
 | ||
|  | 		static void GetOrCreateSecureMessageAtClient (Message msg) | ||
|  | 		{ | ||
|  | 			foreach (object o in msg.Properties) | ||
|  | 				if (o is SecurityMessageProperty) | ||
|  | 					Assert.Fail ("The input msg should not contain SecurityMessageProperty yet."); | ||
|  | 			SecurityMessageProperty p = SecurityMessageProperty.GetOrCreate (msg); | ||
|  | 
 | ||
|  | 			Assert.AreEqual (null, p.InitiatorToken, "#1"); | ||
|  | 			Assert.AreEqual (null, p.RecipientToken, "#2"); | ||
|  | 			Assert.IsNull (p.ProtectionToken, "#3"); | ||
|  | 			Assert.IsNull (p.TransportToken, "#4"); | ||
|  | 			Assert.IsNull (p.ExternalAuthorizationPolicies, "#5"); | ||
|  | //			Assert.AreEqual (0, p.ExternalAuthorizationPolicies.Count, "#5"); | ||
|  | 			Assert.IsFalse (p.HasIncomingSupportingTokens, "#6"); | ||
|  | 			Assert.IsNotNull (p.IncomingSupportingTokens, "#6-2"); | ||
|  | 			Assert.AreEqual ("_", p.SenderIdPrefix, "#6-3"); | ||
|  | 			ServiceSecurityContext ssc = p.ServiceSecurityContext; | ||
|  | 			Assert.IsNotNull (ssc, "#7"); | ||
|  | 
 | ||
|  | 			// not sure if it is worthy of testing though ... | ||
|  | 			GenericIdentity identity = ssc.PrimaryIdentity as GenericIdentity; | ||
|  | 			Assert.IsNotNull (identity, "#8-1"); | ||
|  | 			Assert.AreEqual ("", identity.Name, "#8-2"); | ||
|  | 			Assert.AreEqual ("", identity.AuthenticationType, "#8-3"); | ||
|  | 
 | ||
|  | 			Assert.AreEqual (0, ssc.AuthorizationPolicies.Count, "#9"); | ||
|  | 			Assert.IsTrue (ssc.IsAnonymous, "#10"); | ||
|  | 		} | ||
|  | 
 | ||
|  | 		static void GetOrCreateSecureMessageAtService (Message msg) | ||
|  | 		{ | ||
|  | 			Assert.IsNull (msg.Properties.Security, "#0"); | ||
|  | 			foreach (object o in msg.Properties) | ||
|  | 				if (o is SecurityMessageProperty) | ||
|  | 					Assert.Fail ("The input msg should not contain SecurityMessageProperty yet."); | ||
|  | 			SecurityMessageProperty p = SecurityMessageProperty.GetOrCreate (msg); | ||
|  | 			Assert.IsNotNull (msg.Properties.Security, "#0-2"); | ||
|  | 
 | ||
|  | 			Assert.AreEqual (null, p.InitiatorToken, "#1"); | ||
|  | 			Assert.AreEqual (null, p.RecipientToken, "#2"); | ||
|  | 			Assert.IsNull (p.ProtectionToken, "#3"); | ||
|  | 			Assert.IsNull (p.TransportToken, "#4"); | ||
|  | 			Assert.IsNull (p.ExternalAuthorizationPolicies, "#5"); | ||
|  | //			Assert.AreEqual (0, p.ExternalAuthorizationPolicies.Count, "#5"); | ||
|  | 			Assert.IsFalse (p.HasIncomingSupportingTokens, "#6"); | ||
|  | 			Assert.IsNotNull (p.IncomingSupportingTokens, "#6-2"); | ||
|  | 			Assert.AreEqual ("_", p.SenderIdPrefix, "#6-3"); | ||
|  | 			ServiceSecurityContext ssc = p.ServiceSecurityContext; | ||
|  | 			Assert.IsNotNull (ssc, "#7"); | ||
|  | 
 | ||
|  | 			// not sure if it is worthy of testing though ... | ||
|  | 			GenericIdentity identity = ssc.PrimaryIdentity as GenericIdentity; | ||
|  | 			Assert.IsNotNull (identity, "#8-1"); | ||
|  | 			Assert.AreEqual ("", identity.Name, "#8-2"); | ||
|  | 			Assert.AreEqual ("", identity.AuthenticationType, "#8-3"); | ||
|  | 
 | ||
|  | 			Assert.AreEqual (0, ssc.AuthorizationPolicies.Count, "#9"); | ||
|  | 			Assert.IsTrue (ssc.IsAnonymous, "#10"); | ||
|  | 		} | ||
|  | 	} | ||
|  | } |