archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
3.8 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/tools/dsacls/dsacls.h

226 lines
5.4 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1996 Microsoft Corporation
  5. Module Name:
  7. dsacls.h
  9. Abstract:
  11. The main header file for the dsacls tool
  13. Author:
  15. Mac McLain (MacM) 10-02-96
  17. Environment:
  19. User Mode
  21. Revision History:
  24. --*/
  26. #ifndef _DSACLS_H
  27. #define _DSACLS_H
  29. #include <caclsmsg.h>
  30. #include "accctrl.h"
  32. #define FLAG_ON(flags,bit) ((flags) & (bit))
  33. //Some Error Checking Macros
  34. #define CHECK_NULL( ptr, jump_loc ) \
  35. if( ptr == NULL ) \
  36. { \
  37. dwErr = ERROR_NOT_ENOUGH_MEMORY; \
  38. goto jump_loc; \
  39. }
  42. #define CHECK_HR( hr, jump_loc ) \
  43. if( hr != S_OK ) \
  44. { \
  45. dwErr = HRESULT_CODE( hr ); \
  46. goto jump_loc; \
  47. } \
  49. //
  50. // Local prototypes
  51. //
  52. #if DSACL_DBG
  53. ULONG gfDebug;
  54. #endif
  56. //
  57. // Type of operation to perform
  58. //
  59. typedef enum _DSACLS_OP
  60. {
  61. REVOKE = 0,
  62. GRANT,
  63. DENY
  64. } DSACLS_OP;
  66. #define DSACLS_EXTRA_INFO_NONE 0
  67. #define DSACLS_EXTRA_INFO_REQUIRED 1
  68. #define DSACLS_EXTRA_INFO_OPTIONAL 2
  70. typedef struct _DSACLS_ARG {
  71. ULONG ResourceId;
  72. PWSTR String;
  73. ULONG Length;
  74. ULONG StartIndex;
  75. ULONG Flag;
  76. ULONG SkipCount;
  77. BOOLEAN SkipNonFlag;
  78. WORD ExtraInfo;
  79. } DSACLS_ARG, *PDSACLS_ARG;
  81. typedef struct _DSACLS_INHERIT {
  82. ULONG ResourceId;
  83. PWSTR String;
  84. ULONG Length;
  85. BOOLEAN ValidForInput;
  86. ULONG InheritFlag;
  88. } DSACLS_INHERIT, *PDSACLS_INHERIT;
  90. typedef struct _DSACLS_RIGHTS {
  91. ULONG ResourceId;
  92. PWSTR String;
  93. ULONG ResourceIdEx;
  94. PWSTR StringEx;
  95. ULONG Length;
  96. ULONG Right;
  98. } DSACLS_RIGHTS, *PDSACLS_RIGHTS;
  100. typedef struct _DSACLS_PROTECT {
  101. ULONG ResourceId;
  102. PWSTR String;
  103. ULONG Length;
  104. ULONG Right;
  105. } DSACLS_PROTECT, *PDSACLS_PROTECT;
  107. extern LPWSTR g_szSchemaNamingContext;
  108. extern LPWSTR g_szConfigurationNamingContext;
  109. extern HMODULE g_hInstance;
  110. extern LPWSTR g_szServerName;
  111. extern CCache *g_Cache;
  113. //
  114. // Prototypes from dsacls.c
  115. //
  118. DWORD
  119. InitializeGlobalArrays();
  121. DWORD
  122. ConvertArgvToUnicode( LPWSTR * wargv,
  123. char ** argv,
  124. int argc ) ;
  126. DWORD
  127. WriteObjectSecurity( IN LPWSTR pszObject,
  128. IN SECURITY_INFORMATION si,
  129. IN PSECURITY_DESCRIPTOR pSD );
  135. //
  136. // prototypes from refresh.c
  137. //
  138. DWORD
  139. SetDefaultSecurityOnObjectTree(
  140. IN PWSTR ObjectPath,
  141. IN BOOLEAN Propagate,
  142. IN SECURITY_INFORMATION Protection
  143. );
  146. void MapGeneric( ACCESS_MASK * pMask );
  147. void DisplayAccessRights( UINT nSpace, ACCESS_MASK m_Mask );
  149. void ConvertAccessMaskToGenericString( ACCESS_MASK m_Mask, LPWSTR szLoadBuffer, UINT nBuffer );
  150. DWORD BuildExplicitAccess( IN PSID pSid,
  151. IN GUID* pGuidObject,
  152. IN GUID* pGuidInherit,
  153. IN ACCESS_MODE AccessMode,
  154. IN ULONG Access,
  155. IN ULONG Inheritance,
  156. OUT PEXPLICIT_ACCESS pExplicitAccess );
  159. DWORD ParseUserAndPermissons( IN LPWSTR pszArgument,
  160. IN DSACLS_OP Op,
  161. IN ULONG RightsListCount,
  162. IN PDSACLS_RIGHTS RightsList,
  163. OUT LPWSTR * ppszTrusteeName,
  164. OUT PULONG pAccess,
  165. OUT LPWSTR * ppszObjectId,
  166. OUT LPWSTR * ppszInheritId );
  168. //
  169. // Define the rights used in the DS
  170. //
  172. #define RIGHT_DS_CREATE_CHILD ACTRL_DS_CREATE_CHILD
  173. #define RIGHT_DS_DELETE_CHILD ACTRL_DS_DELETE_CHILD
  174. #define RIGHT_DS_DELETE_SELF DELETE
  175. #define RIGHT_DS_LIST_CONTENTS ACTRL_DS_LIST
  176. #define RIGHT_DS_WRITE_PROPERTY_EXTENDED ACTRL_DS_SELF
  177. #define RIGHT_DS_READ_PROPERTY ACTRL_DS_READ_PROP
  178. #define RIGHT_DS_WRITE_PROPERTY ACTRL_DS_WRITE_PROP
  179. #define RIGHT_DS_DELETE_TREE ACTRL_DS_DELETE_TREE
  180. #define RIGHT_DS_LIST_OBJECT ACTRL_DS_LIST_OBJECT
  181. #ifndef ACTRL_DS_CONTROL_ACCESS
  182. #define ACTRL_DS_CONTROL_ACCESS ACTRL_PERM_9
  183. #endif
  184. #define RIGHT_DS_CONTROL_ACCESS ACTRL_DS_CONTROL_ACCESS
  185. //
  186. // Define the generic rights
  187. //
  189. // generic read
  190. #define GENERIC_READ_MAPPING ((STANDARD_RIGHTS_READ) | \
  191. (RIGHT_DS_LIST_CONTENTS) | \
  192. (RIGHT_DS_READ_PROPERTY) | \
  193. (RIGHT_DS_LIST_OBJECT))
  195. // generic execute
  196. #define GENERIC_EXECUTE_MAPPING ((STANDARD_RIGHTS_EXECUTE) | \
  197. (RIGHT_DS_LIST_CONTENTS))
  198. // generic right
  199. #define GENERIC_WRITE_MAPPING ((STANDARD_RIGHTS_WRITE) | \
  200. (RIGHT_DS_WRITE_PROPERTY_EXTENDED) | \
  201. (RIGHT_DS_WRITE_PROPERTY))
  202. // generic all
  204. #define GENERIC_ALL_MAPPING ((STANDARD_RIGHTS_REQUIRED) | \
  205. (RIGHT_DS_CREATE_CHILD) | \
  206. (RIGHT_DS_DELETE_CHILD) | \
  207. (RIGHT_DS_DELETE_TREE) | \
  208. (RIGHT_DS_READ_PROPERTY) | \
  209. (RIGHT_DS_WRITE_PROPERTY) | \
  210. (RIGHT_DS_LIST_CONTENTS) | \
  211. (RIGHT_DS_LIST_OBJECT) | \
  212. (RIGHT_DS_CONTROL_ACCESS) | \
  213. (RIGHT_DS_WRITE_PROPERTY_EXTENDED))
  215. //
  216. // Standard DS generic access rights mapping
  217. //
  219. #define DS_GENERIC_MAPPING {GENERIC_READ_MAPPING, \
  220. GENERIC_WRITE_MAPPING, \
  221. GENERIC_EXECUTE_MAPPING, \
  222. GENERIC_ALL_MAPPING}
  226. #endif