You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
729 lines
17 KiB
729 lines
17 KiB
#include "precomp.h"
|
|
|
|
BOOL
|
|
UserServerInfoIsInit(
|
|
IN RASMON_SERVERINFO * pServerInfo)
|
|
{
|
|
return ((pServerInfo->hServer) ||
|
|
(pServerInfo->dwBuild == RASMONTR_OS_BUILD_NT40));
|
|
}
|
|
|
|
DWORD
|
|
UserServerInfoInit(
|
|
IN RASMON_SERVERINFO * pServerInfo)
|
|
{
|
|
DWORD dwErr = NO_ERROR;
|
|
BOOL bInit = UserServerInfoIsInit(pServerInfo);
|
|
|
|
// If we're already initailized, return
|
|
//
|
|
if (bInit)
|
|
{
|
|
return NO_ERROR;
|
|
}
|
|
|
|
if ((pServerInfo->dwBuild != RASMONTR_OS_BUILD_NT40) &&
|
|
(pServerInfo->hServer == NULL))
|
|
{
|
|
//
|
|
// first time connecting to user server
|
|
//
|
|
MprAdminUserServerConnect (
|
|
pServerInfo->pszServer,
|
|
TRUE,
|
|
&(pServerInfo->hServer));
|
|
}
|
|
|
|
return dwErr;
|
|
}
|
|
|
|
DWORD
|
|
UserServerInfoUninit(
|
|
IN RASMON_SERVERINFO * pServerInfo)
|
|
{
|
|
// Release the reference to the user server
|
|
if (g_pServerInfo->hServer)
|
|
{
|
|
MprAdminUserServerDisconnect(g_pServerInfo->hServer);
|
|
g_pServerInfo->hServer = NULL;
|
|
}
|
|
|
|
return NO_ERROR;
|
|
}
|
|
|
|
DWORD
|
|
UserGetRasProperties (
|
|
IN RASMON_SERVERINFO * pServerInfo,
|
|
IN LPCWSTR pwszUser,
|
|
IN RAS_USER_0* pUser0)
|
|
{
|
|
HANDLE hUser = NULL;
|
|
DWORD dwErr;
|
|
BOOL bInit = UserServerInfoIsInit(pServerInfo);
|
|
|
|
do
|
|
{
|
|
UserServerInfoInit(pServerInfo);
|
|
|
|
// Get the information using nt40 apis
|
|
//
|
|
if (pServerInfo->dwBuild == RASMONTR_OS_BUILD_NT40)
|
|
{
|
|
dwErr = MprAdminUserGetInfo(
|
|
pServerInfo->pszServer,
|
|
pwszUser,
|
|
0,
|
|
(LPBYTE)pUser0);
|
|
if (dwErr != NO_ERROR)
|
|
{
|
|
break;
|
|
}
|
|
}
|
|
|
|
// Or get it using nt50 apis
|
|
else
|
|
{
|
|
// Get a reference to the given user
|
|
//
|
|
dwErr = MprAdminUserOpen(
|
|
pServerInfo->hServer,
|
|
(LPWSTR)pwszUser,
|
|
&hUser);
|
|
if (dwErr isnot NO_ERROR)
|
|
{
|
|
break;
|
|
}
|
|
|
|
// Set the information
|
|
//
|
|
dwErr = MprAdminUserRead(
|
|
hUser,
|
|
1, // Gives us RASPRIV_DialinPolicy
|
|
(LPBYTE)pUser0);
|
|
if (dwErr isnot NO_ERROR)
|
|
{
|
|
break;
|
|
}
|
|
}
|
|
|
|
} while (FALSE);
|
|
|
|
// Cleanup
|
|
//
|
|
{
|
|
if(hUser)
|
|
{
|
|
MprAdminUserClose(hUser);
|
|
}
|
|
if (!bInit)
|
|
{
|
|
UserServerInfoUninit(pServerInfo);
|
|
}
|
|
}
|
|
|
|
return dwErr;
|
|
}
|
|
|
|
DWORD
|
|
UserSetRasProperties (
|
|
IN RASMON_SERVERINFO * pServerInfo,
|
|
IN LPCWSTR pwszUser,
|
|
IN RAS_USER_0* pUser0)
|
|
{
|
|
HANDLE hUser = NULL;
|
|
DWORD dwErr;
|
|
BOOL bInit = UserServerInfoIsInit(pServerInfo);
|
|
|
|
do
|
|
{
|
|
UserServerInfoInit(pServerInfo);
|
|
|
|
// Set the information using nt40 apis
|
|
//
|
|
if (pServerInfo->dwBuild == RASMONTR_OS_BUILD_NT40)
|
|
{
|
|
dwErr = MprAdminUserSetInfo(
|
|
pServerInfo->pszServer,
|
|
pwszUser,
|
|
0,
|
|
(LPBYTE)pUser0);
|
|
if (dwErr != NO_ERROR)
|
|
{
|
|
break;
|
|
}
|
|
}
|
|
|
|
// Or get it using nt50 apis
|
|
else
|
|
{
|
|
// Get a reference to the given user
|
|
//
|
|
dwErr = MprAdminUserOpen(
|
|
pServerInfo->hServer,
|
|
(LPWSTR)pwszUser,
|
|
&hUser);
|
|
if (dwErr isnot NO_ERROR)
|
|
{
|
|
break;
|
|
}
|
|
|
|
// Set the information
|
|
//
|
|
dwErr = MprAdminUserWrite(
|
|
hUser,
|
|
1, // Gives us RASPRIV_DialinPolicy
|
|
(LPBYTE)pUser0);
|
|
if (dwErr isnot NO_ERROR)
|
|
{
|
|
break;
|
|
}
|
|
}
|
|
|
|
} while (FALSE);
|
|
|
|
// Cleanup
|
|
//
|
|
{
|
|
if(hUser)
|
|
{
|
|
MprAdminUserClose(hUser);
|
|
}
|
|
if (!bInit)
|
|
{
|
|
UserServerInfoUninit(pServerInfo);
|
|
}
|
|
}
|
|
|
|
return dwErr;
|
|
}
|
|
|
|
DWORD
|
|
UserAdd(
|
|
IN LPCWSTR pwszServer,
|
|
IN PRASUSER_DATA pUser)
|
|
|
|
/*++
|
|
|
|
Routine Description:
|
|
|
|
Adds the given user to the system
|
|
|
|
--*/
|
|
|
|
{
|
|
NET_API_STATUS nStatus;
|
|
USER_INFO_2 * pUser2;
|
|
LPCWSTR pwszFmtServer = pwszServer;
|
|
|
|
// Initialize the base user information
|
|
USER_INFO_1 UserInfo1 =
|
|
{
|
|
pUser->pszUsername,
|
|
pUser->pszPassword,
|
|
0,
|
|
USER_PRIV_USER,
|
|
L"",
|
|
L"",
|
|
UF_SCRIPT | UF_DONT_EXPIRE_PASSWD | UF_NORMAL_ACCOUNT,
|
|
L""
|
|
};
|
|
|
|
// Add the user
|
|
nStatus = NetUserAdd(
|
|
pwszFmtServer,
|
|
1,
|
|
(LPBYTE)&UserInfo1,
|
|
NULL);
|
|
|
|
// If the user wasn't added, find out why
|
|
if (nStatus != NERR_Success)
|
|
{
|
|
switch (nStatus)
|
|
{
|
|
case ERROR_ACCESS_DENIED:
|
|
return ERROR_ACCESS_DENIED;
|
|
|
|
case NERR_UserExists:
|
|
return ERROR_USER_EXISTS;
|
|
|
|
case NERR_PasswordTooShort:
|
|
return ERROR_INVALID_PASSWORDNAME;
|
|
}
|
|
|
|
return ERROR_CAN_NOT_COMPLETE;
|
|
}
|
|
|
|
// Add the user's full name if provided
|
|
if (pUser->pszFullname)
|
|
{
|
|
// add the user's full name
|
|
nStatus = NetUserGetInfo(
|
|
pwszFmtServer,
|
|
pUser->pszUsername,
|
|
2,
|
|
(LPBYTE*)&pUser2);
|
|
|
|
if (nStatus is NERR_Success)
|
|
{
|
|
// Modify the full name in the structure
|
|
pUser2->usri2_full_name = pUser->pszFullname;
|
|
NetUserSetInfo(
|
|
pwszFmtServer,
|
|
pUser->pszUsername,
|
|
2,
|
|
(LPBYTE)pUser2,
|
|
NULL);
|
|
|
|
NetApiBufferFree((LPBYTE)pUser2);
|
|
|
|
return NO_ERROR;
|
|
}
|
|
|
|
return ERROR_CAN_NOT_COMPLETE;
|
|
}
|
|
|
|
return NO_ERROR;
|
|
}
|
|
|
|
DWORD
|
|
UserDelete(
|
|
IN LPCWSTR pwszServer,
|
|
IN PRASUSER_DATA pUser)
|
|
|
|
/*++
|
|
|
|
Routine Description:
|
|
|
|
Deletes the given user from the system
|
|
|
|
--*/
|
|
{
|
|
NET_API_STATUS nStatus;
|
|
|
|
// Delete the user and return the status code. If the
|
|
// specified user is not in the user database, consider
|
|
// it a success
|
|
nStatus = NetUserDel(
|
|
pwszServer,
|
|
pUser->pszUsername);
|
|
if (nStatus is NERR_UserNotFound)
|
|
{
|
|
return NO_ERROR;
|
|
}
|
|
|
|
return (nStatus is NERR_Success) ? NO_ERROR : ERROR_CAN_NOT_COMPLETE;
|
|
}
|
|
|
|
DWORD
|
|
UserDumpConfig(
|
|
IN HANDLE hFile
|
|
)
|
|
|
|
/*++
|
|
|
|
Routine Description:
|
|
|
|
Dumps a script to set the ras USER information to
|
|
the given text file.
|
|
|
|
Arguments:
|
|
|
|
|
|
Return Value:
|
|
|
|
NO_ERROR
|
|
|
|
--*/
|
|
|
|
{
|
|
DWORD dwErr;
|
|
|
|
// Enumerate the users dumping them as we go
|
|
dwErr = UserEnumUsers(
|
|
g_pServerInfo,
|
|
UserShowSet,
|
|
(HANDLE)hFile);
|
|
if (dwErr isnot NO_ERROR)
|
|
{
|
|
DisplayMessage(
|
|
g_hModule,
|
|
EMSG_UNABLE_TO_ENUM_USERS);
|
|
}
|
|
|
|
return dwErr;
|
|
}
|
|
|
|
BOOL
|
|
UserShowReport(
|
|
IN PRASUSER_DATA pUser,
|
|
IN HANDLE hFile
|
|
)
|
|
|
|
/*++
|
|
|
|
Routine Description:
|
|
|
|
Prints ras user information to the display or a file if specified.
|
|
This function can be used as a callback function (see UserEnumUsers).
|
|
|
|
Arguments:
|
|
|
|
pUser - The user
|
|
hFile - The file
|
|
|
|
Return Value:
|
|
|
|
TRUE - continue enumeration
|
|
FALSE - stop enumeration
|
|
|
|
--*/
|
|
|
|
{
|
|
DWORD dwErr, dwSize;
|
|
WCHAR rgwcIfDesc[MAX_INTERFACE_NAME_LEN + 1];
|
|
PWCHAR pwszDialin = NULL,
|
|
pwszCbPolicy = NULL,
|
|
pwszCbNumber = NULL,
|
|
pwszSetCmd = NULL;
|
|
|
|
// Initialize the set command
|
|
//
|
|
pwszSetCmd = DMP_RASUSER_SET;
|
|
|
|
// Initialize the dialin string
|
|
//
|
|
if (pUser->User0.bfPrivilege & RASPRIV_DialinPolicy)
|
|
{
|
|
pwszDialin = TOKEN_POLICY;
|
|
}
|
|
else if (pUser->User0.bfPrivilege & RASPRIV_DialinPrivilege)
|
|
{
|
|
pwszDialin = TOKEN_PERMIT;
|
|
}
|
|
else
|
|
{
|
|
pwszDialin = TOKEN_DENY;
|
|
}
|
|
|
|
// Initialize the callback policy string
|
|
//
|
|
if (pUser->User0.bfPrivilege & RASPRIV_NoCallback)
|
|
{
|
|
pwszCbPolicy = TOKEN_NONE;
|
|
}
|
|
else if (pUser->User0.bfPrivilege & RASPRIV_CallerSetCallback)
|
|
{
|
|
pwszCbPolicy = TOKEN_CALLER;
|
|
}
|
|
else
|
|
{
|
|
pwszCbPolicy = TOKEN_ADMIN;
|
|
}
|
|
|
|
// Initialize the callback number string
|
|
//
|
|
pwszCbNumber = pUser->User0.wszPhoneNumber;
|
|
|
|
do
|
|
{
|
|
if(!pwszSetCmd or
|
|
!pUser->pszUsername or
|
|
!pwszDialin or
|
|
!pwszCbNumber
|
|
)
|
|
{
|
|
|
|
DisplayError(NULL,
|
|
ERROR_NOT_ENOUGH_MEMORY);
|
|
|
|
break;
|
|
}
|
|
|
|
DisplayMessage(g_hModule,
|
|
MSG_RASUSER_RASINFO,
|
|
pUser->pszUsername,
|
|
pwszDialin,
|
|
pwszCbPolicy,
|
|
pwszCbNumber);
|
|
|
|
} while(FALSE);
|
|
|
|
return TRUE;
|
|
}
|
|
|
|
BOOL
|
|
UserShowSet(
|
|
IN PRASUSER_DATA pUser,
|
|
IN HANDLE hFile
|
|
)
|
|
|
|
/*++
|
|
|
|
Routine Description:
|
|
|
|
Prints ras user information to the display or a file if specified.
|
|
This function can be used as a callback function (see UserEnumUsers).
|
|
|
|
Arguments:
|
|
|
|
pUser - The user
|
|
hFile - The file
|
|
|
|
Return Value:
|
|
|
|
TRUE - continue enumeration
|
|
FALSE - stop enumeration
|
|
|
|
--*/
|
|
|
|
{
|
|
DWORD dwErr, dwSize;
|
|
WCHAR rgwcIfDesc[MAX_INTERFACE_NAME_LEN + 1];
|
|
PWCHAR pwszName = NULL,
|
|
pwszDialin = NULL,
|
|
pwszCbPolicy = NULL,
|
|
pwszCbNumber = NULL,
|
|
pwszSetCmd = NULL;
|
|
|
|
// Initialize the set command
|
|
//
|
|
pwszSetCmd = DMP_RASUSER_SET;
|
|
|
|
// Initialize the dialin string
|
|
//
|
|
if (pUser->User0.bfPrivilege & RASPRIV_DialinPolicy)
|
|
{
|
|
pwszDialin = RutlAssignmentFromTokens(
|
|
g_hModule,
|
|
TOKEN_DIALIN,
|
|
TOKEN_POLICY);
|
|
}
|
|
else if (pUser->User0.bfPrivilege & RASPRIV_DialinPrivilege)
|
|
{
|
|
pwszDialin = RutlAssignmentFromTokens(
|
|
g_hModule,
|
|
TOKEN_DIALIN,
|
|
TOKEN_PERMIT);
|
|
}
|
|
else
|
|
{
|
|
pwszDialin = RutlAssignmentFromTokens(
|
|
g_hModule,
|
|
TOKEN_DIALIN,
|
|
TOKEN_DENY);
|
|
}
|
|
|
|
// Initialize the callback policy string
|
|
//
|
|
if (pUser->User0.bfPrivilege & RASPRIV_NoCallback)
|
|
{
|
|
pwszCbPolicy = RutlAssignmentFromTokens(
|
|
g_hModule,
|
|
TOKEN_CBPOLICY,
|
|
TOKEN_NONE);
|
|
}
|
|
else if (pUser->User0.bfPrivilege & RASPRIV_CallerSetCallback)
|
|
{
|
|
pwszCbPolicy = RutlAssignmentFromTokens(
|
|
g_hModule,
|
|
TOKEN_CBPOLICY,
|
|
TOKEN_CALLER);
|
|
}
|
|
else
|
|
{
|
|
pwszCbPolicy = RutlAssignmentFromTokens(
|
|
g_hModule,
|
|
TOKEN_CBPOLICY,
|
|
TOKEN_CALLER);
|
|
}
|
|
|
|
// Initialize the callback number string
|
|
//
|
|
if (*(pUser->User0.wszPhoneNumber))
|
|
{
|
|
pwszCbNumber = RutlAssignmentFromTokens(
|
|
g_hModule,
|
|
TOKEN_CBNUMBER,
|
|
pUser->User0.wszPhoneNumber);
|
|
}
|
|
else
|
|
{
|
|
pwszCbNumber = NULL;
|
|
}
|
|
|
|
pwszName = RutlAssignmentFromTokens(
|
|
g_hModule,
|
|
TOKEN_NAME,
|
|
pUser->pszUsername);
|
|
|
|
do
|
|
{
|
|
if(!pwszSetCmd or
|
|
!pwszName or
|
|
!pwszDialin or
|
|
!pwszCbPolicy
|
|
)
|
|
{
|
|
|
|
DisplayError(NULL,
|
|
ERROR_NOT_ENOUGH_MEMORY);
|
|
|
|
break;
|
|
}
|
|
|
|
DisplayMessage(g_hModule,
|
|
MSG_RASUSER_SET_CMD,
|
|
pwszSetCmd,
|
|
pwszName,
|
|
pwszDialin,
|
|
pwszCbPolicy,
|
|
(pwszCbNumber) ? pwszCbNumber : L"");
|
|
|
|
} while(FALSE);
|
|
|
|
// Callback
|
|
{
|
|
if (pwszDialin)
|
|
{
|
|
RutlFree(pwszDialin);
|
|
}
|
|
if (pwszCbPolicy)
|
|
{
|
|
RutlFree(pwszCbPolicy);
|
|
}
|
|
if (pwszCbNumber)
|
|
{
|
|
RutlFree(pwszCbNumber);
|
|
}
|
|
if (pwszName)
|
|
{
|
|
RutlFree(pwszName);
|
|
}
|
|
}
|
|
|
|
return TRUE;
|
|
}
|
|
|
|
BOOL
|
|
UserShowPermit(
|
|
IN PRASUSER_DATA pUser,
|
|
IN HANDLE hFile
|
|
)
|
|
{
|
|
if (pUser->User0.bfPrivilege & RASPRIV_DialinPrivilege)
|
|
{
|
|
return UserShowReport(pUser, hFile);
|
|
}
|
|
|
|
return TRUE;
|
|
}
|
|
|
|
DWORD
|
|
UserEnumUsers(
|
|
IN RASMON_SERVERINFO* pServerInfo,
|
|
IN PFN_RASUSER_ENUM_CB pEnumFn,
|
|
IN HANDLE hData
|
|
)
|
|
|
|
/*++
|
|
|
|
Routine Description:
|
|
|
|
Enumerates all users by calling the given callback function and
|
|
passing it the user information and some user defined data.
|
|
|
|
Enumeration stops when all the users have been enumerated or when
|
|
the enumeration function returns FALSE.
|
|
|
|
Arguments:
|
|
|
|
pwszServer - The server on which the users should be enumerated
|
|
pEnumFn - Enumeration function
|
|
hData - Caller defined opaque data blob
|
|
|
|
Return Value:
|
|
|
|
NO_ERROR
|
|
|
|
--*/
|
|
|
|
{
|
|
DWORD dwErr, dwIndex = 0, dwCount = 100, dwEntriesRead, i;
|
|
NET_DISPLAY_USER * pUsers;
|
|
NET_API_STATUS nStatus;
|
|
RAS_USER_0 RasUser0;
|
|
HANDLE hUser = NULL;
|
|
RASUSER_DATA UserData, *pUserData = &UserData;
|
|
BOOL bInit = UserServerInfoIsInit(pServerInfo);
|
|
|
|
UserServerInfoInit(pServerInfo);
|
|
|
|
// Enumerate the users
|
|
//
|
|
while (TRUE)
|
|
{
|
|
// Read in the next block of user names
|
|
nStatus = NetQueryDisplayInformation(
|
|
pServerInfo->pszServer,
|
|
1,
|
|
dwIndex,
|
|
dwCount,
|
|
dwCount * sizeof(NET_DISPLAY_USER),
|
|
&dwEntriesRead,
|
|
&pUsers);
|
|
|
|
// Get out if there's an error getting user names
|
|
if ((nStatus isnot NERR_Success) and
|
|
(nStatus isnot ERROR_MORE_DATA))
|
|
{
|
|
break;
|
|
}
|
|
|
|
for (i = 0; i < dwEntriesRead; i++)
|
|
{
|
|
// Initialize the user data
|
|
ZeroMemory(pUserData, sizeof(RASUSER_DATA));
|
|
|
|
// Read in the old information
|
|
dwErr = UserGetRasProperties (
|
|
pServerInfo,
|
|
pUsers[i].usri1_name,
|
|
&(pUserData->User0));
|
|
if (dwErr isnot NO_ERROR)
|
|
{
|
|
continue;
|
|
}
|
|
|
|
// Initialize the rest of the data structure
|
|
pUserData->pszUsername = pUsers[i].usri1_name;
|
|
pUserData->pszFullname = pUsers[i].usri1_full_name;
|
|
|
|
// Call the enumeration callback
|
|
if (! ((*(pEnumFn))(pUserData, hData)))
|
|
{
|
|
nStatus = NO_ERROR;
|
|
break;
|
|
}
|
|
}
|
|
|
|
// Set the index to read in the next set of users
|
|
dwIndex = pUsers[dwEntriesRead - 1].usri1_next_index;
|
|
|
|
// Free the users buffer
|
|
NetApiBufferFree (pUsers);
|
|
|
|
// If we've read in everybody, go ahead and break
|
|
if (nStatus isnot ERROR_MORE_DATA)
|
|
{
|
|
break;
|
|
}
|
|
}
|
|
|
|
if (!bInit)
|
|
{
|
|
UserServerInfoUninit(pServerInfo);
|
|
}
|
|
|
|
return NO_ERROR;
|
|
}
|
|
|