Menu
My application uses the UserPrincipal class to determine what groups a user belongs to and then uses that information to determine if a user is authenticated to use my application. Things worked just fine for while, but recently I've started getting an exception
Guid should contain 32 digits with 4 dashes (xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx)
When calling UserPrincipal.FindByIdentity. It seems like the call is succeeding and the exception is being handled properly, but it makes me nervous that authentication is going to break suddenly in the future. I'm not explicitly creating the GUID anywhere, so I have no idea where the exception is coming from.
474
It's most likely that an exception is being thrown somewhere deep in the Framework code that's trying to initialize some sort of security descriptor from an invalid GUID value. If the framework is catching it and handling it internally I wouldn't worry about it.
Tracing through the Framework code, here is one likely place that it happens:
protected static bool IdentityClaimToFilter(string identity, string identityFormat, ref string filter, bool throwOnFail)
{
if (identity == null)
identity = "";
StringBuilder filter1 = new StringBuilder();
switch (identityFormat)
{
case "ms-guid":
Guid guid;
try
{
guid = new Guid(identity);
}
catch (FormatException ex)
{
if (throwOnFail)
throw new ArgumentException(ex.Message, (Exception) ex);
else
return false;
}
...
Notice that it tries to create a new Guid, and if it fails, an exception is thrown, but the code swallows it and just returns false
153
If you provide the IdentityType, it will not try to consider your value as a Guid, so it will not throw an exception
FindByIdentityWithType(context, typeof(UserPrincipalEx), **IdentityType.SamAccountName**, identityValue);
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
