Powershell-Modules
/
NTFSSecurity-Module
mirror of https://github.com/raandree/NTFSSecurity
1
0
Fork 0
Code Issues 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
3 Branches
30 MiB
 
 
Tree: 34a13efb74
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '34a13efb74'
${ noResults }
NTFSSecurity-Module/NTFSSecurity/InheritanceCmdlets/DisableAccessInheritance.cs

128 lines
4.2 KiB
Raw Blame History 

  1. using Alphaleonis.Win32.Filesystem;

  2. using Security2;

  3. using System;

  4. using System.Management.Automation;

  5. 

  6. namespace NTFSSecurity

  7. {

  8.     [Cmdlet(VerbsLifecycle.Disable, "NTFSAccessInheritance", DefaultParameterSetName = "Path")]

  9.     public class DisableAccessInheritance : BaseCmdletWithPrivControl

  10.     {

  11.         private bool removeInheritedAccessRules;

  12.         private bool passThru;

  13. 

  14.         [Parameter(Position = 1, ValueFromPipeline = true, ValueFromPipelineByPropertyName = true, ParameterSetName = "Path")]

  15.         [ValidateNotNullOrEmpty]

  16.         [Alias("FullName")]

  17.         public string[] Path

  18.         {

  19.             get { return paths.ToArray(); }

  20.             set

  21.             {

  22.                 paths.Clear();

  23.                 paths.AddRange(value);

  24.             }

  25.         }

  26. 

  27.         [Parameter(Mandatory = true, Position = 1, ValueFromPipeline = true, ValueFromPipelineByPropertyName = true, ParameterSetName = "SecurityDescriptor")]

  28.         [ValidateNotNullOrEmpty]

  29.         public FileSystemSecurity2[] SecurityDescriptor

  30.         {

  31.             get { return securityDescriptors.ToArray(); }

  32.             set

  33.             {

  34.                 securityDescriptors.Clear();

  35.                 securityDescriptors.AddRange(value);

  36.             }

  37.         }

  38. 

  39.         [Parameter]

  40.         public SwitchParameter RemoveInheritedAccessRules

  41.         {

  42.             get { return removeInheritedAccessRules; }

  43.             set { removeInheritedAccessRules = value; }

  44.         }

  45. 

  46.         [Parameter]

  47.         public SwitchParameter PassThru

  48.         {

  49.             get { return passThru; }

  50.             set { passThru = value; }

  51.         }

  52. 

  53.         protected override void BeginProcessing()

  54.         {

  55.             base.BeginProcessing();

  56.             EnableFileSystemPrivileges(true);

  57.         }

  58. 

  59.         protected override void ProcessRecord()

  60.         {

  61.             if (ParameterSetName == "Path")

  62.             {

  63.                 foreach (var path in paths)

  64.                 {

  65.                     FileSystemInfo item = null;

  66. 

  67.                     try

  68.                     {

  69.                         item = GetFileSystemInfo2(path);

  70.                     }

  71.                     catch (Exception ex)

  72.                     {

  73.                         WriteError(new ErrorRecord(ex, "ReadFileError", ErrorCategory.OpenError, path));

  74.                         continue;

  75.                     }

  76. 

  77.                     try

  78.                     {

  79.                         FileSystemInheritanceInfo.DisableAccessInheritance(item, removeInheritedAccessRules);

  80.                     }

  81.                     catch (UnauthorizedAccessException)

  82.                     {

  83.                         try

  84.                         {

  85.                             var ownerInfo = FileSystemOwner.GetOwner(item);

  86.                             var previousOwner = ownerInfo.Owner;

  87. 

  88.                             FileSystemOwner.SetOwner(item, System.Security.Principal.WindowsIdentity.GetCurrent().User);

  89. 

  90.                             FileSystemInheritanceInfo.DisableAccessInheritance(item, removeInheritedAccessRules);

  91. 

  92.                             FileSystemOwner.SetOwner(item, previousOwner);

  93.                         }

  94.                         catch (Exception ex2)

  95.                         {

  96.                             WriteError(new ErrorRecord(ex2, "ModifySdError", ErrorCategory.WriteError, path));

  97.                             continue;

  98.                         }

  99.                     }

  100.                     catch (Exception ex)

  101.                     {

  102.                         WriteError(new ErrorRecord(ex, "ModifySdError", ErrorCategory.WriteError, path));

  103.                         continue;

  104.                     }

  105.                     finally

  106.                     {

  107.                         if (passThru)

  108.                         {

  109.                             FileSystemInheritanceInfo.GetFileSystemInheritanceInfo(item);

  110.                         }

  111.                     }

  112.                 }

  113.             }

  114.             else

  115.             {

  116.                 foreach (var sd in securityDescriptors)

  117.                 {

  118.                     FileSystemInheritanceInfo.DisableAccessInheritance(sd, removeInheritedAccessRules);

  119. 

  120.                     if (passThru)

  121.                     {

  122.                         FileSystemInheritanceInfo.GetFileSystemInheritanceInfo(sd);

  123.                     }

  124.                 }

  125.             }

  126.         }

  127.     }

  128. }