//-----------------------------------------------------------------------------
// Copyright (c) Microsoft Corporation.  All rights reserved.
//-----------------------------------------------------------------------------
namespace System.ServiceModel.ComIntegration
{
    using System;
    using System.ServiceModel.Channels;
    using System.ServiceModel.Description;
    using System.ServiceModel.Dispatcher;
    using System.Collections;
    using System.Collections.Generic;
    using System.Collections.ObjectModel;
    using System.ServiceModel;
    using System.ServiceModel.Security.Tokens;

    class SecurityCookieModeValidator : IServiceBehavior
    {
        void CheckForCookie(SecurityTokenParameters tokenParameters, ServiceEndpoint endpoint)
        {
            bool cookie = false;
            SecureConversationSecurityTokenParameters sc = tokenParameters as SecureConversationSecurityTokenParameters;
            if (sc != null && sc.RequireCancellation == false)
                cookie = true;
            SspiSecurityTokenParameters sspi = tokenParameters as SspiSecurityTokenParameters;
            if (sspi != null && sspi.RequireCancellation == false)
                cookie = true;
            SspiSecurityTokenParameters ssl = tokenParameters as SspiSecurityTokenParameters;
            if (ssl != null && ssl.RequireCancellation == false)
                cookie = true;
            if (cookie)
                throw DiagnosticUtility.ExceptionUtility.ThrowHelperError(new InvalidOperationException(SR.GetString(SR.RequireNonCookieMode, endpoint.Binding.Name, endpoint.Binding.Namespace)));

        }

        void IServiceBehavior.AddBindingParameters(ServiceDescription description, ServiceHostBase serviceHostBase, Collection<ServiceEndpoint> endpoints, BindingParameterCollection parameters)
        {
        }

        void IServiceBehavior.Validate(ServiceDescription service, ServiceHostBase serviceHostBase)
        {
        }

        void IServiceBehavior.ApplyDispatchBehavior(ServiceDescription service, ServiceHostBase serviceHostBase)
        {
            // The philosophy here is to respect settings obtained from the 
            // service surrogate class' attributes, as written by the user,
            // while rejecting those that contradict our requirements.
            // We never want to silently overwrite a user's attributes.
            // So we either accept overrides or reject them.
            //
            // If you're changing this code, you'll probably also want to change 
            // ComPlusServiceLoader.AddBehaviors

            foreach (ServiceEndpoint endpoint in service.Endpoints)
            {
                ICollection<BindingElement> bindingElements = endpoint.Binding.CreateBindingElements();
                foreach (BindingElement element in bindingElements)
                {
                    SymmetricSecurityBindingElement sbe = (element as SymmetricSecurityBindingElement);
                    if (sbe != null)
                    {
                        this.CheckForCookie(sbe.ProtectionTokenParameters, endpoint);
                        foreach (SecurityTokenParameters p in sbe.EndpointSupportingTokenParameters.Endorsing)
                            this.CheckForCookie(p, endpoint);
                        break;
                    }
                }
            }
        }
    }
}