archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 9769ad7c3d
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '9769ad7c3d'
${ noResults }
windows-xp/Source/XPSP1/NT/shell/osshell/security/aclui/perm.h

234 lines
8.2 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+-------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. //
  5. // Copyright (C) Microsoft Corporation, 1996 - 1999
  6. //
  7. // File: perm.cpp
  8. //
  9. // This file contains the implementation for the simple permission
  10. // editor page.
  11. //
  12. //--------------------------------------------------------------------------
  14. #include "permset.h"
  15. #include "sddl.h" // ConvertSidToStringSid
  17. #define IDN_CHECKSELECTION 1
  19. void SelectListViewItem(HWND hwndList, int iItem);
  22. //
  23. // Context Help IDs.
  24. //
  25. const static DWORD aPermPageHelpIDs[] =
  26. {
  27. IDC_SPP_GROUP_USER_NAME, IDH_SPP_PRINCIPALS,
  28. IDC_SPP_PRINCIPALS, IDH_SPP_PRINCIPALS,
  29. IDC_SPP_ADD, IDH_SPP_ADD,
  30. IDC_SPP_REMOVE, IDH_SPP_REMOVE,
  31. IDC_SPP_ACCESS, IDH_SPP_PERMS,
  32. IDC_SPP_ACCESS_BIG, IDH_SPP_PERMS,
  33. IDC_SPP_ALLOW, IDH_SPP_PERMS,
  34. IDC_SPP_DENY, IDH_SPP_PERMS,
  35. IDC_SPP_PERMS, IDH_SPP_PERMS,
  36. IDC_SPP_STATIC_ADV, IDH_SPP_ADVANCED,
  37. IDC_SPP_ADVANCED, IDH_SPP_ADVANCED,
  38. IDC_SPP_MORE_MSG, IDH_NOHELP,
  39. 0, 0,
  40. };
  43. class CPrincipal;
  44. typedef class CPrincipal *LPPRINCIPAL;
  45. class CSecurityInfo;
  48. class CPermPage : public CSecurityPage
  49. {
  50. private:
  51. SECURITY_DESCRIPTOR_CONTROL m_wSDControl;
  52. WORD m_wDaclRevision;
  53. PSI_ACCESS m_pDefaultAccess;
  54. BOOL m_fPageDirty;
  55. BOOL m_fBusy;
  56. BOOL m_bWasDenyAcl;
  57. BOOL m_bCustomPermission;
  58. HCURSOR m_hcurBusy;
  59. HWND m_hEffectivePerm;
  60. DWORD m_cInheritableAces;
  62. public:
  63. CPermPage(LPSECURITYINFO psi)
  64. : CSecurityPage(psi, SI_PAGE_PERM),
  65. m_wDaclRevision(ACL_REVISION),
  66. m_hEffectivePerm(NULL),
  67. m_cInheritableAces(0)
  68. { m_hcurBusy = LoadCursor(NULL, IDC_APPSTARTING); }
  70. private:
  71. virtual BOOL DlgProc(HWND hDlg, UINT uMsg, WPARAM wParam, LPARAM lParam);
  72. BOOL InitDlg(HWND hDlg);
  73. void InitPrincipalList(HWND hDlg, PACL pDacl);
  74. HRESULT InitCheckList(HWND hDlg);
  75. void EnumerateAcl(HWND hwndList, PACL pAcl);
  76. HRESULT SetPrincipalNamesInList(HWND hwndList, PSID pSid = NULL);
  78. int AddPrincipalToList(HWND hwndList, LPPRINCIPAL pPrincipal);
  79. BOOL OnNotify(HWND hDlg, int idCtrl, LPNMHDR pnmh);
  80. void OnSelChange(HWND hDlg, BOOL bClearFirst = TRUE, BOOL bClearCustomAllow = FALSE, BOOL bClearCustomDeny = FALSE);
  81. void OnApply(HWND hDlg, BOOL bClose);
  82. HRESULT BuildDacl(HWND hDlg,
  83. PSECURITY_DESCRIPTOR *ppSD,
  84. BOOL fIncludeInherited);
  85. HRESULT SetDacl(HWND hDlg,
  86. PSECURITY_DESCRIPTOR psd,
  87. BOOL bDirty = FALSE);
  88. void OnAddPrincipal(HWND hDlg);
  89. void OnRemovePrincipal(HWND hDlg);
  90. void OnAdvanced(HWND hDlg);
  91. void EnablePrincipalControls(HWND hDlg, BOOL fEnable);
  92. void CommitCurrent(HWND hDlg, int iPrincipal = -1);
  93. void OnSize(HWND hDlg, DWORD dwSizeType, ULONG nWidth, ULONG nHeight);
  94. void ClearPermissions(HWND hwndList, BOOL bDisabled = TRUE);
  95. void SetDirty(HWND hDlg, BOOL bDefault = FALSE);
  96. void SetEffectivePerm(HWND hwnd){m_hEffectivePerm = hwnd;}
  97. VOID SetPermLabelText(HWND hDlg);
  99. friend class CPrincipal;
  100. friend class CSecurityInfo;
  101. };
  102. typedef class CPermPage *PPERMPAGE;
  104. class CPrincipal
  105. {
  106. private:
  107. PPERMPAGE m_pPage;
  108. LPTSTR m_pszName;
  109. LPTSTR m_pszDisplayName; //This is only name. Doesn't include Logon Name
  110. PSID m_pSID;
  111. SID_IMAGE_INDEX m_nImageIndex;
  112. BOOL m_bHaveRealName;
  114. public:
  115. CPermissionSet m_permDeny;
  116. CPermissionSet m_permAllow;
  117. CPermissionSet m_permInheritedDeny;
  118. CPermissionSet m_permInheritedAllow;
  120. HDSA m_hAdditionalAllow;
  121. HDSA m_hAdditionalDeny;
  123. public:
  124. CPrincipal(CPermPage *pPage) : m_pPage(pPage), m_nImageIndex(SID_IMAGE_UNKNOWN),
  125. m_pszDisplayName(NULL) {}
  126. ~CPrincipal();
  128. BOOL SetPrincipal(PSID pSID,
  129. SID_NAME_USE sidType = SidTypeUnknown,
  130. LPCTSTR pszName = NULL,
  131. LPCTSTR pszLogonName = NULL);
  132. BOOL SetName(LPCTSTR pszName, LPCTSTR pszLogonName = NULL);
  133. void SetSidType(SID_NAME_USE sidType) { m_nImageIndex = GetSidImageIndex(m_pSID, sidType); }
  134. PSID GetSID() const { return m_pSID; }
  135. LPCTSTR GetName() const { return m_pszName; }
  136. LPCTSTR GetDisplayName() const{ return m_pszDisplayName ? m_pszDisplayName : m_pszName; }
  137. int GetImageIndex() const { return m_nImageIndex; }
  139. BOOL HaveRealName() { return m_bHaveRealName; }
  141. BOOL AddAce(PACE_HEADER pAce);
  142. ULONG GetAclLength(DWORD dwFlags);
  143. BOOL AppendToAcl(PACL pAcl, DWORD dwFlags, PACE_HEADER *ppAcePos);
  145. BOOL HaveInheritedAces(void);
  146. void ConvertInheritedAces(BOOL bDelete);
  148. void AddPermission(BOOL bAllow, PPERMISSION pperm);
  149. void RemovePermission(BOOL bAllow, PPERMISSION pperm);
  151. private:
  152. CPermissionSet* GetPermSet(DWORD dwType, BOOL bInherited);
  153. BOOL AddNormalAce(DWORD dwType, DWORD dwFlags, ACCESS_MASK mask, const GUID *pObjectType);
  154. BOOL AddAdvancedAce(DWORD dwType, PACE_HEADER pAce);
  155. };
  157. // flag bits for GetAclLength & AppendToAcl
  158. #define ACL_NONINHERITED 0x00010000L
  159. #define ACL_INHERITED 0x00020000L
  160. #define ACL_DENY 0x00040000L
  161. #define ACL_ALLOW 0x00080000L
  162. #define ACL_CHECK_CREATOR 0x00100000L
  163. #define ACL_NONOBJECT PS_NONOBJECT
  164. #define ACL_OBJECT PS_OBJECT
  167. //
  168. // Wrapper for ISecurityInformation. Used when invoking
  169. // the advanced ACL editor
  170. //
  171. class CSecurityInfo : public ISecurityInformation, ISecurityInformation2,
  172. IEffectivePermission, ISecurityObjectTypeInfo
  173. #if(_WIN32_WINNT >= 0x0500)
  174. , IDsObjectPicker
  175. #endif
  176. {
  177. private:
  178. ULONG m_cRef;
  179. PPERMPAGE m_pPage;
  180. HWND m_hDlg;
  182. public:
  183. CSecurityInfo(PPERMPAGE pPage, HWND hDlg)
  184. : m_cRef(1), m_pPage(pPage), m_hDlg(hDlg) {}
  186. // IUnknown methods
  187. STDMETHODIMP QueryInterface(REFIID, LPVOID *);
  188. STDMETHODIMP_(ULONG) AddRef();
  189. STDMETHODIMP_(ULONG) Release();
  191. // ISecurityInformation methods
  192. STDMETHODIMP GetObjectInformation(PSI_OBJECT_INFO pObjectInfo);
  193. STDMETHODIMP GetSecurity(SECURITY_INFORMATION si,
  194. PSECURITY_DESCRIPTOR *ppSD,
  195. BOOL fDefault);
  196. STDMETHODIMP SetSecurity(SECURITY_INFORMATION si,
  197. PSECURITY_DESCRIPTOR pSD);
  198. STDMETHODIMP GetAccessRights(const GUID* pguidObjectType,
  199. DWORD dwFlags,
  200. PSI_ACCESS *ppAccess,
  201. ULONG *pcAccesses,
  202. ULONG *piDefaultAccess);
  203. STDMETHODIMP MapGeneric(const GUID* pguidObjectType,
  204. UCHAR *pAceFlags,
  205. ACCESS_MASK *pmask);
  206. STDMETHODIMP GetInheritTypes(PSI_INHERIT_TYPE *ppInheritTypes,
  207. ULONG *pcInheritTypes);
  208. STDMETHODIMP PropertySheetPageCallback(HWND hwnd, UINT uMsg, SI_PAGE_TYPE uPage);
  210. // ISecurityInformation2 methods
  211. STDMETHODIMP_(BOOL) IsDaclCanonical(PACL pDacl);
  212. STDMETHODIMP LookupSids(ULONG cSids, PSID *rgpSids, LPDATAOBJECT *ppdo);
  214. // IDsObjectPicker methods
  215. #if(_WIN32_WINNT >= 0x0500)
  216. STDMETHODIMP Initialize(PDSOP_INIT_INFO pInitInfo);
  217. STDMETHODIMP InvokeDialog(HWND hwndParent, IDataObject **ppdoSelection);
  218. #endif
  220. STDMETHOD(GetInheritSource)(SECURITY_INFORMATION si,
  221. PACL pACL,
  222. PINHERITED_FROM *ppInheritArray);
  224. STDMETHOD(GetEffectivePermission) ( THIS_ const GUID* pguidObjectType,
  225. PSID pUserSid,
  226. LPCWSTR pszServerName,
  227. PSECURITY_DESCRIPTOR pSD,
  228. POBJECT_TYPE_LIST *ppObjectTypeList,
  229. ULONG *pcObjectTypeListLength,
  230. PACCESS_MASK *ppGrantedAccessList,
  231. ULONG *pcGrantedAccessListLength);
  234. };