Powershell-Modules
/
NTFSSecurity-Module
mirror of https://github.com/raandree/NTFSSecurity
1
0
Fork 0
Code Issues 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
98 Commits
3 Branches
7.1 MiB
 
 
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
NTFSSecurity-Module/NTFSSecurity/OtherCmdlets.cs

138 lines
4.5 KiB
Raw Permalink Blame History 

  1. using System.Management.Automation;

  2. using Security2;

  3. using System.IO;

  4. using System.Linq;

  5. using System;

  6. using System.Security.AccessControl;

  7. 

  8. namespace NTFSSecurity

  9. {

  10.     #region Enable-Privileges

  11.     [Cmdlet(VerbsLifecycle.Enable, "Privileges")]

  12.     [OutputType(typeof(ProcessPrivileges.PrivilegeAndAttributes))]

  13.     public class EnablePrivileges : BaseCmdletWithPrivControl

  14.     {

  15.         private bool enablePrivileges = false;

  16.         private SwitchParameter passThru;

  17.         public string[] Path { get; set; }

  18. 

  19.         [Parameter]

  20.         public SwitchParameter PassThru

  21.         {

  22.             get { return passThru; }

  23.             set { passThru = value; }

  24.         }

  25. 

  26.         protected override void BeginProcessing()

  27.         {

  28.             base.BeginProcessing();

  29.         }

  30. 

  31.         protected override void ProcessRecord()

  32.         {

  33.             var privateData = (System.Collections.Hashtable)this.MyInvocation.MyCommand.Module.PrivateData;

  34.             var psCallStack = (CallStackFrame)this.InvokeCommand.InvokeScript("Get-PSCallStack")[1].BaseObject;

  35. 

  36.             try

  37.             {

  38.                 enablePrivileges = (bool)privateData["EnablePrivileges"];

  39.             }

  40.             catch (Exception ex)

  41.             {

  42.                 throw new ParseException("Could not parse the module's PrivateData field in the module's psd1 file. Please refer to the documentation for further details", ex);

  43.             }

  44. 

  45.             //if the command is called from NTFSSecurity.Init.ps1 and EnablePrivileges is set to true in the NTFSSecurity.psd1 or if the cmdlet is called from somewhere else

  46.             if ((psCallStack.InvocationInfo.MyCommand.Name == "NTFSSecurity.Init.ps1" && enablePrivileges == true))

  47.             {

  48.                 this.EnableFileSystemPrivileges(false);

  49.             }

  50.             else if (psCallStack.InvocationInfo.MyCommand.Name != "NTFSSecurity.Init.ps1")

  51.             {

  52.                 this.EnableFileSystemPrivileges(false);

  53.             }

  54. 

  55.             if (passThru)

  56.             {

  57.                 this.WriteObject(this.privControl.GetPrivileges());

  58.             }

  59.         }

  60. 

  61.         protected override void EndProcessing()

  62.         {

  63.             //nothing as we want to keep the privileges enabled  

  64.         }

  65.     }

  66.     #endregion Enable-Privileges

  67. 

  68.     #region Disable-Privileges

  69.     [Cmdlet(VerbsLifecycle.Disable, "Privileges")]

  70.     [OutputType(typeof(ProcessPrivileges.PrivilegeAndAttributes))]

  71.     public class DisablePrivileges : BaseCmdletWithPrivControl

  72.     {

  73.         private SwitchParameter passThru;

  74.         public string[] Path { get; set; }

  75. 

  76.         [Parameter]

  77.         public SwitchParameter PassThru

  78.         {

  79.             get { return passThru; }

  80.             set { passThru = value; }

  81.         }

  82. 

  83.         protected override void BeginProcessing()

  84.         {

  85.             base.BeginProcessing();

  86.         }

  87. 

  88.         protected override void ProcessRecord()

  89.         {

  90.             if (this.privControl.GetPrivileges()

  91.                 .Where(p => p.PrivilegeState == ProcessPrivileges.PrivilegeState.Enabled)

  92.                 .Where(p => (

  93.                     p.Privilege == ProcessPrivileges.Privilege.TakeOwnership) |

  94.                     (p.Privilege == ProcessPrivileges.Privilege.Restore) |

  95.                     (p.Privilege == ProcessPrivileges.Privilege.Backup))

  96.                 .Count() == 0)

  97.             {

  98.                 this.WriteError(new ErrorRecord(new AdjustPriviledgeException("Privileges are not enabled"), "Disable Privilege Error", ErrorCategory.SecurityError, null));

  99.                 return;

  100.             }

  101. 

  102.             this.DisableFileSystemPrivileges();

  103.             this.WriteVerbose("The privileges 'TakeOwnership', 'Restore' and 'Backup' are now enabled.");

  104. 

  105.             if (passThru)

  106.             {

  107.                 this.WriteObject(this.privControl.GetPrivileges());

  108.             }

  109.         }

  110. 

  111.         protected override void EndProcessing()

  112.         {

  113.             //nothing as priviliges should already been cleaned up

  114.         }

  115.     }

  116.     #endregion Enable-Privileges

  117. 

  118.     #region Get-Privileges

  119.     [Cmdlet(VerbsCommon.Get, "Privileges")]

  120.     [OutputType(typeof(ProcessPrivileges.PrivilegeAndAttributes))]

  121.     public class GetPrivileges : BaseCmdlet

  122.     {

  123.         public string[] Path { get; set; }

  124. 

  125.         protected override void BeginProcessing()

  126.         {

  127.             base.BeginProcessing();

  128.         }

  129. 

  130.         protected override void ProcessRecord()

  131.         {

  132.             var privControl = new PrivilegeControl();

  133. 

  134.             this.WriteObject(privControl.GetPrivileges(), true);

  135.         }

  136.     }

  137.     #endregion Get-Privileges

  138. }