archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/net/rras/cm/common/source/memberofgroup.cpp

171 lines
6.0 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+----------------------------------------------------------------------------
  2. //
  3. // File: MemberOfGroup.cpp
  4. //
  5. // Module: Common Code
  6. //
  7. // Synopsis: Implements the function IsMemberOfGroup (plus accessor functions).
  8. //
  9. // Copyright (c) 2002 Microsoft Corporation
  10. //
  11. // Author: SumitC Created 26-Jan-2002
  12. //
  13. //-----------------------------------------------------------------------------
  15. //+----------------------------------------------------------------------------
  16. //
  17. // Function: IsMemberOfGroup
  18. //
  19. // Synopsis: This function return TRUE if the current user is a member of
  20. // the passed and FALSE passed in Group RID.
  21. //
  22. // Arguments: DWORD dwGroupRID -- the RID of the group to check membership of
  23. // BOOL bUseBuiltinDomainRid -- whether the SECURITY_BUILTIN_DOMAIN_RID
  24. // RID should be used to build the Group
  25. // SID
  26. //
  27. // Returns: BOOL - TRUE if the user is a member of the specified group
  28. //
  29. // History: quintinb Shamelessly stolen from MSDN 02/19/98
  30. // quintinb Reworked and renamed 06/18/99
  31. // to apply to more than just Admins
  32. // quintinb Rewrote to use CheckTokenMemberShip 08/18/99
  33. // since the MSDN method was no longer
  34. // correct on NT5 -- 389229
  35. // tomkel Taken from cmstp and modified for use 05/09/2001
  36. // in cmdial
  37. // sumitc Made common code 01/26/2002
  38. //
  39. //+----------------------------------------------------------------------------
  40. BOOL IsMemberOfGroup(DWORD dwGroupRID, BOOL bUseBuiltinDomainRid)
  41. {
  42. PSID psidGroup = NULL;
  43. SID_IDENTIFIER_AUTHORITY siaNtAuthority = SECURITY_NT_AUTHORITY;
  44. BOOL bSuccess = FALSE;
  46. if (OS_NT5)
  47. {
  48. //
  49. // Make a SID for the Group we are checking for, Note that we if we need the Built
  50. // in Domain RID (for Groups like Administrators, PowerUsers, Users, etc)
  51. // then we will have two entries to pass to AllocateAndInitializeSid. Otherwise,
  52. // (for groups like Authenticated Users) we will only have one.
  53. //
  54. BYTE byNum;
  55. DWORD dwFirstRID;
  56. DWORD dwSecondRID;
  58. if (bUseBuiltinDomainRid)
  59. {
  60. byNum = 2;
  61. dwFirstRID = SECURITY_BUILTIN_DOMAIN_RID;
  62. dwSecondRID = dwGroupRID;
  63. }
  64. else
  65. {
  66. byNum = 1;
  67. dwFirstRID = dwGroupRID;
  68. dwSecondRID = 0;
  69. }
  71. if (AllocateAndInitializeSid(&siaNtAuthority, byNum, dwFirstRID, dwSecondRID,
  72. 0, 0, 0, 0, 0, 0, &psidGroup))
  74. {
  75. //
  76. // Now we need to dynamically load the CheckTokenMemberShip API from
  77. // advapi32.dll since it is a Win2k only API.
  78. //
  80. // some modules using this may have advapi32 loaded already...
  81. HMODULE hAdvapi = GetModuleHandleA("advapi32.dll");
  83. if (NULL == hAdvapi)
  84. {
  85. // ... if they don't, load it.
  86. hAdvapi = LoadLibraryExA("advapi32.dll", NULL, 0);
  87. }
  89. if (hAdvapi)
  90. {
  91. typedef BOOL (WINAPI *pfnCheckTokenMembershipSpec)(HANDLE, PSID, PBOOL);
  92. pfnCheckTokenMembershipSpec pfnCheckTokenMembership;
  94. pfnCheckTokenMembership = (pfnCheckTokenMembershipSpec)GetProcAddress(hAdvapi, "CheckTokenMembership");
  96. if (pfnCheckTokenMembership)
  97. {
  98. //
  99. // Check to see if the user is actually a member of the group in question
  100. //
  101. if (!(pfnCheckTokenMembership)(NULL, psidGroup, &bSuccess))
  102. {
  103. bSuccess = FALSE;
  104. CMASSERTMSG(FALSE, TEXT("CheckTokenMemberShip Failed."));
  105. }
  106. }
  107. else
  108. {
  109. CMASSERTMSG(FALSE, TEXT("IsMemberOfGroup -- GetProcAddress failed for CheckTokenMemberShip"));
  110. }
  111. }
  112. else
  113. {
  114. CMASSERTMSG(FALSE, TEXT("IsMemberOfGroup -- Unable to get the module handle for advapi32.dll"));
  115. }
  117. FreeSid (psidGroup);
  119. if (hAdvapi)
  120. {
  121. FreeLibrary(hAdvapi);
  122. }
  123. }
  124. }
  126. return bSuccess;
  127. }
  131. //+----------------------------------------------------------------------------
  132. //
  133. // Function: IsAdmin
  134. //
  135. // Synopsis: Check to see if the user is a member of the Administrators group
  136. // or not.
  137. //
  138. // Arguments: None
  139. //
  140. // Returns: BOOL - TRUE if the current user is an Administrator
  141. //
  142. // History: quintinb Created Header 8/18/99
  143. // tomkel Taken from cmstp 05/09/2001
  144. // sumitc Made common code 01/26/2002
  145. //
  146. //+----------------------------------------------------------------------------
  147. BOOL IsAdmin(VOID)
  148. {
  149. return IsMemberOfGroup(DOMAIN_ALIAS_RID_ADMINS, TRUE); // TRUE == bUseBuiltinDomainRid
  150. }
  152. //+----------------------------------------------------------------------------
  153. //
  154. // Function: IsAuthenticatedUser
  155. //
  156. // Synopsis: Check to see if the current user is a member of the
  157. // Authenticated Users group.
  158. //
  159. // Arguments: None
  160. //
  161. // Returns: BOOL - TRUE if the current user is a member of the
  162. // Authenticated Users group.
  163. //
  164. // History: quintinb Created Header 8/18/99
  165. // sumitc Made common code 01/26/2002
  166. //
  167. //+----------------------------------------------------------------------------
  168. BOOL IsAuthenticatedUser(void)
  169. {
  170. return IsMemberOfGroup(SECURITY_AUTHENTICATED_USER_RID, FALSE); // FALSE == bUseBuiltinDomainRid
  171. }