Herman Schoenfeld
Reputation: 8724
Detect trust level
How can a .NET application detect the trust level in which it is running under?
Specifically, I'm wanting a way to do something like
if (RUNNING IN GREATER THAN MEDIUM TRUST) {
// set private fields & properties using reflection
}
My current solution is to use
public static class CodeAccessSecurityTool {
private static volatile bool _unrestrictedFeatureSet = false;
private static volatile bool _determinedUnrestrictedFeatureSet = false;
private static readonly object _threadLock = new object();
public static bool HasUnrestrictedFeatureSet {
get {
if (!_determinedUnrestrictedFeatureSet)
lock (_threadLock) {
if (!_determinedUnrestrictedFeatureSet) {
try {
// See if we're running in full trust
new PermissionSet(PermissionState.Unrestricted).Demand();
_unrestrictedFeatureSet = true;
} catch (SecurityException) {
_unrestrictedFeatureSet = false;
}
_determinedUnrestrictedFeatureSet = true;
}
}
return _unrestrictedFeatureSet;
}
}
}
But, it's a bit of a hack.
Upvotes: 8
Views: 2173
Answers (4)
Drew Noakes
Reputation: 310977
From .NET 4.0 onwards there is the AppDomain.IsFullyTrusted property which may be helpful.
If you wish to test this on the current app domain, use:
if (AppDomain.CurrentDomain.IsFullyTrusted)
{
// ...
}
Upvotes: 6
Herman Schoenfeld
Reputation: 8724
public static class CodeAccessSecurity {
private static volatile bool _unrestrictedFeatureSet = false;
private static volatile bool _determinedUnrestrictedFeatureSet = false;
private static readonly object _threadLock = new object();
public static bool HasUnrestrictedFeatureSet {
get {
#if __IOS__
return false;
#elif __ANDROID__
return false;
#else
if (!_determinedUnrestrictedFeatureSet)
lock (_threadLock) {
if (!_determinedUnrestrictedFeatureSet) {
_unrestrictedFeatureSet = AppDomain.CurrentDomain.ApplicationTrust == null || AppDomain.CurrentDomain.ApplicationTrust.DefaultGrantSet.PermissionSet.IsUnrestricted();
_determinedUnrestrictedFeatureSet = true;
}
}
return _unrestrictedFeatureSet;
#endif
}
}
}
}
Upvotes: -1
Alex Filipovici
Reputation: 32561
Maybe this is helpful:
ActivationContext ac = AppDomain.CurrentDomain.ActivationContext;
ApplicationIdentity ai = ac.Identity;
var applicationTrust = new System.Security.Policy.ApplicationTrust(ai);
var isUnrestricted = applicationTrust.DefaultGrantSet.PermissionSet.IsUnrestricted();
Or
AppDomain.CurrentDomain.ApplicationTrust
.DefaultGrantSet.PermissionSet.IsUnrestricted();
Upvotes: 7
MikroDel
Reputation: 6735
You can use this code:
private AspNetHostingPermissionLevel[] aspNetHostingPermissionLevel = new AspNetHostingPermissionLevel[]
{
AspNetHostingPermissionLevel.Unrestricted,
AspNetHostingPermissionLevel.High,
AspNetHostingPermissionLevel.Medium,
AspNetHostingPermissionLevel.Low,
AspNetHostingPermissionLevel.Minimal
};
public AspNetHostingPermissionLevel GetTrustLevel()
{
foreach (AspNetHostingPermissionLevel aspNetHostingPermissionLevel in aspNetHostingPermissionLevel)
{
try
{
new AspNetHostingPermission(aspNetHostingPermissionLevel).Demand();
}
catch (System.Security.SecurityException)
{
continue;
}
return aspNetHostingPermissionLevel;
}
return AspNetHostingPermissionLevel.None;
}
Upvotes: 1
Related Questions
- How to translate this C# code to detect the current Trust Level for ASP.NET Application into VB.Net
- How to set trust level?
- Get current ASP.NET Trust Level programmatically
- Testing whether a .NET application is running with full trust
- How do I tell programatically if I am running under Medium Trust?
- .NET trust level question
- What's the easiest way to determine if a method call will run under Medium Trust?
- How can I narrow down which call is making a fully trusted call?
- How do you check if you are running in Medium Trust environment in .NET?
- Is there a way to to find out if a caller is highly trusted WITHOUT potentially throwing an exception?