archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
4.9 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/admin/cmdline/xcacls/accacc.hxx

187 lines
5.4 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. //+-------------------------------------------------------------------
  2. //
  3. // File: ACCACC.hxx
  4. //
  5. // Contents: class encapsulating NT security user ACCACC.
  6. //
  7. // Classes: CACCACC
  8. //
  9. // Functions:
  10. //
  11. // History: Nov-93 Created DaveMont
  12. //
  13. //--------------------------------------------------------------------
  14. #ifndef __ACCACC__
  15. #define __ACCACC__
  17. #include "t2.hxx"
  18. #include "account.hxx"
  20. //+-------------------------------------------------------------------
  21. //
  22. // Class: CAccountAccess
  23. //
  24. // Purpose: encapsulation of class Account and NT access masks. This
  25. // class interfaces with the security system to get SIDs from
  26. // usernames and vis-versa.
  27. //
  28. // this class has also been supplimented to contain information
  29. // about ACEs with the same SID in the ACL if a (edit) merge
  30. // operation is occuring
  31. //
  32. //--------------------------------------------------------------------
  34. class CAccountAccess: private CAccount
  35. {
  36. public:
  38. CAccountAccess(LPWSTR Name, LPWSTR System);
  40. ULONG Init(ULONG access, ULONG diraccess, BOOL filespecified);
  42. inline void ReInit();
  44. inline ULONG Sid(SID **psid);
  45. inline BYTE AceType();
  46. inline ACCESS_MASK AccessMask();
  47. inline ACCESS_MASK DirAccessMask();
  48. inline BOOL FileSpecified();
  49. inline void ClearAccessMask();
  50. void AddInheritance(BYTE Flags);
  51. inline ULONG TestInheritance();
  54. private:
  56. ACCESS_MASK _savemask; // saved requested mask (because _mask gets cleared if
  57. // the ace is not used).
  58. ACCESS_MASK _mask; // requested mask
  59. ACCESS_MASK _dirmask; // access mask for directories
  60. BOOL _filespecified;
  61. // set dir access without ACE for files
  62. BYTE _acetype;
  63. ULONG _foundinheritance; // contains the OR of all the inheritances from the original ACL
  65. };
  67. // this is used in conjunction with ACE inherit flags to indicate that access
  68. // rights in an ACE apply to the container as well
  69. #define APPLIES_TO_CONTAINER 0x4
  71. //+---------------------------------------------------------------------------
  72. //
  73. // Member: CAccountAccess::Init, public
  74. //
  75. // Synopsis: initializes access mask
  76. //
  77. // Arguments: IN [access] - access mask
  78. //
  79. //----------------------------------------------------------------------------
  80. void CAccountAccess::ReInit()
  81. {
  82. _mask = _savemask;
  83. }
  84. //+---------------------------------------------------------------------------
  85. //
  86. // Member: CAccountAccess::Sid, public
  87. //
  88. // Synopsis: returns the principal for the class
  89. //
  90. // Arguments: OUT [psid] - address of the principal name
  91. //
  92. //----------------------------------------------------------------------------
  93. ULONG CAccountAccess::Sid(SID **psid)
  94. {
  95. return(GetAccountSid(psid));
  96. }
  98. //+---------------------------------------------------------------------------
  99. //
  100. // Member: CAccountAccess::AceType, public
  101. //
  102. // Synopsis: returns the acetype (denied, allowed)
  103. //
  104. // Arguments: none
  105. //
  106. //----------------------------------------------------------------------------
  107. BYTE CAccountAccess::AceType()
  108. {
  109. return(_acetype);
  110. }
  112. //+---------------------------------------------------------------------------
  113. //
  114. // Member: CAccountAccess::AccessMask, public
  115. //
  116. // Synopsis: returns the access mask
  117. //
  118. // Arguments: none
  119. //
  120. //----------------------------------------------------------------------------
  121. ACCESS_MASK CAccountAccess::AccessMask()
  122. {
  123. return(_mask);
  124. }
  125. //+---------------------------------------------------------------------------
  126. //
  127. // Member: CAccountAccess::DirAccessMask, public
  128. //
  129. // Synopsis: returns the directory access mask
  130. //
  131. // Arguments: none
  132. //
  133. //----------------------------------------------------------------------------
  134. ACCESS_MASK CAccountAccess::DirAccessMask()
  135. {
  136. return(_dirmask);
  137. }
  138. //+---------------------------------------------------------------------------
  139. //
  140. // Member: CAccountAccess::FileSpecified, public
  141. //
  142. // Synopsis: returns if only Dir ACE should be set and no file ACE
  143. //
  144. // Arguments: none
  145. //
  146. //----------------------------------------------------------------------------
  147. BOOL CAccountAccess::FileSpecified()
  148. {
  149. return(_filespecified);
  150. }
  151. //+---------------------------------------------------------------------------
  152. //
  153. // Member: CAccountAccess::ClearAccessMask, public
  154. //
  155. // Synopsis: returns the access mask
  156. //
  157. // Arguments: none
  158. //
  159. //----------------------------------------------------------------------------
  160. void CAccountAccess::ClearAccessMask()
  161. {
  162. _mask = 0;
  163. }
  164. //+---------------------------------------------------------------------------
  165. //
  166. // Member: CAccountAccess::TestInheritance, public
  167. //
  168. // Synopsis: checks that the inheritance is valid,
  169. // that objects & containers inherit, and rights are applied to the object.
  170. //
  171. // Arguments: none
  172. //
  173. //--------------------------------------------------------------------
  174. ULONG CAccountAccess::TestInheritance()
  175. {
  176. if (_foundinheritance == ( OBJECT_INHERIT_ACE | CONTAINER_INHERIT_ACE | APPLIES_TO_CONTAINER))
  177. return(ERROR_SUCCESS);
  178. else
  179. return(ERROR_INVALID_DATA);
  180. }
  181. #endif // __ACCACC__