archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 1b390dddff
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1b390dddff'
${ noResults }
windows-xp/Source/XPSP1/NT/admin/dsutils/migrate/clonepr/copyuser.cpp

284 lines
6.4 KiB
Raw Normal View History

Add source files
4 years ago
  1. // Copyright (C) 1999 Microsoft Corporation
  2. //
  3. // Implementation of ICloneSecurityPrincipal::CopyDownlevelUserProperties
  4. //
  5. // sburns 5-14-99
  9. #include "headers.hxx"
  10. #include "resource.h"
  11. #include "common.hpp"
  12. #include "implmain.hpp"
  16. // caller must close the handle with SamCloseHandle
  18. HRESULT
  19. OpenSamUser(
  20. const String& samName,
  21. SAM_HANDLE domainSamHandle,
  22. SAM_HANDLE& resultSamHandle)
  23. {
  24. LOG_FUNCTION2(OpenSamUser, samName);
  25. ASSERT(!samName.empty());
  26. ASSERT(domainSamHandle != INVALID_HANDLE_VALUE);
  27. ASSERT(resultSamHandle == INVALID_HANDLE_VALUE);
  29. resultSamHandle = INVALID_HANDLE_VALUE;
  31. HRESULT hr = S_OK;
  32. ULONG* rids = 0;
  33. PSID_NAME_USE use = 0;
  34. do
  35. {
  36. LOG(L"Calling SamLookupNamesInDomain");
  38. UNICODE_STRING userName;
  39. ::RtlInitUnicodeString(&userName, samName.c_str());
  41. hr =
  42. NtStatusToHRESULT(
  43. ::SamLookupNamesInDomain(
  44. domainSamHandle,
  45. 1,
  46. &userName,
  47. &rids,
  48. &use));
  49. if (FAILED(hr))
  50. {
  51. SetComError(
  52. String::format(
  53. IDS_SAM_USER_NOT_FOUND,
  54. samName.c_str(),
  55. GetErrorMessage(hr).c_str()));
  56. break;
  57. }
  58. if (!use || *use != SidTypeUser) // prefix 111381
  59. {
  60. hr = Win32ToHresult(ERROR_NO_SUCH_USER);
  61. SetComError(
  62. String::format(
  63. IDS_SAM_NAME_IS_NOT_USER,
  64. samName.c_str()));
  65. break;
  66. }
  68. LOG(L"Calling SamOpenUser");
  70. hr =
  71. NtStatusToHRESULT(
  72. ::SamOpenUser(
  73. domainSamHandle,
  74. MAXIMUM_ALLOWED,
  75. rids[0],
  76. &resultSamHandle));
  77. if (FAILED(hr))
  78. {
  79. SetComError(
  80. String::format(
  81. IDS_OPEN_SAM_USER_FAILED,
  82. samName.c_str(),
  83. GetErrorMessage(hr).c_str()));
  84. break;
  85. }
  87. ASSERT(resultSamHandle != INVALID_HANDLE_VALUE);
  88. }
  89. while (0);
  91. if (rids)
  92. {
  93. ::SamFreeMemory(rids);
  94. }
  95. if (use)
  96. {
  97. ::SamFreeMemory(use);
  98. }
  100. return hr;
  101. }
  105. HRESULT
  106. CloneSecurityPrincipal::DoCopyDownlevelUserProperties(
  107. const String& srcSamName,
  108. const String& dstSamName,
  109. long flags)
  110. {
  111. LOG_FUNCTION(CloneSecurityPrincipal::DoCopyDownlevelUserProperties);
  113. if (srcSamName.empty())
  114. {
  115. SetComError(IDS_MISSING_SRC_SAM_NAME);
  116. return E_INVALIDARG;
  117. }
  119. if (flags)
  120. {
  121. // not used, should be 0
  122. SetComError(IDS_FLAGS_ARE_UNUSED);
  123. return E_INVALIDARG;
  124. }
  126. if (!connection || !connection->IsConnected())
  127. {
  128. SetComError(IDS_MUST_CONNECT_FIRST);
  129. return Win32ToHresult(ERROR_ONLY_IF_CONNECTED);
  130. };
  132. // At this point, the Computer objects contain the normalized
  133. // source and destination DC names, and their domains, and any
  134. // necessary authenticated connections to those DCs have been
  135. // established.
  137. HRESULT hr = S_OK;
  138. SAM_HANDLE userSamHandle = INVALID_HANDLE_VALUE;
  139. USER_ALL_INFORMATION* allInfo = 0;
  141. do
  142. {
  143. // get a handle to the source user
  145. hr =
  146. OpenSamUser(
  147. srcSamName,
  148. connection->srcDomainSamHandle,
  149. userSamHandle);
  150. BREAK_ON_FAILED_HRESULT(hr);
  152. LOG(L"Calling SamQueryInformationUser");
  154. hr =
  155. NtStatusToHRESULT(
  156. ::SamQueryInformationUser(
  157. userSamHandle,
  158. UserAllInformation,
  159. reinterpret_cast<void**>(&allInfo)));
  160. if (FAILED(hr))
  161. {
  162. SetComError(
  163. String::format(
  164. IDS_QUERY_SAM_USER_FAILED,
  165. srcSamName.c_str(),
  166. GetErrorMessage(hr).c_str()));
  167. break;
  168. }
  170. ::SamCloseHandle(userSamHandle);
  171. userSamHandle = INVALID_HANDLE_VALUE;
  173. // get a handle to the target user
  175. hr =
  176. OpenSamUser(
  177. dstSamName,
  178. connection->dstDomainSamHandle,
  179. userSamHandle);
  180. BREAK_ON_FAILED_HRESULT(hr);
  183. ULONG* rids = 0;
  184. PSID_NAME_USE use = 0;
  186. UNICODE_STRING userName;
  187. ::RtlInitUnicodeString(&userName, dstSamName.c_str());
  189. hr =
  190. NtStatusToHRESULT(
  191. ::SamLookupNamesInDomain(
  192. connection->dstDomainSamHandle,
  193. 1,
  194. &userName,
  195. &rids,
  196. &use));
  197. if (FAILED(hr))
  198. {
  199. SetComError(
  200. String::format(
  201. IDS_SAM_USER_NOT_FOUND,
  202. dstSamName.c_str(),
  203. GetErrorMessage(hr).c_str()));
  204. break;
  205. }
  206. if (*use != SidTypeUser)
  207. {
  208. hr = Win32ToHresult(ERROR_NO_SUCH_USER);
  209. SetComError(
  210. String::format(
  211. IDS_SAM_NAME_IS_NOT_USER,
  212. dstSamName.c_str()));
  213. break;
  214. }
  216. allInfo->WhichFields =
  217. USER_ALL_FULLNAME
  218. | USER_ALL_ADMINCOMMENT
  219. | USER_ALL_USERCOMMENT
  220. | USER_ALL_HOMEDIRECTORY
  221. | USER_ALL_HOMEDIRECTORYDRIVE
  222. | USER_ALL_SCRIPTPATH
  223. | USER_ALL_PROFILEPATH
  224. | USER_ALL_WORKSTATIONS
  225. | USER_ALL_LOGONHOURS
  226. // USER_ALL_BADPASSWORDCOUNT
  227. //| USER_ALL_PASSWORDCANCHANGE
  228. //| USER_ALL_PASSWORDMUSTCHANGE
  229. //| USER_ALL_USERACCOUNTCONTROL
  231. // this is the reason for all this nonsense
  232. | USER_ALL_PARAMETERS
  234. | USER_ALL_COUNTRYCODE
  235. | USER_ALL_CODEPAGE
  236. //| USER_ALL_PASSWORDEXPIRED*/
  237. ;
  239. if( *rids != 500 )
  240. allInfo->WhichFields |= USER_ALL_ACCOUNTEXPIRES;
  242. if (rids)
  243. {
  244. ::SamFreeMemory(rids);
  245. }
  246. if (use)
  247. {
  248. ::SamFreeMemory(use);
  249. }
  251. // @@ why is user cannot change password not transferring?
  253. LOG(L"Calling SamSetInformationUser");
  255. hr =
  256. NtStatusToHRESULT(
  257. ::SamSetInformationUser(
  258. userSamHandle,
  259. UserAllInformation,
  260. allInfo));
  261. if (FAILED(hr))
  262. {
  263. SetComError(
  264. String::format(
  265. IDS_SET_SAM_USER_FAILED,
  266. dstSamName.c_str(),
  267. GetErrorMessage(hr).c_str()));
  268. break;
  269. }
  270. }
  271. while (0);
  273. if (userSamHandle != INVALID_HANDLE_VALUE)
  274. {
  275. ::SamCloseHandle(userSamHandle);
  276. }
  277. if (allInfo)
  278. {
  279. ::SamFreeMemory(allInfo);
  280. }
  282. return hr;
  283. }