archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/inetsrv/iis/admin/wmiprov_dynamic/adminacl.cpp

984 lines
21 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1998-2001 Microsoft Corporation
  5. Module Name:
  7. adminacl.cpp
  9. Abstract:
  11. Contains implementation of CAdminACL
  13. Author:
  15. ???
  17. Revision History:
  19. Mohit Srivastava 18-Dec-00
  21. --*/
  23. #define REF
  24. #define BUFFER_SIZE 512
  26. #include "iisprov.h"
  27. #include "adminacl.h"
  28. #include <adserr.h>
  30. CAdminACL::CAdminACL()
  31. {
  32. m_pADs = NULL;
  33. m_pSD = NULL;
  34. m_pDACL = NULL;
  35. bIsInherit = FALSE;
  36. }
  38. CAdminACL::~CAdminACL()
  39. {
  40. CloseSD();
  41. }
  43. void CAdminACL::CloseSD()
  44. {
  45. if(m_pDACL)
  46. {
  47. m_pDACL->Release();
  48. m_pDACL = NULL;
  49. }
  51. if(m_pSD)
  52. {
  53. m_pSD->Release();
  54. m_pSD = NULL;
  55. }
  57. if(m_pADs)
  58. {
  59. m_pADs->Release();
  60. m_pADs = NULL;
  61. }
  62. }
  64. HRESULT CAdminACL::GetObjectAsync(
  65. IWbemClassObject* pObj,
  66. ParsedObjectPath* pParsedObject,
  67. WMI_CLASS* pWMIClass)
  68. {
  69. DBG_ASSERT(m_pSD);
  70. DBG_ASSERT(m_pDACL);
  72. HRESULT hr = S_OK;
  74. if( pWMIClass->pkt == &METABASE_KEYTYPE_DATA::s_TYPE_AdminACL )
  75. {
  76. hr = PopulateWmiAdminACL(pObj);
  77. }
  78. else if( pWMIClass->pkt == &METABASE_KEYTYPE_DATA::s_TYPE_AdminACE )
  79. {
  80. _bstr_t bstrTrustee;
  81. GetTrustee(pObj, pParsedObject, bstrTrustee);
  82. CACEEnumOperation_FindAndReturn op(this, pObj, bstrTrustee, bIsInherit);
  83. hr = EnumACEsAndOp(REF op);
  84. }
  85. else
  86. {
  87. DBG_ASSERT(false && "Only valid on AdminACL and AdminACE classes");
  88. hr = E_INVALIDARG;
  89. }
  91. return hr;
  92. }
  94. HRESULT CAdminACL::EnumerateACEsAndIndicate(
  95. BSTR i_bstrNameValue,
  96. CWbemServices& i_refNamespace,
  97. IWbemObjectSink& i_refWbemObjectSink)
  98. {
  99. DBG_ASSERT(m_pSD);
  100. DBG_ASSERT(m_pDACL);
  102. CACEEnumOperation_IndicateAll op(
  103. i_bstrNameValue,
  104. REF i_refNamespace,
  105. REF i_refWbemObjectSink,
  106. bIsInherit);
  107. return EnumACEsAndOp(REF op);
  108. }
  110. HRESULT CAdminACL::DeleteObjectAsync(
  111. ParsedObjectPath* pParsedObject)
  112. {
  113. HRESULT hr = S_OK;
  114. _bstr_t bstrTrustee;
  116. //
  117. // get the trustee from key
  118. //
  119. GetTrustee(NULL, pParsedObject, bstrTrustee);
  121. //
  122. // remove the ACE
  123. //
  124. DBG_ASSERT(m_pDACL);
  125. CACEEnumOperation_FindAndRemove op(this, bstrTrustee);
  126. hr = EnumACEsAndOp(REF op);
  128. //
  129. // set the modified AdminACL back into the metabase
  130. //
  131. if(SUCCEEDED(hr))
  132. hr = SetSD();
  134. return hr;
  135. }
  137. HRESULT CAdminACL::PutObjectAsync(
  138. IWbemClassObject* pObj,
  139. ParsedObjectPath* pParsedObject,
  140. WMI_CLASS* pWMIClass)
  141. {
  142. DBG_ASSERT(m_pSD);
  143. DBG_ASSERT(m_pDACL);
  145. HRESULT hr = S_OK;
  147. if( pWMIClass->pkt == &METABASE_KEYTYPE_DATA::s_TYPE_AdminACL )
  148. {
  149. hr = SetADSIAdminACL(pObj);
  150. }
  151. else if( pWMIClass->pkt == &METABASE_KEYTYPE_DATA::s_TYPE_AdminACE )
  152. {
  153. _bstr_t bstrTrustee;
  154. GetTrustee(NULL, pParsedObject, bstrTrustee);
  156. CACEEnumOperation_FindAndUpdate op(this, pObj, bstrTrustee);
  157. hr = EnumACEsAndOp(REF op);
  158. if(hr == WBEM_E_NOT_FOUND)
  159. {
  160. hr = AddACE(pObj, bstrTrustee);
  161. }
  162. }
  163. else
  164. {
  165. DBG_ASSERT(false && "Only valid on AdminACL and AdminACE");
  166. hr = E_INVALIDARG;
  167. }
  169. // set the modified AdminACL back into the metabase
  170. if(SUCCEEDED(hr))
  171. hr = SetSD();
  173. return hr;
  174. }
  176. HRESULT CAdminACL::PopulateWmiAdminACL(
  177. IWbemClassObject* pObj
  178. )
  179. {
  180. VARIANT vt;
  181. HRESULT hr = S_OK;
  183. VARIANT vtTrue;
  184. vtTrue.boolVal = VARIANT_TRUE;
  185. vtTrue.vt = VT_BOOL;
  187. // Owner
  188. vt.vt = VT_BSTR;
  189. hr = m_pSD->get_Owner(&vt.bstrVal);
  190. if(SUCCEEDED(hr))
  191. {
  192. hr = pObj->Put(L"Owner", 0, &vt, 0);
  193. VariantClear(&vt);
  194. }
  196. if(bIsInherit && SUCCEEDED(hr))
  197. {
  198. hr = CUtils::SetPropertyQualifiers(
  199. pObj, L"Owner", &g_wszIsInherit, &vtTrue, 1);
  200. }
  202. // Group
  203. vt.vt = VT_BSTR;
  204. if(SUCCEEDED(hr))
  205. hr = m_pSD->get_Group(&vt.bstrVal);
  206. if(SUCCEEDED(hr))
  207. {
  208. hr = pObj->Put(L"Group", 0, &vt, 0);
  209. VariantClear(&vt);
  210. }
  212. if(bIsInherit && SUCCEEDED(hr))
  213. {
  214. hr = CUtils::SetPropertyQualifiers(
  215. pObj, L"Group", &g_wszIsInherit, &vtTrue, 1);
  216. }
  218. // ControlFlags
  219. vt.vt = VT_I4;
  220. if(SUCCEEDED(hr))
  221. hr = m_pSD->get_Control(&vt.lVal);
  222. if(SUCCEEDED(hr))
  223. {
  224. hr = pObj->Put(L"ControlFlags", 0, &vt, 0);
  225. VariantClear(&vt);
  226. }
  228. if(bIsInherit && SUCCEEDED(hr))
  229. {
  230. hr = CUtils::SetPropertyQualifiers(
  231. pObj, L"ControlFlags", &g_wszIsInherit, &vtTrue, 1);
  232. }
  234. return hr;
  235. }
  237. HRESULT CAdminACL::SetADSIAdminACL(
  238. IWbemClassObject* pObj
  239. )
  240. {
  241. VARIANT vt;
  242. HRESULT hr;
  244. // Owner
  245. hr = pObj->Get(L"Owner", 0, &vt, NULL, NULL);
  246. if(SUCCEEDED(hr) && vt.vt == VT_BSTR)
  247. hr = m_pSD->put_Owner(vt.bstrVal);
  248. VariantClear(&vt);
  250. // Owner
  251. if(SUCCEEDED(hr))
  252. hr = pObj->Get(L"Group", 0, &vt, NULL, NULL);
  253. if(SUCCEEDED(hr) && vt.vt == VT_BSTR)
  254. hr = m_pSD->put_Group(vt.bstrVal);
  255. VariantClear(&vt);
  257. // ControlFlags
  258. if(SUCCEEDED(hr))
  259. hr = pObj->Get(L"ControlFlags", 0, &vt, NULL, NULL);
  260. if(SUCCEEDED(hr) && vt.vt == VT_I4)
  261. hr = m_pSD->put_Control(vt.lVal);
  262. VariantClear(&vt);
  264. if(FAILED(hr))
  265. {
  266. DBGPRINTF((DBG_CONTEXT, "Failed, hr: 0x%x\n", hr));
  267. }
  268. return hr;
  269. }
  271. HRESULT CAdminACL::OpenSD(
  272. LPCWSTR wszMbPath,
  273. IMSAdminBase2* pAdminBase)
  274. {
  275. DBG_ASSERT(wszMbPath);
  277. CComVariant svar;
  278. METADATA_HANDLE hObjHandle = NULL;
  279. HRESULT hr = S_OK;
  280. DWORD dwBufferSize = 0;
  281. METADATA_RECORD mdrMDData;
  282. BYTE pBuffer[BUFFER_SIZE];
  284. // close SD interface first
  285. CloseSD();
  287. CComBSTR sbstrAdsPath;
  288. hr = GetAdsPath(wszMbPath, &sbstrAdsPath);
  289. if(FAILED(hr))
  290. {
  291. DBGPRINTF((DBG_CONTEXT, "Failed, hr: 0x%x\n", hr));
  292. return hr;
  293. }
  295. // get m_pADs
  296. hr = ADsGetObject(
  297. sbstrAdsPath,
  298. IID_IADs,
  299. (void**)&m_pADs
  300. );
  301. if(FAILED(hr))
  302. {
  303. DBGPRINTF((DBG_CONTEXT, "Failed, hr: 0x%x\n", hr));
  304. return hr;
  305. }
  307. // get m_pSD
  308. hr = m_pADs->Get(L"AdminACL",&svar);
  309. if(FAILED(hr))
  310. {
  311. DBGPRINTF((DBG_CONTEXT, "Failed, hr: 0x%x\n", hr));
  312. if(hr == E_ADS_PROPERTY_NOT_SUPPORTED)
  313. {
  314. //
  315. // Do this, so WMI does not fail query operations.
  316. //
  317. hr = WBEM_E_NOT_FOUND;
  318. }
  319. return hr;
  320. }
  322. hr = V_DISPATCH(&svar)->QueryInterface(
  323. IID_IADsSecurityDescriptor,
  324. (void**)&m_pSD
  325. );
  326. if(FAILED(hr))
  327. {
  328. DBGPRINTF((DBG_CONTEXT, "Failed, hr: 0x%x\n", hr));
  329. return hr;
  330. }
  332. // get m_pDACL
  333. CComPtr<IDispatch> spDisp;
  334. hr = m_pSD->get_DiscretionaryAcl(&spDisp);
  335. if(FAILED(hr))
  336. {
  337. DBGPRINTF((DBG_CONTEXT, "Failed, hr: 0x%x\n", hr));
  338. return hr;
  339. }
  341. hr = spDisp->QueryInterface(
  342. IID_IADsAccessControlList,
  343. (void**)&m_pDACL
  344. );
  345. if(FAILED(hr))
  346. {
  347. DBGPRINTF((DBG_CONTEXT, "Failed, hr: 0x%x\n", hr));
  348. return hr;
  349. }
  351. // set bIsInherit
  353. hr = pAdminBase->OpenKey(
  354. METADATA_MASTER_ROOT_HANDLE,
  355. wszMbPath,
  356. METADATA_PERMISSION_READ,
  357. DEFAULT_TIMEOUT_VALUE,
  358. &hObjHandle
  359. );
  360. if(FAILED(hr))
  361. return hr;
  363. MD_SET_DATA_RECORD(&mdrMDData,
  364. MD_ADMIN_ACL, // ID for "AdminAcl"
  365. METADATA_INHERIT | METADATA_ISINHERITED,
  366. ALL_METADATA,
  367. ALL_METADATA,
  368. BUFFER_SIZE,
  369. pBuffer);
  371. hr = pAdminBase->GetData(
  372. hObjHandle,
  373. L"",
  374. &mdrMDData,
  375. &dwBufferSize
  376. );
  378. hr = S_OK;
  380. bIsInherit = mdrMDData.dwMDAttributes & METADATA_ISINHERITED;
  382. if (hObjHandle && pAdminBase) {
  383. pAdminBase->CloseKey(hObjHandle);
  384. }
  386. return hr;
  387. }
  390. HRESULT CAdminACL::SetSD()
  391. {
  392. VARIANT var;
  393. HRESULT hr = S_OK;
  394. IDispatch* pDisp = NULL;
  396. // put m_pDACL
  397. hr = m_pDACL->QueryInterface(
  398. IID_IDispatch,
  399. (void**)&pDisp
  400. );
  401. if(FAILED(hr))
  402. return hr;
  404. hr = m_pSD->put_DiscretionaryAcl(pDisp);
  405. pDisp->Release();
  406. if(FAILED(hr))
  407. return hr;
  409. //
  410. // put AdminACL
  411. //
  412. hr = m_pSD->QueryInterface(
  413. IID_IDispatch,
  414. (void**)&pDisp
  415. );
  416. if(FAILED(hr))
  417. return hr;
  419. VariantInit(&var);
  421. var.vt = VT_DISPATCH;
  422. var.pdispVal = pDisp;
  423. hr = m_pADs->Put(L"AdminACL",var); // pDisp will be released by this call Put().
  424. if(FAILED(hr))
  425. return hr;
  427. //
  428. // Commit the change to the active directory
  429. //
  430. hr = m_pADs->SetInfo();
  432. return hr;
  433. }
  435. HRESULT CAdminACL::GetAdsPath(
  436. LPCWSTR i_wszMbPath,
  437. BSTR* o_pbstrAdsPath)
  438. {
  439. DBG_ASSERT(i_wszMbPath);
  440. DBG_ASSERT(o_pbstrAdsPath);
  441. DBG_ASSERT(*o_pbstrAdsPath == NULL);
  443. CComBSTR sbstr(L"IIS://LocalHost");
  444. if(sbstr.m_str == NULL)
  445. {
  446. return WBEM_E_OUT_OF_MEMORY;
  447. }
  449. //
  450. // trim the first three characters "/LM"
  451. //
  452. sbstr += (i_wszMbPath+3);
  453. if(sbstr.m_str == NULL)
  454. {
  455. return WBEM_E_OUT_OF_MEMORY;
  456. }
  458. //
  459. // Set out params if everything succeeds
  460. //
  461. *o_pbstrAdsPath = sbstr.Detach();
  462. return S_OK;
  463. }
  465. HRESULT CAdminACL::EnumACEsAndOp(
  466. CACEEnumOperation_Base& refOp)
  467. /*++
  469. Synopsis:
  470. This enumerates all the aces for the current acl.
  472. Arguments: [refOp] - Implements Do, and Done. It is okay if Do throws exceptions.
  473. This function will cleanup correctly.
  475. Return Value:
  477. --*/
  478. {
  479. HRESULT hr = S_OK;
  480. CComVariant var;
  481. CComPtr<IEnumVARIANT> spEnum;
  482. ULONG lFetch;
  483. CComPtr<IADsAccessControlEntry> spACE;
  485. hr = GetACEEnum(&spEnum);
  486. if ( FAILED(hr) )
  487. return hr;
  489. //
  490. // Enumerate ACEs
  491. //
  492. hr = spEnum->Next( 1, &var, &lFetch );
  493. while( hr == S_OK )
  494. {
  495. if (lFetch == 1)
  496. {
  497. if (VT_DISPATCH != V_VT(&var))
  498. {
  499. hr = E_UNEXPECTED;
  500. break;
  501. }
  503. //
  504. // Get the individual ACE
  505. //
  506. hr = V_DISPATCH(&var)->QueryInterface(
  507. IID_IADsAccessControlEntry,
  508. (void**)&spACE);
  510. if ( SUCCEEDED(hr) )
  511. {
  512. hr = refOp.Do(spACE);
  513. if(FAILED(hr))
  514. {
  515. DBGPRINTF((DBG_CONTEXT, "Failure, hr=0x%x\n", hr));
  516. return hr;
  517. }
  518. if(refOp.Done() == CACEEnumOperation_Base::eDONE_YES)
  519. {
  520. break;
  521. }
  522. spACE = NULL;
  523. }
  524. }
  525. var.Clear();
  527. hr = spEnum->Next( 1, &var, &lFetch );
  528. if(hr == S_FALSE && refOp.Done() == CACEEnumOperation_Base::eDONE_NO)
  529. {
  530. hr = WBEM_E_NOT_FOUND;
  531. DBGPRINTF((DBG_CONTEXT, "Failure, hr=0x%x\n", hr));
  532. return hr;
  533. }
  534. }
  536. return hr;
  537. }
  539. void CAdminACL::GetTrustee(
  540. IWbemClassObject* pObj,
  541. ParsedObjectPath* pPath,
  542. _bstr_t& bstrTrustee
  543. )
  544. /*++
  546. Synopsis:
  547. parse ParsedObjectPath to get the Trustee key
  549. Arguments: [pObj] -
  550. [pPath] -
  551. [bstrTrustee] -
  553. --*/
  554. {
  555. KeyRef* pkr;
  556. WCHAR* pszKey = L"Trustee";
  558. VARIANT vtTrue;
  559. vtTrue.boolVal = VARIANT_TRUE;
  560. vtTrue.vt = VT_BOOL;
  562. pkr = CUtils::GetKey(pPath, pszKey);
  563. if(pkr->m_vValue.vt == VT_BSTR && pkr->m_vValue.bstrVal != NULL)
  564. {
  565. bstrTrustee = pkr->m_vValue;
  566. }
  567. else
  568. {
  569. THROW_ON_ERROR(WBEM_E_INVALID_OBJECT);
  570. }
  572. if (pObj)
  573. {
  574. _bstr_t bstr = pkr->m_pName;
  575. HRESULT hr = pObj->Put(bstr, 0, &pkr->m_vValue, 0);
  576. THROW_ON_ERROR(hr);
  578. if(bIsInherit && SUCCEEDED(hr))
  579. {
  580. hr = CUtils::SetPropertyQualifiers(
  581. pObj, L"Trustee", &g_wszIsInherit, &vtTrue, 1);
  583. THROW_ON_ERROR(hr);
  584. }
  585. }
  586. }
  589. HRESULT CAdminACL::GetACEEnum(
  590. IEnumVARIANT** pEnum)
  591. {
  592. HRESULT hr = S_OK;
  593. LPUNKNOWN pUnk = NULL;
  595. DBG_ASSERT(pEnum);
  597. if(*pEnum)
  598. {
  599. (*pEnum)->Release();
  600. }
  602. hr = m_pDACL->get__NewEnum( &pUnk );
  603. if ( SUCCEEDED(hr) )
  604. {
  605. hr = pUnk->QueryInterface( IID_IEnumVARIANT, (void**) pEnum );
  606. }
  608. return hr;
  609. }
  611. HRESULT CAdminACL::AddACE(
  612. IWbemClassObject* pObj,
  613. _bstr_t& bstrTrustee
  614. )
  615. /*++
  617. Synopsis:
  618. Add an ACE.
  620. Arguments: [pObj] -
  621. [bstrTrustee] -
  623. Return Value:
  625. --*/
  626. {
  627. HRESULT hr = m_pDACL->put_AclRevision(ADS_SD_REVISION_DS);
  628. if(FAILED(hr))
  629. {
  630. DBGPRINTF((DBG_CONTEXT, "Failed, hr: 0x%x\n", hr));
  631. return hr;
  632. }
  634. // create a ACE
  635. IADsAccessControlEntry* pACE = NULL;
  636. hr = NewACE(
  637. pObj,
  638. bstrTrustee,
  639. &pACE);
  640. if(FAILED(hr))
  641. {
  642. DBGPRINTF((DBG_CONTEXT, "Failed, hr: 0x%x\n", hr));
  643. return hr;
  644. }
  646. // add the ACE
  647. IDispatch* pDisp = NULL;
  648. hr = pACE->QueryInterface(IID_IDispatch,(void**)&pDisp);
  649. if(SUCCEEDED(hr))
  650. {
  651. hr = m_pDACL->AddAce(pDisp);
  652. pDisp->Release();
  653. }
  655. pACE->Release();
  657. return hr;
  658. }
  660. HRESULT CAdminACL::NewACE(
  661. IWbemClassObject* pObj,
  662. _bstr_t& bstrTrustee,
  663. IADsAccessControlEntry** ppACE
  664. )
  665. /*++
  667. Synopsis:
  668. function to create an ACE
  670. Arguments: [pObj] -
  671. [bstrTrustee] -
  672. [ppACE] -
  674. Return Value:
  676. --*/
  677. {
  678. DBG_ASSERT(ppACE);
  680. HRESULT hr = CoCreateInstance(
  681. CLSID_AccessControlEntry,
  682. NULL,
  683. CLSCTX_INPROC_SERVER,
  684. IID_IADsAccessControlEntry,
  685. (void**)ppACE);
  687. //
  688. // Trustee
  689. //
  690. if(SUCCEEDED(hr))
  691. hr = (*ppACE)->put_Trustee(bstrTrustee);
  693. if(SUCCEEDED(hr))
  694. hr = SetDataOfACE(pObj, *ppACE);
  696. return hr;
  697. }
  700. HRESULT CAdminACL::SetDataOfACE(
  701. IWbemClassObject* pObj,
  702. IADsAccessControlEntry* pACE
  703. )
  704. {
  705. HRESULT hr;
  706. CComVariant vt;
  708. //
  709. // AccessMask
  710. //
  711. hr = pObj->Get(L"AccessMask", 0, &vt, NULL, NULL);
  712. if(SUCCEEDED(hr) && vt.vt == VT_I4)
  713. hr = pACE->put_AccessMask(vt.lVal);
  714. vt.Clear();
  716. //
  717. // AceType
  718. //
  719. if(SUCCEEDED(hr))
  720. hr = pObj->Get(L"AceType", 0, &vt, NULL, NULL);
  721. if(SUCCEEDED(hr) && vt.vt == VT_I4)
  722. hr = pACE->put_AceType(vt.lVal);
  723. vt.Clear();
  725. //
  726. // AceFlags
  727. //
  728. if(SUCCEEDED(hr))
  729. hr = pObj->Get(L"AceFlags", 0, &vt, NULL, NULL);
  730. if(SUCCEEDED(hr) && vt.vt == VT_I4)
  731. hr = pACE->put_AceFlags(vt.lVal);
  732. vt.Clear();
  734. //
  735. // Flags
  736. //
  737. if(SUCCEEDED(hr))
  738. hr = pObj->Get(L"Flags", 0, &vt, NULL, NULL);
  739. if(SUCCEEDED(hr) && vt.vt == VT_I4)
  740. hr = pACE->put_Flags(vt.lVal);
  741. vt.Clear();
  743. //
  744. // ObjectType
  745. //
  746. if(SUCCEEDED(hr))
  747. hr = pObj->Get(L"ObjectType", 0, &vt, NULL, NULL);
  748. if(SUCCEEDED(hr) && vt.vt == VT_BSTR)
  749. hr = pACE->put_ObjectType(vt.bstrVal);
  750. vt.Clear();
  752. //
  753. // InheritedObjectType
  754. //
  755. if(SUCCEEDED(hr))
  756. hr = pObj->Get(L"InheritedObjectType", 0, &vt, NULL, NULL);
  757. if(SUCCEEDED(hr) && vt.vt == VT_BSTR)
  758. hr = pACE->put_InheritedObjectType(vt.bstrVal);
  759. vt.Clear();
  761. return hr;
  762. }
  764. //
  765. // CACEEnumOperation_Base
  766. //
  768. HRESULT CACEEnumOperation_Base::PopulateWmiACE(
  769. IWbemClassObject* pObj,
  770. IADsAccessControlEntry* pACE,
  771. BOOL bIsInherit
  772. )
  773. {
  774. _variant_t vt;
  775. BSTR bstr;
  776. long lVal;
  777. HRESULT hr;
  779. VARIANT vtTrue;
  780. vtTrue.boolVal = VARIANT_TRUE;
  781. vtTrue.vt = VT_BOOL;
  783. // AccessMask
  784. hr = pACE->get_AccessMask(&lVal);
  785. if(SUCCEEDED(hr))
  786. {
  787. vt.vt = VT_I4;
  788. vt.lVal = lVal;
  789. hr = pObj->Put(L"AccessMask", 0, &vt, 0);
  791. if(bIsInherit && SUCCEEDED(hr))
  792. {
  793. hr = CUtils::SetPropertyQualifiers(
  794. pObj, L"AccessMask", &g_wszIsInherit, &vtTrue, 1);
  795. }
  797. }
  799. // AceType
  800. if(SUCCEEDED(hr))
  801. hr = pACE->get_AceType(&lVal);
  802. if(SUCCEEDED(hr))
  803. {
  804. vt.vt = VT_I4;
  805. vt.lVal = lVal;
  806. hr = pObj->Put(L"AceType", 0, &vt, 0);
  808. if(bIsInherit && SUCCEEDED(hr))
  809. {
  810. hr = CUtils::SetPropertyQualifiers(
  811. pObj, L"AceType", &g_wszIsInherit, &vtTrue, 1);
  812. }
  813. }
  815. // AceFlags
  816. if(SUCCEEDED(hr))
  817. hr = pACE->get_AceFlags(&lVal);
  818. if(SUCCEEDED(hr))
  819. {
  820. vt.vt = VT_I4;
  821. vt.lVal = lVal;
  822. hr = pObj->Put(L"AceFlags", 0, &vt, 0);
  824. if(bIsInherit && SUCCEEDED(hr))
  825. {
  826. hr = CUtils::SetPropertyQualifiers(
  827. pObj, L"AceFlags", &g_wszIsInherit, &vtTrue, 1);
  828. }
  829. }
  831. // Flags
  832. if(SUCCEEDED(hr))
  833. hr = pACE->get_Flags(&lVal);
  834. if(SUCCEEDED(hr))
  835. {
  836. vt.vt = VT_I4;
  837. vt.lVal = lVal;
  838. hr = pObj->Put(L"Flags", 0, &vt, 0);
  840. if(bIsInherit && SUCCEEDED(hr))
  841. {
  842. hr = CUtils::SetPropertyQualifiers(
  843. pObj, L"Flags", &g_wszIsInherit, &vtTrue, 1);
  844. }
  845. }
  847. // ObjectType
  848. if(SUCCEEDED(hr))
  849. hr = pACE->get_ObjectType(&bstr);
  850. if(SUCCEEDED(hr))
  851. {
  852. vt = bstr;
  853. hr = pObj->Put(L"ObjectType", 0, &vt, 0);
  855. if(bIsInherit && SUCCEEDED(hr))
  856. {
  857. hr = CUtils::SetPropertyQualifiers(
  858. pObj, L"ObjectType", &g_wszIsInherit, &vtTrue, 1);
  859. }
  861. SysFreeString(bstr);
  862. }
  864. // InheritedObjectType
  865. if(SUCCEEDED(hr))
  866. hr = pACE->get_InheritedObjectType(&bstr);
  867. if(SUCCEEDED(hr))
  868. {
  869. vt = bstr;
  870. hr = pObj->Put(L"InheritedObjectType", 0, &vt, 0);
  872. if(bIsInherit && SUCCEEDED(hr))
  873. {
  874. hr = CUtils::SetPropertyQualifiers(
  875. pObj, L"InheritedObjectType", &g_wszIsInherit, &vtTrue, 1);
  876. }
  878. SysFreeString(bstr);
  879. }
  881. return hr;
  882. }
  884. //
  885. // CACEEnumOperation_IndicateAll
  886. //
  888. HRESULT CAdminACL::CACEEnumOperation_IndicateAll::Do(
  889. IADsAccessControlEntry* pACE)
  890. {
  891. DBG_ASSERT(pACE);
  893. if(FAILED(m_hr))
  894. {
  895. DBGPRINTF((DBG_CONTEXT, "Failure, hr=0x%x\n", m_hr));
  896. return m_hr;
  897. }
  899. CComPtr<IWbemClassObject> spInstance;
  901. HRESULT hr = m_spClass->SpawnInstance(0, &spInstance);
  902. if(FAILED(hr))
  903. {
  904. DBGPRINTF((DBG_CONTEXT, "Failure, hr=0x%x\n", hr));
  905. return hr;
  906. }
  908. hr = spInstance->Put(
  909. WMI_CLASS_DATA::s_ACE.pszKeyName,
  910. 0,
  911. &m_vNameValue,
  912. 0);
  913. if(FAILED(hr))
  914. {
  915. DBGPRINTF((DBG_CONTEXT, "Failure, hr=0x%x\n", hr));
  916. return hr;
  917. }
  919. CComBSTR sbstrTrustee;
  920. hr = pACE->get_Trustee(&sbstrTrustee);
  921. if(FAILED(hr))
  922. {
  923. DBGPRINTF((DBG_CONTEXT, "Failure, hr=0x%x\n", hr));
  924. return hr;
  925. }
  927. VARIANT vTrustee;
  928. vTrustee.bstrVal = sbstrTrustee;
  929. vTrustee.vt = VT_BSTR;
  930. hr = spInstance->Put(L"Trustee", 0, &vTrustee, 0);
  931. if(FAILED(hr))
  932. {
  933. DBGPRINTF((DBG_CONTEXT, "Failure, hr=0x%x\n", hr));
  934. return hr;
  935. }
  937. hr = PopulateWmiACE(spInstance, pACE, bLocalIsInherit);
  938. if(FAILED(hr))
  939. {
  940. DBGPRINTF((DBG_CONTEXT, "Failure, hr=0x%x\n", hr));
  941. return hr;
  942. }
  944. hr = m_pWbemObjectSink->Indicate(1, &spInstance);
  945. if(FAILED(hr))
  946. {
  947. DBGPRINTF((DBG_CONTEXT, "Failure, hr=0x%x\n", hr));
  948. return hr;
  949. }
  951. return hr;
  952. }
  954. //
  955. // CACEEnumOperation_Find
  956. //
  958. HRESULT CAdminACL::CACEEnumOperation_Find::Do(
  959. IADsAccessControlEntry* pACE)
  960. {
  961. DBG_ASSERT(pACE);
  962. DBG_ASSERT(m_eDone == eDONE_NO);
  964. CComBSTR sbstr;
  966. HRESULT hr = pACE->get_Trustee(&sbstr);
  967. if(FAILED(hr))
  968. {
  969. DBGPRINTF((DBG_CONTEXT, "Failure, hr=0x%x\n", hr));
  970. return hr;
  971. }
  973. if(_wcsicmp(sbstr, m_bstrTrustee) == 0)
  974. {
  975. m_eDone = eDONE_YES;
  976. hr = DoOnMatch(pACE);
  977. if(FAILED(hr))
  978. {
  979. DBGPRINTF((DBG_CONTEXT, "Failure, hr=0x%x\n", hr));
  980. return hr;
  981. }
  982. }
  984. return hr;
  985. }