archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
3.8 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/shell/ext/ratings/mslocusr/msludb.cpp

642 lines
17 KiB
Raw Normal View History

Add source files
4 years ago
  1. #include "mslocusr.h"
  2. #include "msluglob.h"
  3. #include "profiles.h"
  5. #include <regentry.h>
  7. #include <ole2.h>
  9. CLUDatabase::CLUDatabase(void)
  10. : m_cRef(0),
  11. m_CurrentUser(NULL)
  12. {
  13. RefThisDLL(TRUE);
  14. }
  17. CLUDatabase::~CLUDatabase(void)
  18. {
  19. if (m_CurrentUser != NULL) {
  20. m_CurrentUser->Release();
  21. m_CurrentUser = NULL;
  22. }
  23. RefThisDLL(FALSE);
  24. }
  27. STDMETHODIMP CLUDatabase::QueryInterface(REFIID riid, LPVOID * ppvObj)
  28. {
  29. if (!IsEqualIID(riid, IID_IUnknown) &&
  30. !IsEqualIID(riid, IID_IUserDatabase)) {
  31. *ppvObj = NULL;
  32. return ResultFromScode(E_NOINTERFACE);
  33. }
  35. *ppvObj = this;
  36. AddRef();
  37. return NOERROR;
  38. }
  41. STDMETHODIMP_(ULONG) CLUDatabase::AddRef(void)
  42. {
  43. return ++m_cRef;
  44. }
  47. STDMETHODIMP_(ULONG) CLUDatabase::Release(void)
  48. {
  49. ULONG cRef;
  51. cRef = --m_cRef;
  53. if (0L == m_cRef) {
  54. delete this;
  55. }
  56. /* Handle circular refcount because of cached current user object. */
  57. else if (1L == m_cRef && m_CurrentUser != NULL) {
  58. IUser *pCurrentUser = m_CurrentUser;
  59. m_CurrentUser = NULL;
  60. pCurrentUser->Release();
  61. }
  63. return cRef;
  64. }
  67. STDMETHODIMP CLUDatabase::Install(LPCSTR pszSupervisorName,
  68. LPCSTR pszSupervisorPassword,
  69. LPCSTR pszRatingsPassword,
  70. IUserProfileInit *pInit)
  71. {
  72. /* If the system already has a supervisor password, make sure the caller's
  73. * password matches. If there isn't already a password, the caller's
  74. * (account) password is it. We use the account password because the
  75. * caller (the setup program) probably didn't pass us a ratings password
  76. * in that case -- he also checks to see if there's an old ratings
  77. * password and knows to prompt for one only if it's already there.
  78. */
  79. HRESULT hres = ::VerifySupervisorPassword(pszRatingsPassword);
  81. if (FAILED(hres)) {
  82. if (pszRatingsPassword == NULL)
  83. pszRatingsPassword = pszSupervisorPassword;
  84. ::ChangeSupervisorPassword(::szNULL, pszRatingsPassword);
  85. }
  86. else if (hres == S_FALSE)
  87. return E_ACCESSDENIED;
  90. /* User profiles and password caching have to be enabled for us to work.
  91. * We also have to be able to open or create the supervisor's PWL using
  92. * the given password. Thus we validate the password at the same time.
  93. */
  95. {
  96. RegEntry re(::szLogonKey, HKEY_LOCAL_MACHINE);
  97. if (re.GetError() != ERROR_SUCCESS)
  98. return HRESULT_FROM_WIN32(re.GetError());
  99. if (!re.GetNumber(::szUserProfiles))
  100. re.SetValue(::szUserProfiles, 1);
  101. if (re.GetError() != ERROR_SUCCESS)
  102. return HRESULT_FROM_WIN32(re.GetError());
  103. }
  105. /* Make copies of the username and password for passing to the PWL APIs.
  106. * They need to be in OEM (PWL is accessible from DOS), and must be upper
  107. * case since the Windows logon dialog uppercases all PWL passwords.
  108. */
  109. NLS_STR nlsPWLName(pszSupervisorName);
  110. NLS_STR nlsPWLPassword(pszSupervisorPassword);
  111. if (nlsPWLName.QueryError() != ERROR_SUCCESS)
  112. return HRESULT_FROM_WIN32(nlsPWLName.QueryError());
  113. if (nlsPWLPassword.QueryError() != ERROR_SUCCESS)
  114. return HRESULT_FROM_WIN32(nlsPWLPassword.QueryError());
  115. nlsPWLName.strupr();
  116. nlsPWLName.ToOEM();
  117. nlsPWLPassword.strupr();
  118. nlsPWLPassword.ToOEM();
  120. HPWL hPWL = NULL;
  121. APIERR err = ::OpenPasswordCache(&hPWL, nlsPWLName.QueryPch(),
  122. nlsPWLPassword.QueryPch(), TRUE);
  124. if (err != ERROR_SUCCESS) {
  125. if (err != IERR_IncorrectUsername)
  126. err = ::CreatePasswordCache(&hPWL, nlsPWLName.QueryPch(), nlsPWLPassword.QueryPch());
  127. if (err != ERROR_SUCCESS)
  128. return HRESULT_FROM_WIN32(err);
  129. }
  132. /* Now that the system has a supervisor password, call a worker function
  133. * to clone the supervisor account from the default profile. The worker
  134. * function assumes that the caller has validated that the current user is
  135. * a supervisor.
  136. */
  138. err = ::MakeSupervisor(hPWL, pszRatingsPassword);
  139. ::ClosePasswordCache(hPWL, TRUE);
  140. if (err != ERROR_SUCCESS)
  141. return HRESULT_FROM_WIN32(err);
  143. IUser *pSupervisor = NULL;
  144. hres = GetUser(pszSupervisorName, &pSupervisor);
  145. if (FAILED(hres)) {
  146. hres = CreateUser(pszSupervisorName, NULL, TRUE, pInit);
  147. if (pSupervisor != NULL) {
  148. pSupervisor->Release();
  149. pSupervisor = NULL;
  150. }
  151. if (SUCCEEDED(hres))
  152. hres = GetUser(pszSupervisorName, &pSupervisor); /* reinitialize with created profile */
  153. }
  155. if (pSupervisor != NULL) {
  156. if (SUCCEEDED(hres))
  157. hres = pSupervisor->Authenticate(pszSupervisorPassword);
  158. if (SUCCEEDED(hres))
  159. hres = SetCurrentUser(pSupervisor);
  160. if (SUCCEEDED(hres))
  161. pSupervisor->SetSupervisorPrivilege(TRUE, pszRatingsPassword); /* set appears-supervisor flag */
  163. pSupervisor->Release();
  164. pSupervisor = NULL;
  165. }
  167. return hres;
  168. }
  171. /* Some install stubs are "clone-user" install stubs, that get re-run if a
  172. * profile is cloned to become a new user's profile. For example, if you
  173. * clone Fred to make Barney, Outlook Express doesn't want Barney to inherit
  174. * Fred's mailbox.
  175. *
  176. * When you run the go-multiuser wizard, we assume that the first user being
  177. * created is the one who's been using the machine all along, so that one
  178. * copy should be exempt from this. So we go through all the install stub
  179. * keys for the newly created profile and, for any that are marked with a
  180. * username (even a blank one indicates that it's a clone-user install stub),
  181. * we mark it with the new username so it won't get re-run.
  182. */
  183. void FixInstallStubs(LPCSTR pszName, HKEY hkeyProfile)
  184. {
  185. HKEY hkeyList;
  186. LONG err = RegOpenKeyEx(hkeyProfile, "Software\\Microsoft\\Active Setup\\Installed Components", 0,
  187. KEY_ENUMERATE_SUB_KEYS | KEY_QUERY_VALUE, &hkeyList);
  189. if (err == ERROR_SUCCESS) {
  190. DWORD cbKeyName, iKey;
  191. TCHAR szKeyName[80];
  193. /* Enumerate components that are installed for the profile. */
  194. for (iKey = 0; ; iKey++)
  195. {
  196. LONG lEnum;
  198. cbKeyName = ARRAYSIZE(szKeyName);
  200. if ((lEnum = RegEnumKey(hkeyList, iKey, szKeyName, cbKeyName)) == ERROR_MORE_DATA)
  201. {
  202. // ERROR_MORE_DATA means the value name or data was too large
  203. // skip to the next item
  204. continue;
  205. }
  206. else if( lEnum != ERROR_SUCCESS )
  207. {
  208. // could be ERROR_NO_MORE_ENTRIES, or some kind of failure
  209. // we can't recover from any other registry problem, anyway
  210. break;
  211. }
  213. HKEY hkeyComponent;
  214. if (RegOpenKeyEx(hkeyList, szKeyName, 0,
  215. KEY_QUERY_VALUE | KEY_SET_VALUE, &hkeyComponent) == ERROR_SUCCESS) {
  216. cbKeyName = sizeof(szKeyName);
  217. err = RegQueryValueEx(hkeyComponent, "Username", NULL, NULL,
  218. (LPBYTE)szKeyName, &cbKeyName);
  219. if (err == ERROR_SUCCESS || err == ERROR_MORE_DATA) {
  220. RegSetValueEx(hkeyComponent, "Username",
  221. 0, REG_SZ,
  222. (LPBYTE)pszName,
  223. lstrlen(pszName)+1);
  224. }
  225. RegCloseKey(hkeyComponent);
  226. }
  227. }
  228. RegCloseKey(hkeyList);
  229. }
  230. }
  233. STDMETHODIMP CLUDatabase::CreateUser(LPCSTR pszName, IUser *pCloneFrom,
  234. BOOL fFixInstallStubs, IUserProfileInit *pInit)
  235. {
  236. if (::strlenf(pszName) > cchMaxUsername)
  237. return HRESULT_FROM_WIN32(ERROR_BUFFER_OVERFLOW);
  239. RegEntry reRoot(::szProfileList, HKEY_LOCAL_MACHINE);
  240. if (reRoot.GetError() != ERROR_SUCCESS)
  241. return HRESULT_FROM_WIN32(reRoot.GetError());
  243. /* See if the user's subkey exists. If it doesn't, create it. */
  244. reRoot.MoveToSubKey(pszName);
  245. if (reRoot.GetError() != ERROR_SUCCESS) {
  246. RegEntry reUser(pszName, reRoot.GetKey());
  247. if (reUser.GetError() != ERROR_SUCCESS)
  248. return HRESULT_FROM_WIN32(reUser.GetError());
  250. reRoot.MoveToSubKey(pszName);
  251. if (reRoot.GetError() != ERROR_SUCCESS)
  252. return HRESULT_FROM_WIN32(reRoot.GetError());
  253. }
  255. NLS_STR nlsProfilePath(MAX_PATH);
  256. if (nlsProfilePath.QueryError() != ERROR_SUCCESS)
  257. return E_OUTOFMEMORY;
  259. reRoot.GetValue(::szProfileImagePath, &nlsProfilePath);
  261. /* If the profile path is already recorded for the user, see if the
  262. * profile itself exists. If it does, then CreateUser is an error.
  263. */
  264. BOOL fComputePath = FALSE;
  266. if (reRoot.GetError() == ERROR_SUCCESS) {
  267. if (!DirExists(nlsProfilePath.QueryPch())) {
  268. if (!::CreateDirectory(nlsProfilePath.QueryPch(), NULL)) {
  269. fComputePath = TRUE;
  270. }
  271. }
  272. }
  273. else {
  274. fComputePath = TRUE;
  275. }
  277. if (fComputePath) {
  278. ComputeLocalProfileName(pszName, &nlsProfilePath);
  279. reRoot.SetValue(::szProfileImagePath, nlsProfilePath.QueryPch());
  280. }
  282. AddBackslash(nlsProfilePath);
  283. nlsProfilePath.strcat(::szStdNormalProfile);
  284. if (FileExists(nlsProfilePath.QueryPch()))
  285. return HRESULT_FROM_WIN32(ERROR_USER_EXISTS);
  287. /* The user's profile directory now exists, and its path is recorded
  288. * in the registry. nlsProfilePath is now the full pathname for the
  289. * user's profile file, which does not exist yet.
  290. */
  292. NLS_STR nlsOtherProfilePath(MAX_PATH);
  293. if (nlsOtherProfilePath.QueryError() != ERROR_SUCCESS)
  294. return HRESULT_FROM_WIN32(nlsOtherProfilePath.QueryError());
  296. HRESULT hres;
  297. DWORD cbPath = nlsOtherProfilePath.QueryAllocSize();
  298. if (pCloneFrom == NULL ||
  299. FAILED(pCloneFrom->GetProfileDirectory(nlsOtherProfilePath.Party(), &cbPath)))
  300. {
  301. /* Cloning default profile. */
  303. hres = GiveUserDefaultProfile(nlsProfilePath.QueryPch());
  304. nlsOtherProfilePath.DonePartying();
  305. nlsOtherProfilePath = "";
  306. }
  307. else {
  308. /* Cloning other user's profile. */
  309. nlsOtherProfilePath.DonePartying();
  310. AddBackslash(nlsOtherProfilePath);
  311. nlsOtherProfilePath.strcat(::szStdNormalProfile);
  312. hres = CopyProfile(nlsOtherProfilePath.QueryPch(), nlsProfilePath.QueryPch());
  313. }
  315. if (FAILED(hres))
  316. return hres;
  318. /* Now the user has a profile. Load it and perform directory
  319. * reconciliation.
  320. */
  322. LONG err = ::MyRegLoadKey(HKEY_USERS, pszName, nlsProfilePath.QueryPch());
  323. if (err == ERROR_SUCCESS) {
  324. HKEY hkeyNewProfile;
  325. err = ::RegOpenKey(HKEY_USERS, pszName, &hkeyNewProfile);
  326. if (err == ERROR_SUCCESS) {
  328. /* Build just the profile directory, no "user.dat" on the end. */
  329. ISTR istrBackslash(nlsProfilePath);
  330. if (nlsProfilePath.strrchr(&istrBackslash, '\\')) {
  331. ++istrBackslash;
  332. nlsProfilePath.DelSubStr(istrBackslash);
  333. }
  335. if (pInit != NULL) {
  336. hres = pInit->PreInitProfile(hkeyNewProfile, nlsProfilePath.QueryPch());
  337. if (hres == E_NOTIMPL)
  338. hres = S_OK;
  339. }
  340. else
  341. hres = S_OK;
  343. if (SUCCEEDED(hres)) {
  344. err = ReconcileFiles(hkeyNewProfile, nlsProfilePath, nlsOtherProfilePath); /* modifies nlsProfilePath */
  345. hres = HRESULT_FROM_WIN32(err);
  347. if (fFixInstallStubs) {
  348. ::FixInstallStubs(pszName, hkeyNewProfile);
  349. }
  351. if (pInit != NULL) {
  352. hres = pInit->PostInitProfile(hkeyNewProfile, nlsProfilePath.QueryPch());
  353. if (hres == E_NOTIMPL)
  354. hres = S_OK;
  355. }
  356. }
  357. ::RegFlushKey(hkeyNewProfile);
  358. ::RegCloseKey(hkeyNewProfile);
  359. }
  360. ::RegUnLoadKey(HKEY_USERS, pszName);
  361. }
  363. return hres;
  364. }
  367. STDMETHODIMP CLUDatabase::AddUser(LPCSTR pszName, IUser *pSourceUser,
  368. IUserProfileInit *pInit, IUser **ppOut)
  369. {
  370. if (ppOut != NULL)
  371. *ppOut = NULL;
  373. if (IsCurrentUserSupervisor(this) != S_OK)
  374. return E_ACCESSDENIED;
  376. HRESULT hres = CreateUser(pszName, pSourceUser, FALSE, pInit);
  377. if (FAILED(hres))
  378. return hres;
  380. if (ppOut != NULL)
  381. hres = GetUser(pszName, ppOut);
  383. return hres;
  384. }
  387. STDMETHODIMP CLUDatabase::GetUser(LPCSTR pszName, IUser **ppOut)
  388. {
  389. *ppOut = NULL;
  391. CLUUser *pUser = new CLUUser(this);
  393. if (pUser == NULL) {
  394. return ResultFromScode(E_OUTOFMEMORY);
  395. }
  397. HRESULT err = pUser->Init(pszName);
  398. if (SUCCEEDED(err) && !pUser->Exists()) {
  399. err = HRESULT_FROM_WIN32(ERROR_NO_SUCH_USER);
  400. }
  402. if (FAILED(err) || !pUser->Exists()) {
  403. pUser->Release();
  404. return err;
  405. }
  407. *ppOut = pUser;
  409. return NOERROR;
  410. }
  413. STDMETHODIMP CLUDatabase::GetSpecialUser(DWORD nSpecialUserCode, IUser **ppOut)
  414. {
  415. switch (nSpecialUserCode) {
  416. case GSU_CURRENT:
  417. return GetCurrentUser(ppOut);
  418. break;
  420. case GSU_DEFAULT:
  421. return GetUser(szDefaultUserName, ppOut);
  422. break;
  424. default:
  425. return ResultFromScode(E_INVALIDARG);
  426. };
  428. return NOERROR;
  429. }
  432. HRESULT GetSystemCurrentUser(NLS_STR *pnlsCurrentUser)
  433. {
  434. DWORD cbBuffer = pnlsCurrentUser->QueryAllocSize();
  435. UINT err;
  436. if (!::GetUserName(pnlsCurrentUser->Party(), &cbBuffer))
  437. err = ::GetLastError();
  438. else
  439. err = NOERROR;
  440. pnlsCurrentUser->DonePartying();
  442. return HRESULT_FROM_WIN32(err);
  443. }
  446. STDMETHODIMP CLUDatabase::GetCurrentUser(IUser **ppOut)
  447. {
  448. if (m_CurrentUser == NULL) {
  449. NLS_STR nlsCurrentUser(cchMaxUsername+1);
  450. UINT err = nlsCurrentUser.QueryError();
  451. if (err)
  452. return HRESULT_FROM_WIN32(err);
  454. HRESULT hres = GetSystemCurrentUser(&nlsCurrentUser);
  455. if (FAILED(hres))
  456. return hres;
  458. hres = GetUser(nlsCurrentUser.QueryPch(), (IUser **)&m_CurrentUser);
  459. if (FAILED(hres))
  460. return hres;
  461. }
  463. *ppOut = m_CurrentUser;
  464. m_CurrentUser->AddRef();
  466. return NOERROR;
  467. }
  470. STDMETHODIMP CLUDatabase::SetCurrentUser(IUser *pUser)
  471. {
  472. CLUUser *pCLUUser = (CLUUser *)pUser;
  473. HPWL hpwlUser;
  474. if (!pCLUUser->m_fAuthenticated ||
  475. FAILED(pCLUUser->GetPasswordCache(pCLUUser->m_nlsPassword.QueryPch(), &hpwlUser)))
  476. {
  477. return HRESULT_FROM_WIN32(ERROR_NOT_AUTHENTICATED);
  478. }
  479. ::ClosePasswordCache(hpwlUser, TRUE);
  481. CLUUser *pClone;
  483. HRESULT hres = GetUser(pCLUUser->m_nlsUsername.QueryPch(), (IUser **)&pClone);
  484. if (FAILED(hres))
  485. return hres;
  487. /* Make sure the clone object is authenticated properly. */
  488. hres = pClone->Authenticate(pCLUUser->m_nlsPassword.QueryPch());
  489. if (FAILED(hres)) {
  490. return HRESULT_FROM_WIN32(ERROR_NOT_AUTHENTICATED);
  491. }
  493. if (m_CurrentUser != NULL) {
  494. m_CurrentUser->Release();
  495. }
  497. m_CurrentUser = pClone;
  498. return NOERROR;
  499. }
  502. STDMETHODIMP CLUDatabase::DeleteUser(LPCSTR pszName)
  503. {
  504. NLS_STR nlsName(MAX_PATH);
  505. if (nlsName.QueryError() != ERROR_SUCCESS)
  506. return HRESULT_FROM_WIN32(nlsName.QueryError());
  508. /* Check supervisor privilege up front, this'll handle the not-logged-on
  509. * case later if we re-enable supervisor stuff.
  510. */
  511. if (IsCurrentUserSupervisor(this) != S_OK)
  512. return E_ACCESSDENIED;
  514. IUser *pCurrentUser;
  516. HRESULT hres = GetCurrentUser(&pCurrentUser);
  517. if (SUCCEEDED(hres)) {
  519. /* Check current user's name and make sure we're not deleting him.
  520. * Note that because the current user must be an authenticated supervisor,
  521. * and you can't delete the current user, you can never delete the last
  522. * supervisor using this function.
  523. */
  524. DWORD cb = nlsName.QueryAllocSize();
  525. hres = pCurrentUser->GetName(nlsName.Party(), &cb);
  526. nlsName.DonePartying();
  527. if (SUCCEEDED(hres) && !::stricmpf(pszName, nlsName.QueryPch()))
  528. hres = HRESULT_FROM_WIN32(ERROR_BUSY);
  530. if (FAILED(hres))
  531. return hres;
  532. }
  534. /* Check system's idea of current user as well. */
  536. hres = GetSystemCurrentUser(&nlsName);
  537. if (SUCCEEDED(hres)) {
  538. if (!::stricmpf(pszName, nlsName.QueryPch()))
  539. return HRESULT_FROM_WIN32(ERROR_BUSY);
  540. }
  542. return DeleteProfile(pszName);
  543. }
  546. STDMETHODIMP CLUDatabase::RenameUser(LPCSTR pszOldName, LPCSTR pszNewName)
  547. {
  548. return ResultFromScode(E_NOTIMPL);
  549. }
  552. STDMETHODIMP CLUDatabase::EnumUsers(IEnumUnknown **ppOut)
  553. {
  554. *ppOut = NULL;
  556. CLUEnum *pEnum = new CLUEnum(this);
  558. if (pEnum == NULL) {
  559. return ResultFromScode(E_OUTOFMEMORY);
  560. }
  562. HRESULT err = pEnum->Init();
  563. if (FAILED(err)) {
  564. pEnum->Release();
  565. return err;
  566. }
  568. *ppOut = pEnum;
  570. return NOERROR;
  571. }
  575. STDMETHODIMP CLUDatabase::Authenticate(HWND hwndOwner, DWORD dwFlags,
  576. LPCSTR pszName, LPCSTR pszPassword,
  577. IUser **ppOut)
  578. {
  579. if (dwFlags & LUA_DIALOG) {
  580. if (!UseUserProfiles() || FAILED(VerifySupervisorPassword(szNULL))) {
  581. return InstallWizard(hwndOwner);
  582. }
  583. return ::DoUserDialog(hwndOwner, dwFlags, ppOut);
  584. }
  586. /* Null out return pointer for error cases. */
  587. if (ppOut != NULL)
  588. *ppOut = NULL;
  590. IUser *pUser;
  591. BOOL fReleaseMe = TRUE;
  593. HRESULT hres = GetUser(pszName, &pUser);
  594. if (SUCCEEDED(hres)) {
  595. hres = pUser->Authenticate(pszPassword);
  596. if (SUCCEEDED(hres)) {
  597. if ((dwFlags & LUA_SUPERVISORONLY) && (pUser->IsSupervisor() != S_OK)) {
  598. hres = E_ACCESSDENIED;
  599. }
  600. else if (ppOut != NULL) {
  601. *ppOut = pUser;
  602. fReleaseMe = FALSE;
  603. }
  604. }
  605. if (fReleaseMe)
  606. pUser->Release();
  607. }
  608. return hres;
  609. }
  612. STDMETHODIMP CLUDatabase::InstallComponent(REFCLSID clsidComponent,
  613. LPCSTR pszName, DWORD dwFlags)
  614. {
  615. return ResultFromScode(E_NOTIMPL);
  616. }
  619. STDMETHODIMP CLUDatabase::RemoveComponent(REFCLSID clsidComponent, LPCSTR pszName)
  620. {
  621. return ResultFromScode(E_NOTIMPL);
  622. }
  625. #ifdef MSLOCUSR_USE_SUPERVISOR_PASSWORD
  627. HRESULT IsCurrentUserSupervisor(IUserDatabase *pDB)
  628. {
  629. IUser *pCurrentUser = NULL;
  631. HRESULT hres = pDB->GetCurrentUser(&pCurrentUser);
  632. if (SUCCEEDED(hres)) {
  633. hres = pCurrentUser->IsSupervisor();
  634. }
  635. if (pCurrentUser != NULL) {
  636. pCurrentUser->Release();
  637. }
  638. return hres;
  639. }
  640. #else
  641. HRESULT IsCurrentUserSupervisor(IUserDatabase *pDB) { return S_OK; }
  642. #endif