archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
4.9 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/com/oleutest/accctrl/tstsuite/test2.in

168 lines
4.4 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. # Test #1 - This test exercises all the basic functionalities of the
  2. # COM implementation of IAccessControl.
  4. # Init a new COM IAccessControl object by passing a NULL IStream pointer
  5. # into IPersistStream::Load
  7. Exec InitNewACL
  9. # I'll add 4 DENY_ACCESS ACEs and 5 GRANT_ACCESS ACEs to the ACL
  11. # First, I'll add the GRANT_ACCESS entries to the ACL but before doing that,
  12. # I have to set up an access request list locally
  14. ToggleAccessPerm COM_RIGHTS_EXECUTE
  16. Set TrusteeName RAYLAND\ACTEST1
  17. AddTrustee AccessRequestList
  18. Set TrusteeName RAYLAND\ACTEST2
  19. AddTrustee AccessRequestList
  20. Set TrusteeName RAYLAND\ACTEST3
  21. AddTrustee AccessRequestList
  22. Set TrusteeName RAYLAND\ACTEST4
  23. AddTrustee AccessRequestList
  24. Set TrusteeName rayland\administrator
  25. AddTrustee AccessRequestList
  27. # Add the GRANT_ACCESS ACEs
  28. Exec GrantAccessRights
  30. #Take a peek at the ACL
  31. Exec GetExplicitAccessRights
  33. # Goes through the same procedure for DENY_ACCESS ACEs but removes the local access request list first
  34. Destroy AccessRequestList
  36. Set TrusteeName RAYLAND\ACTEST5
  37. AddTrustee AccessRequestList
  38. Set TrusteeName RAYLAND\ACTEST6
  39. AddTrustee AccessRequestList
  40. Set TrusteeName RAYLAND\ACTEST7
  41. AddTrustee AccessRequestList
  42. Set TrusteeName RAYLAND\ACTEST8
  43. AddTrustee AccessRequestList
  45. # Add the DENY_ACCESS ACEs
  46. Exec DenyAccessRights
  48. # Call GetExplicitAccessRights to see if the ACL has been set up properly
  49. Exec GetExplicitAccessRights
  51. # Set current trustee to RAYLAND\ADMINISTRATOR and perform access check
  52. Set TrusteeName RaYLAnD\adminIstrator
  54. # RAYLAND\Administrator should be granted COM_RIGHTS_EXECUTE access
  55. Exec IsAccessPermitted
  57. # Call IsAccessPermitted to see if the caching mechanism works
  58. Exec IsAccessPermitted
  60. # Change the client security context to that of RAYLAND\ACTEST2 so I can preform some
  61. # access checking for RAYLAND\ACTEST2
  62. SwitchClientCtx
  63. ACTEST2
  64. RAYLAND
  66. # Set the current trustee to RAYLAND\ACTEST2
  67. Set TrusteeName RAYLAND\ACTEST2
  69. # Call IsAccessPermitted to perform acces checking. ACTEST2 should be granted access
  70. # to the object.
  71. Exec IsAccessPermitted
  73. # Call IsAccessPermitted to see if the caching mechanism works
  74. Exec IsAccessPermitted
  76. # Revoke some trustees from the ACL and see what happens....
  77. Set TrusteeName RAYLAND\ACTEST4
  78. AddTrustee TrusteeList
  79. Exec RevokeExplicitAccessRights
  80. Exec GetExplicitAccessRights
  82. Destroy TrusteeList
  83. Set Trusteename RAYLAND\ACTEST2
  84. AddTrustee TrusteeList
  85. Exec RevokeExplicitAccessRights
  86. Exec GetExplicitAccessRights
  88. # Call GetSizeMax to get the number of bytes required to dsave the ACL
  89. Exec GetSizeMax
  91. # Save the ACL to a file
  92. Exec SaveACL c:\actests\data1
  94. # Init a new ACL
  95. Exec InitNewACL
  97. # Take a look at the current ACL, it should be empty
  98. # Exec GetExplicitAccessRights
  100. # Load the ACL back from the same file
  101. Exec LoadACL c:\actests\data1
  103. # Take a look at the ACL, it should look the same as before it was saved
  104. Exec GetExplicitAccessRights
  106. # Revoke two grant ACEs to see what happens
  107. Set TrusteeName RAYLAND\ACTEST4
  108. AddTrustee TrusteeList
  110. Exec RevokeExplicitAccessRights
  112. # Take a look at the resulting ACL
  113. Exec GetExplicitAccessRights
  115. Destroy TrusteeList
  116. Set TrusteeName RAYLAND\ACTEST2
  117. AddTrustee TrusteeList
  119. Exec RevokeExplicitAccessRights
  121. # Take another peek a the resulting ACL
  122. Exec GetExplicitAccessRights
  124. # Perform access check for RAYLAND\ACTEST2 to check
  125. # if the revoking really works. RAYLAND\ACTEST2 should
  126. # be denied access to the object.
  128. Set TrusteeName RAYLAND\ACTEST2
  129. Exec IsAccessPermitted
  131. # Replace the ACL with a new one
  132. Set TrusteeName A
  133. Set AccessMode GRANT_ACCESS
  134. AddTrustee ExplicitAccessList
  135. Set TrusteeName B
  136. Set AccessMode DENY_ACCESS
  137. AddTrustee ExplicitAccessList
  138. Set TrusteeName G
  139. Set AccessMode GRANT_ACCESS
  140. AddTrustee ExplicitAccessList
  141. Set TrusteeName H
  142. Set AccessMode DENY_ACCESS
  143. AddTrustee ExplicitAccessList
  144. Set TrusteeName E
  145. Set AccessMode GRANT_ACCESS
  146. AddTrustee ExplicitAccessList
  147. Set TrusteeName K
  148. Set AccessMode DENY_ACCESS
  149. AddTrustee ExplicitAccessList
  150. Set TrusteeName F
  151. Set AccessMode GRANT_ACCESS
  152. AddTrustee ExplicitAccessList
  153. Set TrusteeName L
  154. Set AccessMode DENY_ACCESS
  155. AddTrustee ExplicitAccessList
  156. Set TrusteeName A
  157. Set AccessMode GRANT_ACCESS
  158. AddTrustee ExplicitAccessList
  160. Exec ReplaceAllAccessRights
  162. Exec GetExplicitAccessRights
  164. # Kill server and quit
  165. Quit
  167. # End of Test #1