blob: 88c1e0786a6c172da09e6caa9ec3753def9705a2 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
|
using System;
using System.Collections.Generic;
using System.Text;
namespace DotNetOpenId.Provider {
sealed class ProviderSecuritySettings : SecuritySettings {
internal ProviderSecuritySettings() : base(true) { }
// This property is a placeholder for a feature that has not been written yet.
/// <summary>
/// Gets/sets whether OpenID 1.x relying parties that may not be
/// protecting their users from replay attacks are protected from
/// replay attacks by this provider.
/// </summary>
/// <remarks>
/// <para>Nonces for protection against replay attacks were not mandated
/// by OpenID 1.x, which leaves users open to replay attacks.</para>
/// <para>This feature works by preventing associations from being formed
/// with OpenID 1.x relying parties, thereby forcing them into
/// "dumb" mode and verifying every claim with this provider.
/// This gives the provider an opportunity to verify its own nonce
/// to protect against replay attacks.</para>
/// </remarks>
internal bool ProtectDownlevelReplayAttacks { get; set; }
}
}
|
