Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
 

413 lines
9.7 KiB

#include "StdAfx.h"
#include "ADMTScript.h"
#include "GroupMigration.h"
#include "Error.h"
#include "VarSetOptions.h"
#include "VarSetAccountOptions.h"
#include "VarSetSecurity.h"
//---------------------------------------------------------------------------
// Group Migration Class
//---------------------------------------------------------------------------
CGroupMigration::CGroupMigration() :
m_bMigrateSids(false),
m_bUpdateGroupRights(false),
m_bUpdateMigrated(false),
m_bFixGroupMembership(true),
m_bMigrateMembers(false),
m_lDisableOption(admtEnableTarget),
m_lSourceExpiration(admtNoExpiration),
m_bTranslateRoamingProfile(false)
{
}
CGroupMigration::~CGroupMigration()
{
}
// IGroupMigration Implementation -------------------------------------------
// MigrateSIDs Property
STDMETHODIMP CGroupMigration::put_MigrateSIDs(VARIANT_BOOL bMigrate)
{
m_bMigrateSids = bMigrate ? true : false;
return S_OK;
}
STDMETHODIMP CGroupMigration::get_MigrateSIDs(VARIANT_BOOL* pbMigrate)
{
*pbMigrate = m_bMigrateSids ? VARIANT_TRUE : VARIANT_FALSE;
return S_OK;
}
// UpdateGroupRights Property
STDMETHODIMP CGroupMigration::put_UpdateGroupRights(VARIANT_BOOL bUpdate)
{
m_bUpdateGroupRights = bUpdate ? true : false;
return S_OK;
}
STDMETHODIMP CGroupMigration::get_UpdateGroupRights(VARIANT_BOOL* pbUpdate)
{
*pbUpdate = m_bUpdateGroupRights ? VARIANT_TRUE : VARIANT_FALSE;
return S_OK;
}
// UpdatePreviouslyMigratedObjects Property
STDMETHODIMP CGroupMigration::put_UpdatePreviouslyMigratedObjects(VARIANT_BOOL bUpdate)
{
m_bUpdateMigrated = bUpdate ? true : false;
return S_OK;
}
STDMETHODIMP CGroupMigration::get_UpdatePreviouslyMigratedObjects(VARIANT_BOOL* pbUpdate)
{
*pbUpdate = m_bUpdateMigrated ? VARIANT_TRUE : VARIANT_FALSE;
return S_OK;
}
// FixGroupMembership Property
STDMETHODIMP CGroupMigration::put_FixGroupMembership(VARIANT_BOOL bFix)
{
m_bFixGroupMembership = bFix ? true : false;
return S_OK;
}
STDMETHODIMP CGroupMigration::get_FixGroupMembership(VARIANT_BOOL* pbFix)
{
*pbFix = m_bFixGroupMembership ? VARIANT_TRUE : VARIANT_FALSE;
return S_OK;
}
// MigrateMembers Property
STDMETHODIMP CGroupMigration::put_MigrateMembers(VARIANT_BOOL bMigrate)
{
m_bMigrateMembers = bMigrate ? true : false;
return S_OK;
}
STDMETHODIMP CGroupMigration::get_MigrateMembers(VARIANT_BOOL* pbMigrate)
{
*pbMigrate = m_bMigrateMembers ? VARIANT_TRUE : VARIANT_FALSE;
return S_OK;
}
// DisableOption Property
STDMETHODIMP CGroupMigration::put_DisableOption(long lOption)
{
HRESULT hr = S_OK;
if (IsDisableOptionValid(lOption))
{
m_lDisableOption = lOption;
}
else
{
hr = AdmtSetError(CLSID_Migration, IID_IGroupMigration, E_INVALIDARG, IDS_E_DISABLE_OPTION_INVALID);
}
return hr;
}
STDMETHODIMP CGroupMigration::get_DisableOption(long* plOption)
{
*plOption = m_lDisableOption;
return S_OK;
}
// SourceExpiration Property
STDMETHODIMP CGroupMigration::put_SourceExpiration(long lExpiration)
{
HRESULT hr = S_OK;
if (IsSourceExpirationValid(lExpiration))
{
m_lSourceExpiration = lExpiration;
}
else
{
hr = AdmtSetError(CLSID_Migration, IID_IGroupMigration, E_INVALIDARG, IDS_E_SOURCE_EXPIRATION_INVALID);
}
return hr;
}
STDMETHODIMP CGroupMigration::get_SourceExpiration(long* plExpiration)
{
*plExpiration = m_lSourceExpiration;
return S_OK;
}
// TranslateRoamingProfile Property
STDMETHODIMP CGroupMigration::put_TranslateRoamingProfile(VARIANT_BOOL bTranslate)
{
m_bTranslateRoamingProfile = bTranslate ? true : false;
return S_OK;
}
STDMETHODIMP CGroupMigration::get_TranslateRoamingProfile(VARIANT_BOOL* pbTranslate)
{
*pbTranslate = m_bTranslateRoamingProfile ? VARIANT_TRUE : VARIANT_FALSE;
return S_OK;
}
// Migrate Method
STDMETHODIMP CGroupMigration::Migrate(long lOptions, VARIANT vntInclude, VARIANT vntExclude)
{
HRESULT hr = S_OK;
MutexWait();
bool bLogOpen = _Module.OpenLog();
try
{
_Module.Log(ErrI, IDS_STARTED_GROUP_MIGRATION);
InitSourceDomainAndContainer();
InitTargetDomainAndContainer();
SetDefaultExcludedSystemProperties();
VerifyInterIntraForest();
VerifyCallerDelegated();
ValidateMigrationParameters();
if (m_bMigrateSids)
{
VerifyCanAddSidHistory();
}
VerifyPasswordOption();
DoOption(lOptions, vntInclude, vntExclude);
}
catch (_com_error& ce)
{
_Module.Log(ErrE, IDS_E_CANT_MIGRATE_GROUPS, ce);
hr = AdmtSetError(CLSID_Migration, IID_IGroupMigration, ce, IDS_E_CANT_MIGRATE_GROUPS);
}
catch (...)
{
_Module.Log(ErrE, IDS_E_CANT_MIGRATE_GROUPS, _com_error(E_FAIL));
hr = AdmtSetError(CLSID_Migration, IID_IGroupMigration, E_FAIL, IDS_E_CANT_MIGRATE_GROUPS);
}
if (bLogOpen)
{
_Module.CloseLog();
}
MutexRelease();
return hr;
}
// Implementation -----------------------------------------------------------
// ValidateMigrationParameters Method
void CGroupMigration::ValidateMigrationParameters()
{
bool bIntraForest = m_spInternal->IntraForest ? true : false;
if (bIntraForest)
{
// validate conflict option
long lConflictOptions = m_spInternal->ConflictOptions;
long lConflictOption = lConflictOptions & 0x0F;
if (lConflictOption == admtReplaceConflicting)
{
AdmtThrowError(GUID_NULL, GUID_NULL, E_INVALIDARG, IDS_E_INTRA_FOREST_REPLACE);
}
}
}
// DoNames Method
void CGroupMigration::DoNames()
{
CDomainAccounts aGroups;
m_SourceDomain.QueryGroups(GetSourceContainer(), m_setIncludeNames, m_setExcludeNames, aGroups);
DoGroups(aGroups, GetTargetContainer());
}
// DoDomain Method
void CGroupMigration::DoDomain()
{
CContainer& rSource = GetSourceContainer();
CContainer& rTarget = GetTargetContainer();
if (m_nRecurseMaintain == 2)
{
rTarget.CreateContainerHierarchy(rSource);
}
DoContainers(rSource, rTarget);
}
// DoContainers Method
void CGroupMigration::DoContainers(CContainer& rSource, CContainer& rTarget)
{
DoGroups(rSource, rTarget);
if (m_nRecurseMaintain == 2)
{
ContainerVector aContainers;
rSource.QueryContainers(aContainers);
for (ContainerVector::iterator it = aContainers.begin(); it != aContainers.end(); it++)
{
DoContainers(*it, rTarget.GetContainer(it->GetName()));
}
}
}
// DoGroups Method
void CGroupMigration::DoGroups(CContainer& rSource, CContainer& rTarget)
{
CDomainAccounts aGroups;
rSource.QueryGroups(m_nRecurseMaintain == 1, m_setExcludeNames, aGroups);
DoGroups(aGroups, rTarget);
}
// DoGroups Method
void CGroupMigration::DoGroups(CDomainAccounts& rGroups, CContainer& rTarget)
{
if (rGroups.size() > 0)
{
CVarSet aVarSet;
SetOptions(rTarget.GetPath(), aVarSet);
SetAccountOptions(aVarSet);
VerifyRenameConflictPrefixSuffixValid();
FillInVarSetForGroups(rGroups, aVarSet);
rGroups.clear();
#ifdef _DEBUG
aVarSet.Dump();
#endif
PerformMigration(aVarSet);
SaveSettings(aVarSet);
if ((m_nRecurseMaintain == 2) && m_bMigrateMembers)
{
FixObjectsInHierarchy(_T("user"));
}
}
}
// SetOptions Method
void CGroupMigration::SetOptions(_bstr_t strTargetOu, CVarSet& rVarSet)
{
CVarSetOptions aOptions(rVarSet);
aOptions.SetTest(m_spInternal->TestMigration ? true : false);
aOptions.SetUndo(false);
aOptions.SetWizard(_T("group"));
aOptions.SetIntraForest(m_spInternal->IntraForest ? true : false);
aOptions.SetSourceDomain(m_SourceDomain.NameFlat(), m_SourceDomain.NameDns(), m_SourceDomain.Sid());
aOptions.SetTargetDomain(m_TargetDomain.NameFlat(), m_TargetDomain.NameDns());
aOptions.SetTargetOu(strTargetOu);
if (m_bMigrateSids || (m_spInternal->PasswordOption == admtCopyPassword))
{
aOptions.SetTargetServer(
m_TargetDomain.DomainControllerNameFlat(),
m_TargetDomain.DomainControllerNameDns()
);
}
aOptions.SetRenameOptions(m_spInternal->RenameOption, m_spInternal->RenamePrefixOrSuffix);
}
// SetAccountOptions Method
void CGroupMigration::SetAccountOptions(CVarSet& rVarSet)
{
CVarSetAccountOptions aOptions(rVarSet);
aOptions.SetPasswordOption(m_spInternal->PasswordOption, m_spInternal->PasswordServer);
aOptions.SetPasswordFile(m_spInternal->PasswordFile);
aOptions.SetConflictOptions(m_spInternal->ConflictOptions, m_spInternal->ConflictPrefixOrSuffix);
aOptions.SetDisableOption(m_lDisableOption);
aOptions.SetSourceExpiration(m_lSourceExpiration);
aOptions.SetMigrateSids(m_bMigrateSids);
aOptions.SetGroupMigrationOptions(m_bMigrateMembers, m_bUpdateMigrated);
aOptions.SetFixGroupMembership(m_bFixGroupMembership);
aOptions.SetUpdateUserRights(m_bUpdateGroupRights);
aOptions.SetTranslateRoamingProfile(m_bTranslateRoamingProfile);
if (m_bMigrateMembers)
{
aOptions.SetExcludedUserProps(m_spInternal->UserPropertiesToExclude);
aOptions.SetExcludedInetOrgPersonProps(m_spInternal->InetOrgPersonPropertiesToExclude);
}
aOptions.SetExcludedGroupProps(m_spInternal->GroupPropertiesToExclude);
}