SharePoint Security RSS Feed RSS Feed SharePoint Security Live Support ARB Security Solutions Partner Program Partner Program
English flagChinese (Simplified) flagGerman flagFrench flagSpanish flagJapanese flagRussian flagHindi flagPolish flagHebrew flagIndonesian flagUkrainian flag                              
Company      |       Articles & Research      |      Services      |      Software      |      Contact
Securing SharePoint Services

Progressive Security Designs Using Integrated Microsoft Technology

SharePoint Architecture Consulting Services
SharePoint Architecture With Security And Governance

Industrial SharePoint Architecture With A Focus On Security And Governance

SharePoint Architecture Consulting Services
SharePoint Security Code Reviews

Secure SharePoint Code Design And Corporate Code Security Reviews

SharePoint Development Consulting Services
SharePOint Security Research

Pioneering SharePoint / Microsoft Security Articles And Research

SharePoint Security Labs

Articles & Research

Latests SharePoint Development Posts

Latests SharePoint Security Posts

Determine If SharePoint Context Is Secure (SSL)

So I have two types of SharePoint environments, one is SSL enabled and another is not. Both are extended to use the same content databases, so have the same presentation layer content. This is a pretty common situation with SharePoint.
When writing WebParts for my environment, it was important that I compensated by writing a small method that would determine whether the HTTP context that SharePoint was running under was using a secure connection. In case you have to do the same thing, you can write method using the IsSecureConnection in order to determine if the HTTP connection uses secure sockets. You can either orchestrate the user to a SSL enabled sites if it is true:

PLAIN TEXT
C#:
  1. if (!HttpContext.Current.Request.IsSecureConnection)
  2. {
  3. string newUrl = "https://" + Request.Url.Host + Request.Url.PathAndQuery;
  4. Response.Redirect(newUrl, true);
  5. return;
  6. }

or you can write an error message if it is false:

PLAIN TEXT
C#:
  1. if(HttpContext.Current.Request.IsSecureConnection == false)
  2. {
  3. string message = "You should use HTTPS to avoid sending
  4. passwords in clear text";
  5. HttpContext.Current.Trace.Warn(message);
  6. throw new InvalidOperationException(message);
  7. }

share save 171 16 Determine If SharePoint Context Is Secure (SSL)

Related posts:

  1. Return LCID From HTTPContext
  2. Portal Context, User Profile Manager, and User Profile
  3. Determine If There Are Files And Folders In SharePoint Document Library
  4. Determine If SharePoint List Column Exists In C#
  5. Determine Referenced Assemblies and Assembly Load State

Article Or Research Filed Under SharePoint Development.

No Comments »

No comments yet.

RSS feed for comments on this post. TrackBack URL

Leave a comment


Adam Buenz MVP Profile   Certified Microsoft Partner SharePoint Green IT Microsoft Small Business Specialist w3c complaint W3C Compliant | Legal Notices | Privacy | Contact
© 2003-2012 ARB Security Solutions, LLC. | Providing SharePoint Security Integration Since 2003 | Minneapolis, MN
ARB Security Solutions is not endorsed by Microsoft Corporation. SharePoint is a trademark of Microsoft Corporation.
Site Maintained By Adam Buenz - SharePoint Foundation MVP Adam Buenz LinkedIn Profile