archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/inetcore/setup/ieak5/ieaksie/secauth.cpp

279 lines
9.3 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include "precomp.h"
  3. #include "rsop.h"
  4. #include <tchar.h>
  6. /////////////////////////////////////////////////////////////////////
  7. void InitSecAuthDlgInRSoPMode(HWND hDlg, CDlgRSoPData *pDRD)
  8. {
  9. __try
  10. {
  11. BOOL bImport = FALSE;
  12. _bstr_t bstrClass = L"RSOP_IEAKPolicySetting";
  13. HRESULT hr = pDRD->GetArrayOfPSObjects(bstrClass);
  14. if (SUCCEEDED(hr))
  15. {
  16. CPSObjData **paPSObj = pDRD->GetPSObjArray();
  17. long nPSObjects = pDRD->GetPSObjCount();
  19. BOOL bImportHandled = FALSE;
  20. BOOL bEnableHandled = FALSE;
  21. for (long nObj = 0; nObj < nPSObjects; nObj++)
  22. {
  23. // importAuthenticodeSecurityInfo field
  24. _variant_t vtValue;
  25. if (!bImportHandled)
  26. {
  27. hr = paPSObj[nObj]->pObj->Get(L"importAuthenticodeSecurityInfo", 0, &vtValue, NULL, NULL);
  28. if (SUCCEEDED(hr) && !IsVariantNull(vtValue))
  29. {
  30. //TODO: uncomment bImport = (bool)vtValue ? TRUE : FALSE;
  31. CheckRadioButton(hDlg, IDC_NOAUTH, IDC_IMPORTAUTH,
  32. (bool)vtValue ? IDC_IMPORTAUTH : IDC_NOAUTH);
  34. DWORD dwCurGPOPrec = GetGPOPrecedence(paPSObj[nObj]->pObj);
  35. pDRD->SetImportedAuthenticodePrec(dwCurGPOPrec);
  36. bImportHandled = TRUE;
  37. }
  38. }
  40. // enableTrustedPublisherLockdown field
  41. vtValue;
  42. if (!bEnableHandled)
  43. {
  44. hr = paPSObj[nObj]->pObj->Get(L"enableTrustedPublisherLockdown", 0, &vtValue, NULL, NULL);
  45. if (SUCCEEDED(hr) && !IsVariantNull(vtValue))
  46. {
  47. if ((bool)vtValue)
  48. CheckDlgButton(hDlg, IDC_TPL, BST_CHECKED);
  49. bEnableHandled = TRUE;
  50. }
  51. }
  53. // no need to process other GPOs since enabled properties have been found
  54. if (bImportHandled && bEnableHandled)
  55. break;
  56. }
  57. }
  59. EnableDlgItem2(hDlg, IDC_NOAUTH, FALSE);
  60. EnableDlgItem2(hDlg, IDC_IMPORTAUTH, FALSE);
  61. EnableDlgItem2(hDlg, IDC_MODIFYAUTH, bImport);
  63. EnableDlgItem2(hDlg, IDC_TPL, FALSE);
  64. }
  65. __except(TRUE)
  66. {
  67. }
  68. }
  70. /////////////////////////////////////////////////////////////////////
  71. HRESULT InitSecAuthPrecPage(CDlgRSoPData *pDRD, HWND hwndList)
  72. {
  73. HRESULT hr = NOERROR;
  74. __try
  75. {
  76. _bstr_t bstrClass = L"RSOP_IEAKPolicySetting";
  77. hr = pDRD->GetArrayOfPSObjects(bstrClass);
  78. if (SUCCEEDED(hr))
  79. {
  80. CPSObjData **paPSObj = pDRD->GetPSObjArray();
  81. long nPSObjects = pDRD->GetPSObjCount();
  82. for (long nObj = 0; nObj < nPSObjects; nObj++)
  83. {
  84. _bstr_t bstrGPOName = pDRD->GetGPONameFromPS(paPSObj[nObj]->pObj);
  86. // importAuthenticodeSecurityInfo field
  87. BOOL bImport = FALSE;
  88. _variant_t vtValue;
  89. hr = paPSObj[nObj]->pObj->Get(L"importAuthenticodeSecurityInfo", 0, &vtValue, NULL, NULL);
  90. if (SUCCEEDED(hr) && !IsVariantNull(vtValue))
  91. bImport = (bool)vtValue ? TRUE : FALSE;
  93. _bstr_t bstrSetting;
  94. if (bImport)
  95. {
  96. TCHAR szTemp[MAX_PATH];
  97. LoadString(g_hInstance, IDS_IMPORT_AUTHSEC_SETTING, szTemp, countof(szTemp));
  98. bstrSetting = szTemp;
  99. }
  100. else
  101. bstrSetting = GetDisabledString();
  103. InsertPrecedenceListItem(hwndList, nObj, bstrGPOName, bstrSetting);
  104. }
  105. }
  106. }
  107. __except(TRUE)
  108. {
  109. }
  110. return hr;
  111. }
  113. /////////////////////////////////////////////////////////////////////
  114. HRESULT InitAuthLockdownPrecPage(CDlgRSoPData *pDRD, HWND hwndList)
  115. {
  116. HRESULT hr = NOERROR;
  117. __try
  118. {
  119. _bstr_t bstrClass = L"RSOP_IEAKPolicySetting";
  120. hr = pDRD->GetArrayOfPSObjects(bstrClass);
  121. if (SUCCEEDED(hr))
  122. {
  123. CPSObjData **paPSObj = pDRD->GetPSObjArray();
  124. long nPSObjects = pDRD->GetPSObjCount();
  125. for (long nObj = 0; nObj < nPSObjects; nObj++)
  126. {
  127. _bstr_t bstrGPOName = pDRD->GetGPONameFromPS(paPSObj[nObj]->pObj);
  129. // enableTrustedPublisherLockdown field
  130. BOOL bImport = FALSE;
  131. _variant_t vtValue;
  132. hr = paPSObj[nObj]->pObj->Get(L"enableTrustedPublisherLockdown", 0, &vtValue, NULL, NULL);
  133. if (SUCCEEDED(hr) && !IsVariantNull(vtValue))
  134. bImport = (bool)vtValue ? TRUE : FALSE;
  136. _bstr_t bstrSetting;
  137. if (bImport)
  138. {
  139. TCHAR szTemp[MAX_PATH];
  140. LoadString(g_hInstance, IDS_ENABLE_PUB_LOCK_SETTING, szTemp, countof(szTemp));
  141. bstrSetting = szTemp;
  142. }
  143. else
  144. bstrSetting = GetDisabledString();
  146. InsertPrecedenceListItem(hwndList, nObj, bstrGPOName, bstrSetting);
  147. }
  148. }
  149. }
  150. __except(TRUE)
  151. {
  152. }
  153. return hr;
  154. }
  156. /////////////////////////////////////////////////////////////////////
  157. INT_PTR CALLBACK SecurityAuthDlgProc(HWND hDlg, UINT uMsg, WPARAM wParam, LPARAM lParam)
  158. {
  159. // Retrieve Property Sheet Page info for each call into dlg proc.
  160. LPPROPSHEETCOOKIE psCookie = (LPPROPSHEETCOOKIE)GetWindowLongPtr(hDlg, DWLP_USER);
  162. TCHAR szWorkDir[MAX_PATH],
  163. szInf[MAX_PATH];
  164. BOOL fImport;
  166. switch (uMsg)
  167. {
  168. case WM_SETFONT:
  169. //a change to mmc requires us to do this logic for all our property pages that use common controls
  170. INITCOMMONCONTROLSEX iccx;
  171. iccx.dwSize = sizeof(INITCOMMONCONTROLSEX);
  172. iccx.dwICC = ICC_ANIMATE_CLASS | ICC_BAR_CLASSES | ICC_LISTVIEW_CLASSES |ICC_TREEVIEW_CLASSES;
  173. InitCommonControlsEx(&iccx);
  174. break;
  176. case WM_INITDIALOG:
  177. SetPropSheetCookie(hDlg, lParam);
  179. // find out if this dlg is in RSoP mode
  180. psCookie = (LPPROPSHEETCOOKIE)GetWindowLongPtr(hDlg, DWLP_USER);
  181. if (psCookie->pCS->IsRSoP())
  182. {
  183. CheckRadioButton(hDlg, IDC_NOAUTH, IDC_IMPORTAUTH, IDC_NOAUTH);
  185. CDlgRSoPData *pDRD = GetDlgRSoPData(hDlg, psCookie->pCS);
  186. if (pDRD)
  187. InitSecAuthDlgInRSoPMode(hDlg, pDRD);
  188. }
  189. break;
  191. case WM_DESTROY:
  192. if (psCookie->pCS->IsRSoP())
  193. DestroyDlgRSoPData(hDlg);
  194. break;
  196. case WM_NOTIFY:
  197. switch (((LPNMHDR)lParam)->code)
  198. {
  199. case PSN_SETACTIVE:
  200. // don't do any of this stuff in RSoP mode
  201. if (!psCookie->pCS->IsRSoP())
  202. {
  203. // authenticode
  204. fImport = InsGetBool(IS_SITECERTS, TEXT("ImportAuthCode"), FALSE, GetInsFile(hDlg));
  205. CheckRadioButton(hDlg, IDC_NOAUTH, IDC_IMPORTAUTH, fImport ? IDC_IMPORTAUTH : IDC_NOAUTH);
  206. EnableDlgItem2(hDlg, IDC_MODIFYAUTH, fImport);
  207. ReadBoolAndCheckButton(IS_SITECERTS, IK_TRUSTPUBLOCK, FALSE, GetInsFile(hDlg), hDlg, IDC_TPL);
  208. }
  209. break;
  211. case PSN_APPLY:
  212. if (psCookie->pCS->IsRSoP())
  213. return FALSE;
  214. else
  215. {
  216. if (!AcquireWriteCriticalSection(hDlg))
  217. {
  218. SetWindowLongPtr(hDlg, DWLP_MSGRESULT, PSNRET_INVALID_NOCHANGEPAGE);
  219. break;
  220. }
  222. // process authenticode
  223. CreateWorkDir(GetInsFile(hDlg), IEAK_GPE_BRANDING_SUBDIR TEXT("\\AUTHCODE"), szWorkDir);
  224. PathCombine(szInf, szWorkDir, TEXT("authcode.inf"));
  226. ImportAuthCode(GetInsFile(hDlg), NULL, szInf, IsDlgButtonChecked(hDlg, IDC_IMPORTAUTH) == BST_CHECKED);
  228. if (PathIsDirectoryEmpty(szWorkDir))
  229. PathRemovePath(szWorkDir);
  231. InsWriteBoolEx(IS_SITECERTS, IK_TRUSTPUBLOCK, (IsDlgButtonChecked(hDlg, IDC_TPL) == BST_CHECKED), GetInsFile(hDlg));
  233. SignalPolicyChanged(hDlg, FALSE, TRUE, &g_guidClientExt, &g_guidSnapinExt);
  234. }
  235. break;
  237. case PSN_HELP:
  238. ShowHelpTopic(hDlg);
  239. break;
  241. default:
  242. return FALSE;
  243. }
  244. break;
  246. case WM_COMMAND:
  247. if (GET_WM_COMMAND_CMD(wParam, lParam) != BN_CLICKED)
  248. return FALSE;
  250. switch (GET_WM_COMMAND_ID(wParam, lParam))
  251. {
  252. case IDC_NOAUTH:
  253. DisableDlgItem(hDlg, IDC_MODIFYAUTH);
  254. break;
  256. case IDC_IMPORTAUTH:
  257. EnableDlgItem(hDlg, IDC_MODIFYAUTH);
  258. break;
  260. case IDC_MODIFYAUTH:
  261. ModifyAuthCode(hDlg);
  262. break;
  264. default:
  265. return FALSE;
  266. }
  267. break;
  269. case WM_HELP:
  270. ShowHelpTopic(hDlg);
  271. break;
  273. default:
  274. return FALSE;
  275. }
  277. return TRUE;
  278. }