Minor performance improvements (#93)

TheTrueColonel · web-flow · commit 713f7e1b97ed · 2025-10-26T08:20:56.000+08:00
* Minor performance improvements

Made some improvements that improves performance a small amount, but cuts allocations by more than half.
Also changed the accessors and added `readonly` to help enforce design guidelines.

* Update Saml.cs

* Reverted URL encoding method
diff --git a/AspNetSaml/Saml.cs b/AspNetSaml/Saml.cs
@@ -13,7 +13,6 @@ Use this freely under the Apache license (see https://choosealicense.com/license
 using System.Security.Cryptography.Xml;
 using System.IO.Compression;
 using System.Text;
-using System.Runtime;
 
 namespace Saml
 {
@@ -283,35 +282,35 @@ protected override bool IsExpired()
 
 	public abstract class BaseRequest
 	{
-		public string _id;
-		protected string _issue_instant;
-
-		protected string _issuer;
-
-		public BaseRequest(string issuer)
-		{
-			_id = "_" + Guid.NewGuid().ToString();
+		protected readonly string _id;
+		protected readonly string _issue_instant;
+		protected readonly string _issuer;
+		
+		protected static readonly XmlWriterSettings _xmlSettings = new XmlWriterSettings {
+			OmitXmlDeclaration = true,
+			Encoding = new UTF8Encoding(false)
+		};
+
+		protected BaseRequest(string issuer) {
+			_id = $"_{Guid.NewGuid()}";
 			_issue_instant = DateTime.UtcNow.ToString("yyyy-MM-ddTHH:mm:ssZ", System.Globalization.CultureInfo.InvariantCulture);
 
 			_issuer = issuer;
 		}
 
 		public abstract string GetRequest();
 
-		protected static string ConvertToBase64Deflated(string input)
-		{
-			//byte[] toEncodeAsBytes = System.Text.ASCIIEncoding.ASCII.GetBytes(input);
-			//return System.Convert.ToBase64String(toEncodeAsBytes);
+		protected static string ConvertToBase64Deflated(MemoryStream streamInput) {
+			streamInput.Seek(0, SeekOrigin.Begin);
 
 			//https://stackoverflow.com/questions/25120025/acs75005-the-request-is-not-a-valid-saml2-protocol-message-is-showing-always%3C/a%3E
-			var memoryStream = new MemoryStream();
-			using (var writer = new StreamWriter(new DeflateStream(memoryStream, CompressionMode.Compress, true), new UTF8Encoding(false)))
-			{
-				writer.Write(input);
-				writer.Close();
+			using (var compressed = new MemoryStream()) {
+				using (var deflate = new DeflateStream(compressed, CompressionMode.Compress, leaveOpen: true)) {
+					streamInput.CopyTo(deflate);
+				}
+				
+				return Convert.ToBase64String(compressed.GetBuffer(), 0, (int)compressed.Length, Base64FormattingOptions.None);
 			}
-			string result = Convert.ToBase64String(memoryStream.GetBuffer(), 0, (int)memoryStream.Length, Base64FormattingOptions.None);
-			return result;
 		}
 
 		/// <summary>
@@ -322,7 +321,7 @@ protected static string ConvertToBase64Deflated(string input)
 		/// <returns></returns>
 		public string GetRedirectUrl(string samlEndpoint, string relayState = null)
 		{
-			var queryStringSeparator = samlEndpoint.Contains("?") ? "&" : "?";
+			var queryStringSeparator = samlEndpoint.Contains('?') ? '&' : '?';
 
 			var url = samlEndpoint + queryStringSeparator + "SAMLRequest=" + Uri.EscapeDataString(GetRequest());
 
@@ -337,7 +336,7 @@ public string GetRedirectUrl(string samlEndpoint, string relayState = null)
 
 	public class AuthRequest : BaseRequest
 	{
-		private string _assertionConsumerServiceUrl;
+		private readonly string _assertionConsumerServiceUrl;
 
 		/// <summary>
 		/// Initializes new instance of AuthRequest
@@ -369,11 +368,9 @@ public enum AuthRequestFormat
 		/// <returns></returns>
 		public override string GetRequest()
 		{
-			using (StringWriter sw = new StringWriter())
+			using (var ms = new MemoryStream())
 			{
-				XmlWriterSettings xws = new XmlWriterSettings { OmitXmlDeclaration = true };
-
-				using (XmlWriter xw = XmlWriter.Create(sw, xws))
+				using (var xw = XmlWriter.Create(ms, _xmlSettings))
 				{
 					xw.WriteStartElement("samlp", "AuthnRequest", "urn:oasis:names:tc:SAML:2.0:protocol");
 					xw.WriteAttributeString("ID", _id);
@@ -403,7 +400,7 @@ public override string GetRequest()
 					xw.WriteEndElement();
 				}
 
-				return ConvertToBase64Deflated(sw.ToString());
+				return ConvertToBase64Deflated(ms);
 			}
 		}
 	}
@@ -413,20 +410,18 @@ public override string GetRequest()
 	/// </summary>
 	public class SignoutRequest : BaseRequest
 	{
-		private string _nameId;
+		private readonly string _nameId;
 
 		public SignoutRequest(string issuer, string nameId) : base(issuer)
 		{
 			_nameId = nameId;
 		}
-
+		
 		public override string GetRequest()
 		{
-			using (StringWriter sw = new StringWriter())
+			using (var ms = new MemoryStream())
 			{
-				XmlWriterSettings xws = new XmlWriterSettings { OmitXmlDeclaration = true };
-
-				using (XmlWriter xw = XmlWriter.Create(sw, xws))
+				using (var xw = XmlWriter.Create(ms, _xmlSettings))
 				{
 					xw.WriteStartElement("samlp", "LogoutRequest", "urn:oasis:names:tc:SAML:2.0:protocol");
 					xw.WriteAttributeString("ID", _id);
@@ -444,7 +439,7 @@ public override string GetRequest()
 					xw.WriteEndElement();
 				}
 
-				return ConvertToBase64Deflated(sw.ToString());
+				return ConvertToBase64Deflated(ms);
 			}
 		}
 	}

Original file line number	Diff line number	Diff line change
`@@ -13,7 +13,6 @@ Use this freely under the Apache license (see https://choosealicense.com/license`
`13`	`13`	`using System.Security.Cryptography.Xml;`
`14`	`14`	`using System.IO.Compression;`
`15`	`15`	`using System.Text;`
`16`		`-using System.Runtime;`
`17`	`16`
`18`	`17`	`namespace Saml`
`19`	`18`	`{`
`@@ -283,35 +282,35 @@ protected override bool IsExpired()`
`283`	`282`
`284`	`283`	`public abstract class BaseRequest`
`285`	`284`	`{`
`286`		`- public string _id;`
`287`		`- protected string _issue_instant;`
`288`		`-`
`289`		`- protected string _issuer;`
`290`		`-`
`291`		`- public BaseRequest(string issuer)`
`292`		`- {`
`293`		`- _id = "_" + Guid.NewGuid().ToString();`
	`285`	`+ protected readonly string _id;`
	`286`	`+ protected readonly string _issue_instant;`
	`287`	`+ protected readonly string _issuer;`
	`288`	`+`
	`289`	`+ protected static readonly XmlWriterSettings _xmlSettings = new XmlWriterSettings {`
	`290`	`+ OmitXmlDeclaration = true,`
	`291`	`+ Encoding = new UTF8Encoding(false)`
	`292`	`+ };`
	`293`	`+`
	`294`	`+ protected BaseRequest(string issuer) {`
	`295`	`+ _id = $"_{Guid.NewGuid()}";`
`294`	`296`	`_issue_instant = DateTime.UtcNow.ToString("yyyy-MM-ddTHH:mm:ssZ", System.Globalization.CultureInfo.InvariantCulture);`
`295`	`297`
`296`	`298`	`_issuer = issuer;`
`297`	`299`	`}`
`298`	`300`
`299`	`301`	`public abstract string GetRequest();`
`300`	`302`
`301`		`- protected static string ConvertToBase64Deflated(string input)`
`302`		`- {`
`303`		`- //byte[] toEncodeAsBytes = System.Text.ASCIIEncoding.ASCII.GetBytes(input);`
`304`		`- //return System.Convert.ToBase64String(toEncodeAsBytes);`
	`303`	`+ protected static string ConvertToBase64Deflated(MemoryStream streamInput) {`
	`304`	`+ streamInput.Seek(0, SeekOrigin.Begin);`
`305`	`305`
`306`	`306`	`//https://stackoverflow.com/questions/25120025/acs75005-the-request-is-not-a-valid-saml2-protocol-message-is-showing-always%3C/a%3E`
`307`		`- var memoryStream = new MemoryStream();`
`308`		`- using (var writer = new StreamWriter(new DeflateStream(memoryStream, CompressionMode.Compress, true), new UTF8Encoding(false)))`
`309`		`- {`
`310`		`- writer.Write(input);`
`311`		`- writer.Close();`
	`307`	`+ using (var compressed = new MemoryStream()) {`
	`308`	`+ using (var deflate = new DeflateStream(compressed, CompressionMode.Compress, leaveOpen: true)) {`
	`309`	`+ streamInput.CopyTo(deflate);`
	`310`	`+ }`
	`311`	`+`
	`312`	`+ return Convert.ToBase64String(compressed.GetBuffer(), 0, (int)compressed.Length, Base64FormattingOptions.None);`
`312`	`313`	`}`
`313`		`- string result = Convert.ToBase64String(memoryStream.GetBuffer(), 0, (int)memoryStream.Length, Base64FormattingOptions.None);`
`314`		`- return result;`
`315`	`314`	`}`
`316`	`315`
`317`	`316`	`/// <summary>`
`@@ -322,7 +321,7 @@ protected static string ConvertToBase64Deflated(string input)`
`322`	`321`	`/// <returns></returns>`
`323`	`322`	`public string GetRedirectUrl(string samlEndpoint, string relayState = null)`
`324`	`323`	`{`
`325`		`- var queryStringSeparator = samlEndpoint.Contains("?") ? "&" : "?";`
	`324`	`+ var queryStringSeparator = samlEndpoint.Contains('?') ? '&' : '?';`
`326`	`325`
`327`	`326`	`var url = samlEndpoint + queryStringSeparator + "SAMLRequest=" + Uri.EscapeDataString(GetRequest());`
`328`	`327`
`@@ -337,7 +336,7 @@ public string GetRedirectUrl(string samlEndpoint, string relayState = null)`
`337`	`336`
`338`	`337`	`public class AuthRequest : BaseRequest`
`339`	`338`	`{`
`340`		`- private string _assertionConsumerServiceUrl;`
	`339`	`+ private readonly string _assertionConsumerServiceUrl;`
`341`	`340`
`342`	`341`	`/// <summary>`
`343`	`342`	`/// Initializes new instance of AuthRequest`
`@@ -369,11 +368,9 @@ public enum AuthRequestFormat`
`369`	`368`	`/// <returns></returns>`
`370`	`369`	`public override string GetRequest()`
`371`	`370`	`{`
`372`		`- using (StringWriter sw = new StringWriter())`
	`371`	`+ using (var ms = new MemoryStream())`
`373`	`372`	`{`
`374`		`- XmlWriterSettings xws = new XmlWriterSettings { OmitXmlDeclaration = true };`
`375`		`-`
`376`		`- using (XmlWriter xw = XmlWriter.Create(sw, xws))`
	`373`	`+ using (var xw = XmlWriter.Create(ms, _xmlSettings))`
`377`	`374`	`{`
`378`	`375`	`xw.WriteStartElement("samlp", "AuthnRequest", "urn:oasis:names:tc:SAML:2.0:protocol");`
`379`	`376`	`xw.WriteAttributeString("ID", _id);`
`@@ -403,7 +400,7 @@ public override string GetRequest()`
`403`	`400`	`xw.WriteEndElement();`
`404`	`401`	`}`
`405`	`402`
`406`		`- return ConvertToBase64Deflated(sw.ToString());`
	`403`	`+ return ConvertToBase64Deflated(ms);`
`407`	`404`	`}`
`408`	`405`	`}`
`409`	`406`	`}`
`@@ -413,20 +410,18 @@ public override string GetRequest()`
`413`	`410`	`/// </summary>`
`414`	`411`	`public class SignoutRequest : BaseRequest`
`415`	`412`	`{`
`416`		`- private string _nameId;`
	`413`	`+ private readonly string _nameId;`
`417`	`414`
`418`	`415`	`public SignoutRequest(string issuer, string nameId) : base(issuer)`
`419`	`416`	`{`
`420`	`417`	`_nameId = nameId;`
`421`	`418`	`}`
`422`		`-`
	`419`	`+`
`423`	`420`	`public override string GetRequest()`
`424`	`421`	`{`
`425`		`- using (StringWriter sw = new StringWriter())`
	`422`	`+ using (var ms = new MemoryStream())`
`426`	`423`	`{`
`427`		`- XmlWriterSettings xws = new XmlWriterSettings { OmitXmlDeclaration = true };`
`428`		`-`
`429`		`- using (XmlWriter xw = XmlWriter.Create(sw, xws))`
	`424`	`+ using (var xw = XmlWriter.Create(ms, _xmlSettings))`
`430`	`425`	`{`
`431`	`426`	`xw.WriteStartElement("samlp", "LogoutRequest", "urn:oasis:names:tc:SAML:2.0:protocol");`
`432`	`427`	`xw.WriteAttributeString("ID", _id);`
`@@ -444,7 +439,7 @@ public override string GetRequest()`
`444`	`439`	`xw.WriteEndElement();`
`445`	`440`	`}`
`446`	`441`
`447`		`- return ConvertToBase64Deflated(sw.ToString());`
	`442`	`+ return ConvertToBase64Deflated(ms);`
`448`	`443`	`}`
`449`	`444`	`}`
`450`	`445`	`}`