archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/ds/security/services/ca/certmmc/officer.h

133 lines
3.4 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. //+--------------------------------------------------------------------------
  2. // File: officer.h
  3. // Contents: officer rights classes
  4. //---------------------------------------------------------------------------
  5. #include "sid.h"
  6. #include "tptrlist.h"
  8. namespace CertSrv
  9. {
  11. class CClientPermission
  12. {
  13. public:
  14. CClientPermission(BOOL fAllow, PSID pSid);
  15. ~CClientPermission() {}
  17. static BOOL IsInitialized(CClientPermission* pObj)
  18. {
  19. return NULL != pObj &&
  20. NULL != ((PSID)pObj->m_Sid);
  21. }
  22. void SetPermission(BOOL fAllow) { m_fAllow = fAllow;}
  23. BOOL GetPermission() { return m_fAllow; }
  24. LPCWSTR GetName() { return m_Sid.GetName(); }
  25. PSID GetSid() { return m_Sid.GetSid(); }
  26. friend class COfficerRights;
  27. BOOL operator==(const CClientPermission& rhs)
  28. {
  29. return EqualSid(GetSid(),
  30. (const_cast<CClientPermission&>(rhs)).GetSid());
  31. }
  33. protected:
  34. BOOL m_fAllow;
  35. CSid m_Sid;
  36. };
  38. class COfficerRights
  39. {
  40. public:
  41. COfficerRights() : m_pSid(NULL), m_List() {}
  42. ~COfficerRights() { delete m_pSid; }
  44. HRESULT Init(PACCESS_ALLOWED_CALLBACK_ACE pAce);
  45. HRESULT Add(PSID pSID, BOOL fAllow);
  46. HRESULT RemoveAt(DWORD dwIndex)
  47. {
  48. return m_List.RemoveAt(dwIndex)?S_OK:E_INVALIDARG;
  49. }
  50. HRESULT SetAt(DWORD dwIndex, BOOL fAllow)
  51. {
  52. CClientPermission *pClient = m_List.GetAt(dwIndex);
  53. if(!pClient)
  54. return E_INVALIDARG;
  55. pClient->SetPermission(fAllow);
  56. return S_OK;
  57. }
  58. CClientPermission* GetAt(DWORD dwIndex)
  59. {
  60. return m_List.GetAt(dwIndex);
  61. }
  63. DWORD Find(PSID pSid);
  64. DWORD GetCount() { return m_List.GetCount(); }
  65. LPCWSTR GetName() { return m_pSid->GetName(); };
  66. PSID GetSid() { return m_pSid->GetSid(); }
  68. friend class COfficerRightsList;
  70. protected:
  72. DWORD GetAceSize(BOOL fAllow);
  73. HRESULT AddAce(PACL pAcl, BOOL fAllow);
  74. HRESULT AddSidList(PACCESS_ALLOWED_CALLBACK_ACE pAce);
  76. void Cleanup()
  77. {
  78. if (m_pSid)
  79. {
  80. delete m_pSid;
  81. m_pSid=NULL;
  82. }
  83. m_List.Cleanup();
  84. }
  85. // following bools are used to decide if this COfficerRights has to
  86. // be represented as one or two aces (allow/deny) in the ACL
  87. CSid* m_pSid; // use pointer instead of member object because
  88. // we don't know the sid at construct time
  89. TPtrList<CClientPermission> m_List;
  90. };
  92. class COfficerRightsList
  93. {
  94. public:
  95. COfficerRightsList() : m_List(NULL), m_dwCountList(0) {}
  96. ~COfficerRightsList();
  98. HRESULT Load(PSECURITY_DESCRIPTOR pSD);
  99. HRESULT Save(PSECURITY_DESCRIPTOR &rpSD);
  100. COfficerRights* GetAt(DWORD dwIndex)
  101. {
  102. if(dwIndex>=m_dwCountList)
  103. return NULL;
  104. return m_List[dwIndex];
  105. }
  107. DWORD GetCount() { return m_dwCountList;}
  109. void Dump();
  110. void Cleanup()
  111. {
  112. if (m_List != NULL)
  113. {
  114. for(DWORD dwCount=0;dwCount<m_dwCountList;dwCount++)
  115. {
  116. if (m_List[dwCount] != NULL)
  117. delete m_List[dwCount];
  118. }
  120. LocalFree(m_List);
  121. m_List = NULL;
  122. }
  123. m_dwCountList = 0;
  124. }
  126. protected:
  128. HRESULT BuildAcl(PACL &rpAcl);
  129. COfficerRights **m_List;
  130. DWORD m_dwCountList;
  131. };
  133. }; // namespace CertSrv