archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/admin/pchealth/helpctr/shell/misc/securitymanager.cpp

196 lines
4.6 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /******************************************************************************
  3. Copyright (c) 1999 Microsoft Corporation
  5. Module Name:
  6. SecurityManager.cpp
  8. Abstract:
  9. This file contains the implementation of the CSecurityManager class,
  10. which is used to control access to the Scripting Framework.
  12. Revision History:
  13. Davide Massarenti (dmassare) 08/07/99
  14. created
  16. ******************************************************************************/
  18. #include "stdafx.h"
  20. #include <MPC_logging.h>
  22. CPCHSecurityManager::CPCHSecurityManager()
  23. {
  24. m_parent = NULL; // CPCHHelpCenterExternal* m_parent;
  25. m_fActivated = false; // bool m_fActivated;
  26. }
  28. void CPCHSecurityManager::Initialize( /*[in]*/ CPCHHelpCenterExternal* parent )
  29. {
  30. m_parent = parent;
  31. }
  33. /////////////////////////////////////////////////////////////////////////////
  35. HRESULT CPCHSecurityManager::ActivateService()
  36. {
  37. __HCP_FUNC_ENTRY( "CPCHSecurityManager::ActivateService" );
  39. HRESULT hr;
  40. CComPtr<IPCHService> svc;
  43. __MPC_EXIT_IF_METHOD_FAILS(hr, svc.CoCreateInstance( CLSID_PCHService ));
  45. m_fActivated = (svc != NULL);
  47. hr = S_OK;
  50. __HCP_FUNC_CLEANUP;
  52. Thread_Abort();
  54. __HCP_FUNC_EXIT(hr);
  55. }
  57. /////////////////////////////////////////////////////////////////////////////
  59. bool CPCHSecurityManager::IsUrlTrusted( /*[in]*/ LPCWSTR pwszURL, /*[in]*/ bool *pfSystem )
  60. {
  61. bool fTrusted = false;
  62. MPC::wstring strUrlModified;
  63. MPC::wstring strVendor;
  65. CPCHWrapProtocolInfo::NormalizeUrl( pwszURL, strUrlModified, /*fReverse*/true );
  67. //
  68. // Don't try to use the store at first. It requires the service to be up and running...
  69. //
  70. (void)CPCHContentStore::s_GLOBAL->IsTrusted( strUrlModified.c_str(), fTrusted, NULL, false );
  71. if(fTrusted == false)
  72. {
  73. CPCHProxy_IPCHService* svc = m_parent->Service();
  75. //
  76. // Not a system page, we need to wake up the service...
  77. //
  78. if(m_fActivated == false)
  79. {
  80. if(SUCCEEDED(Thread_Start( this, ActivateService, NULL )))
  81. {
  82. Thread_Wait( /*fForce*/false, /*fNoMsg*/true );
  83. }
  84. }
  86. if(m_fActivated)
  87. {
  88. //
  89. // Get the trust status from the content store.
  90. //
  91. (void)CPCHContentStore::s_GLOBAL->IsTrusted( strUrlModified.c_str(), fTrusted, &strVendor );
  92. }
  93. }
  95. if(pfSystem)
  96. {
  97. *pfSystem = (fTrusted && strVendor.length() == 0);
  98. }
  100. return fTrusted;
  101. }
  103. /////////////////////////////////////////////////////////////////////////////
  105. STDMETHODIMP CPCHSecurityManager::QueryService( REFGUID guidService, REFIID riid, void **ppv )
  106. {
  107. HRESULT hr = E_NOINTERFACE;
  109. if(InlineIsEqualGUID( riid, IID_IInternetSecurityManager ))
  110. {
  111. hr = QueryInterface( riid, ppv );
  112. }
  114. return hr;
  115. }
  118. STDMETHODIMP CPCHSecurityManager::MapUrlToZone( /*[in] */ LPCWSTR pwszUrl ,
  119. /*[out]*/ DWORD *pdwZone ,
  120. /*[in] */ DWORD dwFlags )
  121. {
  122. HRESULT hr = INET_E_DEFAULT_ACTION;
  124. if(IsUrlTrusted( pwszUrl ))
  125. {
  126. if(pdwZone) *pdwZone = URLZONE_TRUSTED;
  128. hr = S_OK;
  129. }
  131. return hr;
  132. }
  134. STDMETHODIMP CPCHSecurityManager::ProcessUrlAction( /*[in] */ LPCWSTR pwszUrl ,
  135. /*[in] */ DWORD dwAction ,
  136. /*[out]*/ BYTE *pPolicy ,
  137. /*[in] */ DWORD cbPolicy ,
  138. /*[in] */ BYTE *pContext ,
  139. /*[in] */ DWORD cbContext ,
  140. /*[in] */ DWORD dwFlags ,
  141. /*[in] */ DWORD dwReserved )
  142. {
  143. HRESULT hr;
  144. bool fSystem;
  145. bool fTrusted;
  148. fTrusted = IsUrlTrusted( pwszUrl, &fSystem );
  149. if(fTrusted)
  150. {
  151. //
  152. // If the page is trusted but not a system page, we normally map it to the TRUSTED zone.
  153. // However, the default settings for the trusted zone is to prompt for ActiveX not marked
  154. // as safe for scripting. Since this is the case for most of our objects, we allow all of them.
  155. //
  156. // Also, we enable all the script-related actions.
  157. //
  158. if(fSystem == false)
  159. {
  160. fTrusted = false;
  162. if(dwAction >= URLACTION_ACTIVEX_MIN &&
  163. dwAction <= URLACTION_ACTIVEX_MAX )
  164. {
  165. fTrusted = true;
  166. }
  168. if(dwAction >= URLACTION_SCRIPT_MIN &&
  169. dwAction <= URLACTION_SCRIPT_MAX )
  170. {
  171. fTrusted = true;
  172. }
  173. }
  174. }
  177. if(fTrusted)
  178. {
  179. if(cbPolicy >= sizeof (DWORD))
  180. {
  181. *(DWORD *)pPolicy = URLPOLICY_ALLOW;
  182. hr = S_OK;
  183. }
  184. else
  185. {
  186. hr = S_FALSE;
  187. }
  188. }
  189. else
  190. {
  191. hr = INET_E_DEFAULT_ACTION;
  192. }
  195. return hr;
  196. }