archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
3.8 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/admin/dcpromo/exe/credentialspage.cpp

572 lines
12 KiB
Raw Normal View History

Add source files
4 years ago
  1. // Copyright (c) 1997-1999 Microsoft Corporation
  2. //
  3. // get credentials page
  4. //
  5. // 12-22-97 sburns
  9. #include "headers.hxx"
  10. #include "page.hpp"
  11. #include "CredentialsPage.hpp"
  12. #include "resource.h"
  13. #include "state.hpp"
  14. #include "ds.hpp"
  15. #include "CredentialUiHelpers.hpp"
  16. #include "common.hpp"
  17. #include <DiagnoseDcNotFound.hpp>
  21. CredentialsPage::CredentialsPage()
  22. :
  23. DCPromoWizardPage(
  24. IDD_GET_CREDENTIALS,
  25. IDS_CREDENTIALS_PAGE_TITLE,
  26. IDS_CREDENTIALS_PAGE_SUBTITLE),
  27. readAnswerfile(false)
  28. {
  29. LOG_CTOR(CredentialsPage);
  31. CredUIInitControls();
  32. }
  36. CredentialsPage::~CredentialsPage()
  37. {
  38. LOG_DTOR(CredentialsPage);
  39. }
  43. void
  44. CredentialsPage::OnInit()
  45. {
  46. LOG_FUNCTION(CredentialsPage::OnInit);
  48. HWND hwndCred = Win::GetDlgItem(hwnd, IDC_CRED);
  49. Credential_SetUserNameMaxChars(hwndCred, DS::MAX_USER_NAME_LENGTH);
  50. Credential_SetPasswordMaxChars(hwndCred, DS::MAX_PASSWORD_LENGTH);
  52. // Only use the smartcard flag when the machine is joined to a domain. On a
  53. // standalone machine, the smartcard won't have access to any domain
  54. // authority to authenticate it.
  55. // NTRAID#NTBUG9-287538-2001/01/23-sburns
  57. State& state = State::GetInstance();
  58. Computer& computer = state.GetComputer();
  60. DWORD flags = CRS_NORMAL | CRS_USERNAMES;
  61. if (
  62. computer.IsJoinedToDomain()
  64. // can only use smartcards on replica promotions
  65. // NTRAID#NTBUG9-311150-2001/02/19-sburns
  67. && state.GetOperation() == State::REPLICA)
  68. {
  69. flags |= CRS_SMARTCARDS;
  70. }
  71. Credential_InitStyle(hwndCred, flags);
  73. Win::Edit_LimitText(
  74. Win::GetDlgItem(hwnd, IDC_DOMAIN),
  75. Dns::MAX_NAME_LENGTH);
  76. }
  80. void
  81. CredentialsPage::Enable()
  82. {
  83. // LOG_FUNCTION(CredentialsPage::Enable);
  85. int next =
  86. ( !CredUi::GetUsername(Win::GetDlgItem(hwnd, IDC_CRED)).empty()
  87. && !Win::GetTrimmedDlgItemText(hwnd, IDC_DOMAIN).empty() )
  88. ? PSWIZB_NEXT : 0;
  90. Win::PropSheet_SetWizButtons(
  91. Win::GetParent(hwnd),
  92. PSWIZB_BACK | next);
  93. }
  97. bool
  98. CredentialsPage::OnCommand(
  99. HWND /* windowFrom */ ,
  100. unsigned controlIDFrom,
  101. unsigned code)
  102. {
  103. // LOG_FUNCTION(CredentialsPage::OnCommand);
  105. switch (controlIDFrom)
  106. {
  107. case IDC_CRED:
  108. {
  109. if (code == CRN_USERNAMECHANGE)
  110. {
  111. SetChanged(controlIDFrom);
  112. Enable();
  113. return true;
  114. }
  115. break;
  116. }
  117. case IDC_DOMAIN:
  118. {
  119. if (code == EN_CHANGE)
  120. {
  121. SetChanged(controlIDFrom);
  123. Enable();
  124. return true;
  125. }
  126. break;
  127. }
  128. default:
  129. {
  130. // do nothing
  131. break;
  132. }
  133. }
  135. return false;
  136. }
  140. bool
  141. CredentialsPage::ShouldSkipPage()
  142. {
  143. LOG_FUNCTION(CredentialsPage::ShouldSkipPage);
  145. State& state = State::GetInstance();
  146. State::Operation oper = state.GetOperation();
  148. bool result = false;
  150. switch (oper)
  151. {
  152. case State::FOREST:
  153. {
  154. // never need credentials for new forest.
  156. result = true;
  157. break;
  158. }
  159. case State::DEMOTE:
  160. {
  161. // The demote page should circumvent this page if necessary, so if
  162. // we make it here, don't skip the page.
  164. break;
  165. }
  166. case State::ABORT_BDC_UPGRADE:
  167. case State::REPLICA:
  168. case State::TREE:
  169. case State::CHILD:
  170. {
  171. break;
  172. }
  173. case State::NONE:
  174. default:
  175. {
  176. ASSERT(false);
  177. break;
  178. }
  179. }
  181. return result;
  182. }
  186. int
  187. CredentialsPage::DetermineNextPage()
  188. {
  189. LOG_FUNCTION(CredentialsPage::DetermineNextPage);
  191. State& state = State::GetInstance();
  193. int id = IDD_PATHS;
  194. switch (state.GetOperation())
  195. {
  196. case State::DEMOTE:
  197. case State::ABORT_BDC_UPGRADE:
  198. {
  199. id = IDD_ADMIN_PASSWORD;
  200. break;
  201. }
  202. case State::FOREST:
  203. {
  204. id = IDD_NEW_FOREST;
  205. break;
  206. }
  207. case State::REPLICA:
  208. {
  209. if (state.GetRunContext() == State::BDC_UPGRADE)
  210. {
  211. id = IDD_PATHS;
  212. }
  213. else
  214. {
  215. id = IDD_REPLICA;
  216. }
  217. break;
  218. }
  219. case State::TREE:
  220. {
  221. id = IDD_NEW_TREE;
  222. break;
  223. }
  224. case State::CHILD:
  225. {
  226. id = IDD_NEW_CHILD;
  227. break;
  228. }
  229. case State::NONE:
  230. default:
  231. {
  232. ASSERT(false);
  233. break;
  234. }
  235. }
  237. return id;
  238. }
  242. String
  243. GetMessage()
  244. {
  245. String message;
  246. State& state = State::GetInstance();
  248. switch (state.GetOperation())
  249. {
  250. case State::ABORT_BDC_UPGRADE:
  251. {
  252. message = String::load(IDS_ABORT_BDC_UPGRADE_CREDENTIALS);
  253. break;
  254. }
  255. case State::TREE:
  256. case State::CHILD:
  257. case State::REPLICA:
  258. {
  259. message = String::load(IDS_PROMOTION_CREDENTIALS);
  260. break;
  261. }
  262. case State::DEMOTE:
  263. {
  264. // 318736 demote requires enterprise admin credentials -- for
  265. // root and child domains alike.
  267. message =
  268. String::format(
  269. IDS_ROOT_DOMAIN_CREDENTIALS,
  270. state.GetComputer().GetForestDnsName().c_str());
  271. break;
  272. }
  273. case State::FOREST:
  274. {
  275. // do nothing, the page will be skipped.
  277. break;
  278. }
  279. case State::NONE:
  280. default:
  281. {
  282. ASSERT(false);
  283. break;
  284. }
  285. }
  287. return message;
  288. }
  292. String
  293. DefaultUserDomainName()
  294. {
  295. String d;
  296. State& state = State::GetInstance();
  297. const Computer& computer = state.GetComputer();
  299. switch (state.GetOperation())
  300. {
  301. case State::ABORT_BDC_UPGRADE:
  302. case State::FOREST:
  303. {
  304. // do nothing
  306. break;
  307. }
  308. case State::DEMOTE: // 301361
  309. case State::TREE:
  310. {
  311. d = computer.GetForestDnsName();
  312. break;
  313. }
  314. case State::CHILD:
  315. {
  316. d = computer.GetDomainDnsName();
  317. break;
  318. }
  319. case State::REPLICA:
  320. {
  321. d = computer.GetDomainDnsName();
  322. if (d.empty() && state.ReplicateFromMedia())
  323. {
  324. d = state.GetReplicaDomainDNSName();
  325. }
  326. break;
  327. }
  328. case State::NONE:
  329. default:
  330. {
  331. ASSERT(false);
  332. break;
  333. }
  334. }
  336. return d;
  337. }
  341. bool
  342. CredentialsPage::OnSetActive()
  343. {
  344. LOG_FUNCTION(CredentialsPage::OnSetActive);
  346. Win::WaitCursor cursor;
  348. State& state = State::GetInstance();
  349. Wizard& wiz = GetWizard();
  350. HWND hwndCred = Win::GetDlgItem(hwnd, IDC_CRED);
  352. if (ShouldSkipPage())
  353. {
  354. LOG(L"skipping CredentialsPage");
  356. if (wiz.IsBacktracking())
  357. {
  358. // backup once again
  360. wiz.Backtrack(hwnd);
  361. }
  362. else
  363. {
  364. wiz.SetNextPageID(hwnd, DetermineNextPage());
  365. }
  367. return true;
  368. }
  370. if (!readAnswerfile && state.UsingAnswerFile())
  371. {
  372. CredUi::SetUsername(
  373. hwndCred,
  374. state.GetAnswerFileOption(State::OPTION_USERNAME));
  375. CredUi::SetPassword(
  376. hwndCred,
  377. state.GetEncodedAnswerFileOption(State::OPTION_PASSWORD));
  379. String domain = state.GetAnswerFileOption(State::OPTION_USER_DOMAIN);
  380. if (domain.empty())
  381. {
  382. domain = DefaultUserDomainName();
  383. }
  384. Win::SetDlgItemText(
  385. hwnd,
  386. IDC_DOMAIN,
  387. domain);
  389. readAnswerfile = true;
  390. }
  392. if (state.RunHiddenUnattended())
  393. {
  394. int nextPage = CredentialsPage::Validate();
  395. if (nextPage != -1)
  396. {
  397. wiz.SetNextPageID(hwnd, nextPage);
  398. return true;
  399. }
  400. else
  401. {
  402. state.ClearHiddenWhileUnattended();
  403. }
  404. }
  406. // use the credentials last entered (for browsing, etc.)
  408. CredUi::SetUsername(hwndCred, state.GetUsername());
  409. CredUi::SetPassword(hwndCred, state.GetPassword());
  411. Win::SetDlgItemText(hwnd, IDC_DOMAIN, state.GetUserDomainName());
  413. Win::PropSheet_SetWizButtons(
  414. Win::GetParent(hwnd),
  415. PSWIZB_BACK);
  416. Enable();
  418. Win::SetDlgItemText(hwnd, IDC_MESSAGE, GetMessage());
  420. if (Win::GetTrimmedDlgItemText(hwnd, IDC_DOMAIN).empty())
  421. {
  422. // supply a default domain if none already present
  424. Win::SetDlgItemText(hwnd, IDC_DOMAIN, DefaultUserDomainName());
  425. }
  427. return true;
  428. }
  432. int
  433. CredentialsPage::Validate()
  434. {
  435. LOG_FUNCTION(CredentialsPage::Validate);
  437. int nextPage = -1;
  439. do
  440. {
  441. if (
  442. !WasChanged(IDC_CRED)
  443. && !WasChanged(IDC_DOMAIN))
  444. {
  445. // nothing changed => nothing to validate
  447. nextPage = DetermineNextPage();
  448. break;
  449. }
  451. State& state = State::GetInstance();
  453. HWND hwndCred = Win::GetDlgItem(hwnd, IDC_CRED);
  454. String username = CredUi::GetUsername(hwndCred);
  456. if (username.empty())
  457. {
  458. popup.Gripe(hwnd, IDC_CRED, IDS_MUST_ENTER_USERNAME);
  459. break;
  460. }
  462. String domain = Win::GetTrimmedDlgItemText(hwnd, IDC_DOMAIN);
  463. if (domain.empty())
  464. {
  465. popup.Gripe(hwnd, IDC_DOMAIN, IDS_MUST_ENTER_USER_DOMAIN);
  466. break;
  467. }
  469. Win::WaitCursor cursor;
  471. // the domain must be an NT 5 domain: no user of a downlevel domain
  472. // could perform operations in an NT 5 forest. We get the forest name
  473. // of the domain ('cause that may be useful for the new tree scenario)
  474. // as a means of validating the domain name. If the domain does not
  475. // exist, or is not an NT5 domain, then this call will fail.
  477. String forest = GetForestName(domain);
  478. if (forest.empty())
  479. {
  480. ShowDcNotFoundErrorDialog(
  481. hwnd,
  482. IDC_DOMAIN,
  483. domain,
  484. String::load(IDS_WIZARD_TITLE),
  485. String::format(IDS_DC_NOT_FOUND, domain.c_str()),
  486. false);
  487. break;
  488. }
  490. if (state.GetOperation() == State::TREE)
  491. {
  492. // For the new tree case, we need to validate the forest name (a dns
  493. // domain name) by ensuring that we can find a writable DS DC in that
  494. // domain. The user may have supplied a netbios domain name, and it
  495. // is possible that the domain's DNS registration is broken. Since
  496. // we will use the forest name as the parent domain name in the call
  497. // to DsRoleDcAsDc, we need to make sure we can find DCs with that
  498. // name. 122886
  500. DOMAIN_CONTROLLER_INFO* info = 0;
  501. HRESULT hr =
  502. MyDsGetDcName(
  503. 0,
  504. forest,
  506. // force discovery to ensure that we don't pick up a cached
  507. // entry for a domain that may no longer exist, writeable
  508. // and DS because we happen to know that's what the
  509. // DsRoleDcAsDc API will require.
  511. DS_FORCE_REDISCOVERY
  512. | DS_WRITABLE_REQUIRED
  513. | DS_DIRECTORY_SERVICE_REQUIRED,
  514. info);
  515. if (FAILED(hr) || !info)
  516. {
  517. ShowDcNotFoundErrorDialog(
  518. hwnd,
  519. IDC_DOMAIN,
  520. forest,
  521. String::load(IDS_WIZARD_TITLE),
  522. String::format(IDS_DC_FOR_ROOT_NOT_FOUND, forest.c_str()),
  524. // we know the name can't be netbios: forest names are always
  525. // DNS names
  527. true);
  528. break;
  529. }
  531. ::NetApiBufferFree(info);
  532. }
  534. state.SetUserForestName(forest);
  536. // set these now so we can read the domain topology
  538. state.SetUsername(username);
  539. state.SetPassword(CredUi::GetPassword(hwndCred));
  540. state.SetUserDomainName(domain);
  542. // cache the domain topology: this is used to validate new tree,
  543. // child, and replica domain names in later pages. It's also a
  544. // pretty good validation of the credentials.
  546. HRESULT hr = state.ReadDomains();
  547. if (FAILED(hr))
  548. {
  549. popup.Gripe(
  550. hwnd,
  551. IDC_DOMAIN,
  552. hr,
  553. String::format(IDS_UNABLE_TO_READ_FOREST));
  554. break;
  555. }
  557. // valid
  559. ClearChanges();
  561. nextPage = DetermineNextPage();
  562. }
  563. while (0);
  565. return nextPage;
  566. }