archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/shell/ext/netplwiz/join.cpp

377 lines
11 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include "stdafx.h"
  2. #pragma hdrstop
  4. //
  5. // registry information
  6. //
  8. const WCHAR c_szWinLogon[] = L"Software\\Microsoft\\Windows NT\\CurrentVersion\\WinLogon";
  10. const WCHAR c_szAutoLogon[] = L"AutoAdminLogon";
  11. const WCHAR c_szDisableCAD[] = L"DisableCAD";
  13. const WCHAR c_szDefUserName[] = L"DefaultUserName";
  14. const WCHAR c_szDefDomain[] = L"DefaultDomainName";
  15. const WCHAR c_szDefPassword[] = L"DefaultPassword";
  17. const WCHAR c_szDefaultPwdKey[] = L"DefaultPassword";
  19. //
  20. // registry helpers
  21. //
  23. BOOL _RegSetSZ(HKEY hk, LPCWSTR pszValueName, LPCWSTR pszValue)
  24. {
  25. DWORD dwSize = lstrlen(pszValue)*SIZEOF(WCHAR);
  26. return ERROR_SUCCESS == RegSetValueEx(hk, pszValueName, 0x0, REG_SZ, (BYTE *)pszValue, dwSize);
  27. }
  29. BOOL _RegSetDWORD(HKEY hk, LPCWSTR pszValueName, DWORD dwValue)
  30. {
  31. DWORD dwSize = SIZEOF(dwValue);
  32. return ERROR_SUCCESS == RegSetValueEx(hk, pszValueName, 0x0, REG_DWORD, (BYTE *)&dwValue, dwSize);
  33. }
  35. BOOL _RegDelValue(HKEY hk, LPCWSTR pszValueName)
  36. {
  37. return ERROR_SUCCESS == RegDeleteValue(hk, pszValueName);
  38. }
  41. INT_PTR CALLBACK _CredDlgProc(HWND hwnd, UINT uMsg, WPARAM wParam, LPARAM lParam)
  42. {
  44. LPCREDINFO pci = (LPCREDINFO)GetWindowLongPtr(hwnd, DWLP_USER);
  46. switch ( uMsg )
  47. {
  48. case WM_INITDIALOG:
  49. {
  50. pci = (LPCREDINFO)lParam;
  51. SetWindowLongPtr(hwnd, DWLP_USER, lParam);
  53. SetDlgItemText(hwnd, IDC_USER, pci->pszUser);
  54. Edit_LimitText(GetDlgItem(hwnd, IDC_USER), pci->cchUser - 1);
  56. SetDlgItemText(hwnd, IDC_DOMAIN, pci->pszDomain);
  57. Edit_LimitText(GetDlgItem(hwnd, IDC_DOMAIN), pci->cchDomain - 1);
  59. SetDlgItemText(hwnd, IDC_PASSWORD, pci->pszPassword);
  60. Edit_LimitText(GetDlgItem(hwnd, IDC_PASSWORD), pci->cchPassword - 1);
  62. return TRUE;
  63. }
  65. case WM_COMMAND:
  66. {
  67. switch ( LOWORD(wParam) )
  68. {
  69. case IDOK:
  70. {
  71. FetchText(hwnd, IDC_DOMAIN, pci->pszDomain, pci->cchDomain);
  72. FetchText(hwnd, IDC_USER, pci->pszUser, pci->cchUser);
  74. if (StrChr(pci->pszUser, TEXT('@')))
  75. {
  76. *(pci->pszDomain) = 0;
  77. }
  79. GetDlgItemText(hwnd, IDC_PASSWORD, pci->pszPassword, pci->cchPassword);
  80. return EndDialog(hwnd, IDOK);
  81. }
  83. case IDCANCEL:
  84. return EndDialog(hwnd, IDCANCEL);
  86. case IDC_USER:
  87. {
  88. if ( HIWORD(wParam) == EN_CHANGE )
  89. {
  90. EnableWindow(GetDlgItem(hwnd, IDOK), FetchTextLength(hwnd, IDC_USER) > 0);
  92. EnableDomainForUPN(GetDlgItem(hwnd, IDC_USER), GetDlgItem(hwnd, IDC_DOMAIN));
  93. }
  94. break;
  95. }
  96. }
  97. return TRUE;
  98. }
  99. }
  101. return FALSE;
  102. }
  105. //
  106. // attempt to join a domain/workgroup using the specified names and OU.
  107. //
  109. HRESULT _AttemptJoin(HWND hwnd, DWORD dwFlags, LPCWSTR pszDomain, LPCWSTR pszUser, LPCWSTR pszUserDomain, LPCWSTR pszPassword)
  110. {
  111. HRESULT hr = S_OK;
  113. #ifndef DONT_JOIN
  114. TCHAR szDomainUser[MAX_DOMAINUSER + 1];
  115. if ( pszUser )
  116. MakeDomainUserString(pszUserDomain, pszUser, szDomainUser, ARRAYSIZE(szDomainUser));
  118. NET_API_STATUS nas = NetJoinDomain(NULL, pszDomain, NULL, szDomainUser, pszPassword, dwFlags);
  119. if ( (nas == ERROR_ACCESS_DENIED) )
  120. {
  121. // perhaps an account exists, but we can't delete it so try and remove
  122. // the account create flag
  124. if ( dwFlags & NETSETUP_ACCT_CREATE )
  125. {
  126. dwFlags &= ~NETSETUP_ACCT_CREATE;
  127. nas = NetJoinDomain(NULL, pszDomain, NULL, szDomainUser, *pszPassword ? pszPassword : NULL, dwFlags);
  128. }
  129. }
  131. if ( (nas != NERR_Success) && (nas != NERR_SetupAlreadyJoined) )
  132. {
  133. TCHAR szMessage[512];
  135. if (!FormatMessage(FORMAT_MESSAGE_FROM_SYSTEM, NULL, (DWORD) nas, 0, szMessage, ARRAYSIZE(szMessage), NULL))
  136. LoadString(g_hinst, IDS_ERR_UNEXPECTED, szMessage, ARRAYSIZE(szMessage));
  138. ::DisplayFormatMessage(hwnd, IDS_ERR_CAPTION, IDS_NAW_JOIN_GENERICERROR, MB_OK|MB_ICONERROR, szMessage);
  139. hr = HRESULT_FROM_WIN32(nas);
  140. }
  141. #endif
  143. return hr;
  144. }
  147. void _ShowDcNotFoundErrorDialog(HWND hwnd, LPCWSTR pszDomain, LPCWSTR pszTitle)
  148. {
  149. typedef void (*pfnShowDcNotFoundErrorDialog)(HWND, PCWSTR, PCWSTR);
  150. static HMODULE hNetID = NULL;
  151. static pfnShowDcNotFoundErrorDialog ShowDcNotFoundErrorDialog = NULL;
  153. if (!hNetID)
  154. {
  155. hNetID = LoadLibrary(L"netid.dll");
  156. }
  158. if (hNetID)
  159. {
  160. ShowDcNotFoundErrorDialog = (pfnShowDcNotFoundErrorDialog) GetProcAddress(hNetID, "ShowDcNotFoundErrorDialog");
  161. if (ShowDcNotFoundErrorDialog)
  162. {
  163. ShowDcNotFoundErrorDialog(hwnd, pszDomain, pszTitle);
  164. }
  165. }
  166. }
  168. //
  169. // Handle moving from to a workgroup or domain. To do this we are passed
  170. // a structure containing all the information we need.
  171. //
  172. HRESULT JoinDomain(HWND hwnd, BOOL fDomain, LPCWSTR pszDomain, CREDINFO* pci, BOOL *pfReboot)
  173. {
  174. HRESULT hres = E_FAIL;
  175. DWORD dwFlags = 0x0;
  176. LPWSTR pszCurrentDomain = NULL;
  177. NET_API_STATUS nas;
  178. BOOL fPassedCredentials = (pci && pci->pszUser && pci->pszUser[0] && pci->pszPassword);
  179. CWaitCursor cur;
  181. //
  182. // lets validate the domain name before we go and use it, therefore avoiding
  183. // orphaning the computer too badly
  184. //
  186. nas = NetValidateName(NULL, pszDomain, NULL, NULL, fDomain ? NetSetupDomain:NetSetupWorkgroup);
  188. if (fDomain && (ERROR_NO_SUCH_DOMAIN == nas))
  189. {
  190. WCHAR szTitle[256];
  191. LoadString(g_hinst, IDS_NETWIZCAPTION, szTitle, ARRAYSIZE(szTitle));
  193. _ShowDcNotFoundErrorDialog(hwnd, pszDomain, szTitle);
  194. return E_FAIL;
  195. }
  197. if ( NERR_Success != nas )
  198. {
  199. ShellMessageBox(g_hinst, hwnd,
  200. fDomain ? MAKEINTRESOURCE(IDS_ERR_BADDOMAIN) : MAKEINTRESOURCE(IDS_ERR_BADWORKGROUP),
  201. MAKEINTRESOURCE(IDS_NETWIZCAPTION),
  202. MB_OK|MB_ICONWARNING,
  203. pszDomain);
  204. return E_FAIL;
  205. }
  207. //
  208. // now attempt to join the domain, prompt for credentails if the ones
  209. // specified are not good enough
  210. //
  212. if ( fDomain )
  213. {
  214. dwFlags |= NETSETUP_JOIN_DOMAIN|NETSETUP_ACCT_CREATE|NETSETUP_DOMAIN_JOIN_IF_JOINED;
  215. }
  216. else
  217. {
  218. nas = NetUnjoinDomain(NULL, NULL, NULL, NETSETUP_ACCT_DELETE);
  219. if ( (nas != NERR_Success) && (nas != NERR_SetupNotJoined) )
  220. {
  221. nas = NetUnjoinDomain(NULL, NULL, NULL, 0x0);
  222. }
  224. if ( (nas != NERR_Success) && (nas != NERR_SetupNotJoined) )
  225. {
  226. hres = E_UNEXPECTED;
  227. goto exit_gracefully;
  228. }
  230. *pfReboot = TRUE; // we changed the domain
  231. }
  233. if ( !fDomain || fPassedCredentials)
  234. {
  235. if (fPassedCredentials)
  236. {
  237. hres = _AttemptJoin(hwnd, dwFlags, pszDomain, pci->pszUser, pci->pszDomain, pci->pszPassword);
  238. }
  239. else
  240. {
  241. hres = _AttemptJoin(hwnd, dwFlags, pszDomain, NULL, NULL, NULL);
  242. }
  243. }
  245. if ( fDomain && ((FAILED(hres) || (!fPassedCredentials))) )
  246. {
  247. do
  248. {
  249. if ( IDCANCEL == DialogBoxParam(g_hinst, MAKEINTRESOURCE(IDD_PSW_JOINCREDENTIALS),
  250. hwnd, _CredDlgProc, (LPARAM)pci) )
  251. {
  252. hres = E_FAIL;
  253. goto exit_gracefully;
  254. }
  256. // The dialog box changed the cursor from a wait cursor to an arrow cursor, so the cursor
  257. // needs to be changed back.. This call could be moved to _AttemptJoin (along with a call to
  258. // reset the cursor). This call is made synchronously from the message loop for this hwnd
  259. cur.WaitCursor();
  260. hres = _AttemptJoin(hwnd, dwFlags, pszDomain, pci->pszUser, pci->pszDomain, pci->pszPassword);
  262. }
  263. while ( FAILED(hres) );
  264. }
  266. exit_gracefully:
  268. if ( SUCCEEDED(hres) )
  269. {
  270. ClearAutoLogon();
  271. *pfReboot = TRUE; // we changed the domain
  272. }
  274. NetApiBufferFree(pszCurrentDomain);
  275. return hres;
  276. }
  279. //
  280. // set and clear the auto admin logon state.
  281. //
  282. // we set the default user and default domain to the specified strings, we then blow away
  283. // the clear text password stored in the registry to replace it with a password stored
  284. // in the LSA secret space.
  285. //
  287. NTSTATUS _SetDefaultPassword(LPCWSTR PasswordBuffer)
  288. {
  289. NTSTATUS Status = STATUS_SUCCESS;
  290. OBJECT_ATTRIBUTES ObjectAttributes;
  291. LSA_HANDLE LsaHandle = NULL;
  292. UNICODE_STRING SecretName;
  293. UNICODE_STRING SecretValue;
  295. InitializeObjectAttributes(&ObjectAttributes, NULL, 0L, (HANDLE)NULL, NULL);
  297. Status = LsaOpenPolicy(NULL, &ObjectAttributes, POLICY_CREATE_SECRET, &LsaHandle);
  298. if (!NT_SUCCESS(Status))
  299. return Status;
  301. RtlInitUnicodeString(&SecretName, c_szDefaultPwdKey);
  302. RtlInitUnicodeString(&SecretValue, PasswordBuffer);
  304. Status = LsaStorePrivateData(LsaHandle, &SecretName, &SecretValue);
  305. LsaClose(LsaHandle);
  307. return Status;
  308. }
  311. //
  312. // Set and clear auto logon for a particular
  313. //
  315. void SetAutoLogon(LPCWSTR pszUserName, LPCWSTR pszPassword)
  316. {
  317. #ifndef DONT_JOIN
  318. WCHAR szComputerName[MAX_COMPUTERNAME_LENGTH+1];
  319. DWORD dwComputerName = ARRAYSIZE(szComputerName);
  320. HKEY hk;
  322. GetComputerName(szComputerName, &dwComputerName);
  323. SetDefAccount(pszUserName, szComputerName); // also clears auto logon
  325. if ( ERROR_SUCCESS == RegOpenKeyEx(HKEY_LOCAL_MACHINE, c_szWinLogon, 0x0, KEY_WRITE, &hk) )
  326. {
  327. _RegSetSZ(hk, c_szAutoLogon, L"1"); // auto admin logon
  328. _RegDelValue(hk, c_szDefPassword); // use the LSA secret for the password
  329. RegCloseKey (hk);
  330. }
  332. _SetDefaultPassword(pszPassword);
  333. #endif
  334. }
  337. //
  338. // clear the auto admin logon
  339. //
  341. STDAPI ClearAutoLogon(VOID)
  342. {
  343. #ifndef DONT_JOIN
  344. HKEY hk;
  345. if ( ERROR_SUCCESS == RegOpenKeyEx(HKEY_LOCAL_MACHINE, c_szWinLogon, 0x0, KEY_WRITE, &hk) )
  346. {
  347. _RegSetSZ(hk, c_szAutoLogon, L"0"); // no auto admin logon
  348. _RegDelValue(hk, c_szDefPassword);
  350. RegCloseKey(hk);
  351. }
  353. _SetDefaultPassword(L""); // clear the LSA secret
  354. #endif
  355. return S_OK;
  356. }
  359. //
  360. // set the default account
  361. //
  363. void SetDefAccount(LPCWSTR pszUser, LPCWSTR pszDomain)
  364. {
  365. #ifndef DONT_JOIN
  366. ClearAutoLogon();
  368. HKEY hk;
  369. if ( ERROR_SUCCESS == RegOpenKeyEx(HKEY_LOCAL_MACHINE, c_szWinLogon, 0x0, KEY_WRITE, &hk) )
  370. {
  371. _RegSetSZ(hk, c_szDefUserName, pszUser);
  372. _RegSetSZ(hk, c_szDefDomain, pszDomain);
  373. RegCloseKey(hk);
  374. }
  376. #endif
  377. }