Monthly Archives: September 2010

T-SQL: Remove all rows from all tables in your schema

Posted by timvw on September 7, 2010 1 comments

Sometimes i want to quickly clean up a database and start from fresh. Here is a small script that does exactly that.. (I just run the script a couple of times, untill no affected rows remain… Far more efficient than figuring out which constraints exist, building up a dependency tree, and cleanly deleting all rows):

-- Remove all rows from all tables
DECLARE @tableName VARCHAR(255)
DECLARE tableNames CURSOR FOR SELECT name FROM sys.Tables;
OPEN tableNames
FETCH NEXT FROM tableNames INTO @tableName
WHILE @@FETCH_STATUS = 0 BEGIN
	EXEC('DELETE FROM [' +  @tableName + ']')
	FETCH NEXT FROM tableNames INTO @tableName
END
CLOSE tableNames
DEALLOCATE tableNames

WIF: whr parameter is a hint for user Home Realm

Posted by timvw on September 7, 2010 None comments

Yesterday i was reading the Claims Based Identity & Access Control Guide and learned that the whr parameter is a hint from the application to the STS about the user’s STS. So if i look back at the code in WIF: Change STS per request i should not hardcode the HomeRealm parameter to timvw but use the company name instead.

string GetRedirectUrl(string company, string companySts, string realm, string returnUrl)
{
 var signInRequestMessage = new SignInRequestMessage(new Uri(companySts), realm)
 {
  Context = returnUrl,
  HomeRealm = company
 };

 return signInRequestMessage.WriteQueryString();
}

WIF: Change STS per request

Posted by timvw on September 5, 2010 1 comments

Here is some code that will redirect unauthenticated users to their respective STS (Eg: A user visiting ~/CompanyA/Default.aspx will be asked to authenticate at the STS linked to CompanyA.

Notice that in the enterprise you typically have multiple applications that require this kind of behavior, so you would solve this by establishing trust between your app(s) and your STS + establish trust between your STS and the client STSes.)

public class Global : HttpApplication
{
 protected void wSFederationAuthenticationModule_RedirectingToIdentityProvider(object sender, RedirectingToIdentityProviderEventArgs e)
 {
  e.Cancel = true;
  RedirectToCompanySts();
 }

 void RedirectToCompanySts()
 {
  var httpContext = HttpContext.Current;
  var rawUrl = httpContext.Request.RawUrl;

  var returnUrl = rawUrl;
  var companyName = ExtractCompanyName(rawUrl);
  var companySts = GetCompanySts(companyName);
  var realm = GetRealm(companyName);
  var redirectUrl = GetRedirectUrl(companySts, realm, returnUrl);

  httpContext.Response.Redirect(redirectUrl, false);
  httpContext.ApplicationInstance.CompleteRequest();
 }

 string ExtractCompanyName(string rawUrl)
 {
  var regex = @"~/(.*?)/.*";
  var relativeUrl = VirtualPathUtility.ToAppRelative(rawUrl);
  var match = Regex.Match(relativeUrl, regex);
  return match.Success ? match.Groups[1].Value : "";
 }

 string GetCompanySts(string companyName)
 {
  if (companyName == "CompanyA") return @"http://localhost/STS2Site";
  return @"http://localhost/STSSite";
 }

 string GetRealm(string companyName)
 {
  var realm = @"http://localhost/RPSite/";
  if (!string.IsNullOrEmpty(companyName)) realm += companyName +"/";
  return realm;
 }

 string GetRedirectUrl(string companySts, string realm, string returnUrl)
 {
  var signInRequestMessage = new SignInRequestMessage(new Uri(companySts), realm)
  {
   Context = returnUrl,
   HomeRealm = "timvw"
  };

  return signInRequestMessage.WriteQueryString();
 }
}