1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
|
using System;
using System.Collections;
using System.Collections.Specialized;
using System.Text;
using System.Collections.Generic;
namespace Janrain.OpenId.Server
{
public class CheckAuthRequest : AssociatedRequest
{
#region Private Members
private string _sig;
private NameValueCollection _signed;
private IList<string> _signed_order;
private string _invalidate_handle;
#endregion
#region Constructor(s)
public CheckAuthRequest(string assoc_handle, string sig, NameValueCollection signed, IList<string> signed_order, string invalidate_handle)
{
this.AssocHandle = assoc_handle;
_sig = sig;
_signed = signed;
_signed_order = signed_order;
_invalidate_handle = invalidate_handle;
}
public CheckAuthRequest(NameValueCollection query)
{
this.AssocHandle = this.GetField(query, QueryStringArgs.openidnp.assoc_handle);
_sig = this.GetField(query, QueryStringArgs.openidnp.sig);
string signedStr = this.GetField(query, QueryStringArgs.openidnp.signed);
_invalidate_handle = query.Get(QueryStringArgs.openid.invalidate_handle);
string[] signedList = signedStr.Split(',');
string value = "";
_signed = new NameValueCollection();
foreach (string field in signedList)
{
if (field == QueryStringArgs.openidnp.mode)
value = QueryStringArgs.Modes.id_res;
else
value = this.GetSignedField(query, field);
_signed.Add(field, value);
}
}
#endregion
#region Properties
public override string Mode
{
get { return QueryStringArgs.Modes.check_authentication; }
}
#endregion
#region Methods
public Response Answer(Signatory signatory)
{
#region Trace
if (TraceUtil.Switch.TraceInfo)
{
TraceUtil.ServerTrace("Start processing Response for CheckAuthRequest");
}
#endregion
bool is_valid = signatory.Verify(this.AssocHandle, _sig, _signed, _signed_order);
signatory.Invalidate(this.AssocHandle, true);
Response response = new Response(this);
response.Fields[QueryStringArgs.openidnp.is_valid] = (is_valid ? "true" : "false");
if (_invalidate_handle != null && _invalidate_handle != "")
{
Association assoc = signatory.GetAssociation(_invalidate_handle, false);
if (assoc == null)
{
#region Trace
if (TraceUtil.Switch.TraceInfo)
{
TraceUtil.ServerTrace("No matching association found. Returning invalidate_handle. ");
}
#endregion
response.Fields[QueryStringArgs.openidnp.invalidate_handle] = _invalidate_handle;
}
}
#region Trace
if (TraceUtil.Switch.TraceInfo)
{
TraceUtil.ServerTrace("End processing Response for CheckAuthRequest. CheckAuthRequest response successfully created. ");
if (TraceUtil.Switch.TraceVerbose)
{
TraceUtil.ServerTrace("Response follows. ");
TraceUtil.ServerTrace(response.ToString());
}
}
#endregion
return response;
}
private string GetSignedField(NameValueCollection query, string valueToFind)
{
string val = query.Get(QueryStringArgs.openid.Prefix + valueToFind);
if (val == null)
throw new ProtocolException(query, "Couldn't find signed field " + valueToFind);
return val;
}
private string GetField(NameValueCollection query, string valueToFind)
{
string val = query.Get(QueryStringArgs.openid.Prefix + valueToFind);
if (val == null)
throw new ProtocolException(query, this.Mode + " request missing required parameter " + valueToFind);
return val;
}
#endregion
public override string ToString()
{
string returnString = @"CheckAuthRequest._sig = '{0}'
CheckAuthRequest.AssocHandle = '{1}'
CheckAuthRequest._invalidate_handle = '{2}' ";
return base.ToString() + Environment.NewLine + String.Format(returnString, _sig, AssocHandle, _invalidate_handle);
}
}
}
|
