archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/ds/security/authz/test/fundsrm/fundsrm.cpp

290 lines
6.4 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include "fundsrm.h"
  2. #include "fundsrmp.h"
  4. #define FirstAce(Acl) ((PVOID)((PUCHAR)(Acl) + sizeof(ACL)))
  7. FundsRM::FundsRM(DWORD dwFundsAvailable) {
  8. /*++
  10. Routine Description
  12. The constructor for the Funds resource manager.
  13. It initializes an instance of an Authz Resource Manager, providing it
  14. with the appropriate callback functions.
  15. It also creates a security descriptor for the fund, allowing only
  16. corporate and transfer expenditures, not personal. Additional logic
  17. could be added to allow VPs to override these restrictions, etc.
  19. Arguments
  21. DWORD dwFundsAvailable - The amount of money in the fund managed by this
  22. resource manager
  24. Return Value
  25. None.
  26. --*/
  28. //
  29. // The amount of money in the fund
  30. //
  32. _dwFundsAvailable = dwFundsAvailable;
  34. //
  35. // Initialize the fund's resource manager
  36. //
  38. AuthzInitializeResourceManager(
  39. FundsAccessCheck,
  40. FundsComputeDynamicGroups,
  41. FundsFreeDynamicGroups,
  42. NULL, // no auditing
  43. 0, // no flags
  44. &_hRM
  45. );
  47. //
  48. // Create the fund's security descriptor
  49. //
  51. InitializeSecurityDescriptor(&_SD, SECURITY_DESCRIPTOR_REVISION);
  52. SetSecurityDescriptorGroup(&_SD, NULL, FALSE);
  53. SetSecurityDescriptorSacl(&_SD, FALSE, NULL, FALSE);
  54. SetSecurityDescriptorOwner(&_SD, NULL, FALSE);
  56. //
  57. // Initialize the DACL for the fund
  58. //
  60. PACL pDaclFund = (PACL)malloc(1024);
  61. InitializeAcl(pDaclFund, 1024, ACL_REVISION_DS);
  63. //
  64. // Add an access-allowed ACE for Everyone
  65. // Only company spending and transfers are allowed for this fund
  66. //
  68. AddAccessAllowedAce(pDaclFund,
  69. ACL_REVISION_DS,
  70. ACCESS_FUND_CORPORATE | ACCESS_FUND_TRANSFER,
  71. EveryoneSid);
  73. //
  74. // Now set that ACE to a callback ACE
  75. //
  77. ((PACE_HEADER)FirstAce(pDaclFund))->AceType =
  78. ACCESS_ALLOWED_CALLBACK_ACE_TYPE;
  80. //
  81. // Add that ACL as the security descriptor's DACL
  82. //
  84. SetSecurityDescriptorDacl(&_SD, TRUE, pDaclFund, FALSE);
  85. }
  87. FundsRM::~FundsRM() {
  88. /*++
  90. Routine Description
  92. The destructor for the Funds resource manager.
  93. Frees any dynamically allocated memory used.
  95. Arguments
  97. None.
  99. Return Value
  100. None.
  101. --*/
  103. //
  104. // Deallocate the DACL in the security descriptor
  105. //
  107. PACL pDaclFund = NULL;
  108. BOOL fDaclPresent;
  109. BOOL fDaclDefaulted;
  110. GetSecurityDescriptorDacl(&_SD,
  111. &fDaclPresent,
  112. &pDaclFund,
  113. &fDaclDefaulted);
  115. if( pDaclFund != NULL )
  116. {
  117. free(pDaclFund);
  118. }
  120. //
  121. // Deallocate the resource manager
  122. //
  124. AuthzFreeResourceManager(_hRM);
  125. }
  129. BOOL FundsRM::Authorize(LPTSTR szwUsername,
  130. DWORD dwRequestAmount,
  131. DWORD dwSpendingType) {
  132. /*++
  134. Routine Description
  136. This function is called by a user who needs approval of a given amount
  137. of spending in a given spending type. Internally, this uses the
  138. AuthzAccessCheck function to determine whether the given user
  139. should be allowed the requested spending.
  140. If the spending is approved, it is deducted from the fund's total.
  142. Arguments
  144. LPTSTR szwUsername - The name of the user, currently limited to
  145. Bob, Martha, or Joe
  147. DWORD dwRequestAmount - The amount of spending requested, in cents
  149. DWORD dwSpendingType - The type of spending, ACCESS_FUND_PERSONAL,
  150. ACCESS_FUND_TRANSFER, or ACCESS_FUND_CORPORATE
  152. Return Value
  153. BOOL - True if the spending was approved, FALSE otherwise
  154. --*/
  157. //
  158. // No need to check access if not enough money in fund
  159. //
  161. if( dwRequestAmount > _dwFundsAvailable )
  162. {
  163. return FALSE;
  164. }
  166. //
  167. // This would normally impersonate the RPC user and create the
  168. // client context from the token. However, we can just use strings for now.
  169. //
  171. PSID pUserSid = NULL;
  173. if( wcscmp(szwUsername, L"Bob") == 0 )
  174. {
  175. pUserSid = BobSid;
  176. }
  177. else if( wcscmp(szwUsername, L"Martha") == 0 )
  178. {
  179. pUserSid = MarthaSid;
  180. }
  181. else if( wcscmp(szwUsername, L"Joe") == 0 )
  182. {
  183. pUserSid = JoeSid;
  184. }
  186. //
  187. // Only the above usernames are supported
  188. //
  190. if( pUserSid == NULL ) {
  191. return FALSE;
  192. }
  195. //
  196. // Now we create a client context from the SID
  197. //
  199. AUTHZ_CLIENT_CONTEXT_HANDLE hCC = NULL;
  200. LUID ZeroLuid = { 0, 0};
  202. AuthzInitializeContextFromSid(pUserSid,
  203. NULL, // this is local, no need for server
  204. _hRM, // Using the Fund resource manager
  205. NULL, // no expiration
  206. ZeroLuid, // no need for unique luid
  207. 0, // no flags,
  208. NULL, // no args for ComputeDynamicGroups
  209. &hCC);
  213. //
  214. // Initialize the access check result structure
  215. //
  217. DWORD dwGrantedAccessMask = 0;
  218. DWORD dwErr = ERROR_ACCESS_DENIED; // default to deny
  219. AUTHZ_ACCESS_REPLY AccessReply = {0};
  221. AccessReply.ResultListLength = 1;
  222. AccessReply.GrantedAccessMask = &dwGrantedAccessMask;
  223. AccessReply.Error = &dwErr;
  225. //
  226. // Initialize the access check request
  227. //
  229. AUTHZ_ACCESS_REQUEST AccessRequest = {0};
  231. AccessRequest.DesiredAccess = dwSpendingType;
  232. AccessRequest.PrincipalSelfSid = NULL;
  233. AccessRequest.ObjectTypeList = NULL;
  234. AccessRequest.ObjectTypeListLength = 0;
  235. AccessRequest.OptionalArguments = &dwRequestAmount;
  237. AuthzAccessCheck(hCC, // Bob is requesting the transfer
  238. &AccessRequest,
  239. NULL, // no auditing
  240. &_SD,
  241. NULL, // only one SD and one object
  242. 0, // no additional SDs
  243. &AccessReply,
  244. NULL // no need to cache the access check
  245. );
  247. //
  248. // Now free the client context
  249. //
  251. AuthzFreeContext(hCC);
  253. //
  254. // AuthzAccessCheck sets ERROR_SUCCESS if all acces bits are granted
  255. //
  257. if( dwErr == ERROR_SUCCESS )
  258. {
  260. _dwFundsAvailable -= dwRequestAmount;
  261. return TRUE;
  262. }
  263. else
  264. {
  265. return FALSE;
  266. }
  267. }
  271. DWORD FundsRM::FundsAvailable() {
  272. /*++
  274. Routine Description
  276. Accessor for the funds available
  278. Arguments
  280. None.
  282. Return Value
  283. DWORD - The amount of money available in the fund
  284. --*/
  286. return _dwFundsAvailable;
  287. }