Powershell-Modules
/
NTFSSecurity-Module
의 미러 https://github.com/raandree/NTFSSecurity
1
0
포크 0
코드 이슈 0 릴리즈 3 위키 활동
25개 이상의 토픽을 선택하실 수 없습니다. Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
99 커밋
3 브랜치
8.7 MiB
 
 
트리: 84fd251fa4
브랜치 태그
${ item.name }
${ searchTerm } 브랜치 생성
from '84fd251fa4'
${ noResults }
NTFSSecurity-Module/Security2/FileSystem/FileSystemSecurity2.cs

328 lines
14 KiB
Raw Blame 히스토리 

  1. using Alphaleonis.Win32.Filesystem;

  2. using System;

  3. using System.Linq;

  4. using System.Security.AccessControl;

  5. 

  6. namespace Security2

  7. {

  8.     public class FileSystemSecurity2

  9.     {

  10.         protected FileSecurity fileSecurityDescriptor;

  11.         protected DirectorySecurity directorySecurityDescriptor;

  12.         protected FileSystemInfo item;

  13.         protected FileSystemSecurity sd;

  14.         protected AccessControlSections sections;

  15.         protected bool isFile = false;

  16. 

  17.         public FileSystemInfo Item

  18.         {

  19.             get { return item; }

  20.             set { item = value; }

  21.         }

  22. 

  23.         public string FullName { get { return item.FullName; } }

  24. 

  25.         public string Name { get { return item.Name; } }

  26. 

  27.         public bool IsFile { get { return isFile; } }

  28. 

  29.         public FileSystemSecurity2(FileSystemInfo item, AccessControlSections sections)

  30.         {

  31.             this.sections = sections;

  32. 

  33.             if (item is FileInfo)

  34.             {

  35.                 this.item = (FileInfo)item;

  36. 

  37.                 sd = ((FileInfo)this.item).GetAccessControl(sections);

  38. 

  39.                 isFile = true;

  40.             }

  41.             else

  42.             {

  43.                 this.item = (DirectoryInfo)item;

  44. 

  45.                 sd = ((DirectoryInfo)this.item).GetAccessControl(sections);

  46.             }

  47.         }

  48. 

  49.         public FileSystemSecurity2(FileSystemInfo item)

  50.         {

  51.             if (item is FileInfo)

  52.             {

  53.                 this.item = (FileInfo)item;

  54.                 try

  55.                 {

  56.                     sd = ((FileInfo)this.item).GetAccessControl(AccessControlSections.All);

  57.                 }

  58.                 catch

  59.                 {

  60.                     try

  61.                     {

  62.                         sd = ((FileInfo)this.item).GetAccessControl(AccessControlSections.Access | AccessControlSections.Owner | AccessControlSections.Group);

  63.                     }

  64.                     catch

  65.                     {

  66.                         sd = ((FileInfo)this.item).GetAccessControl(AccessControlSections.Access);

  67.                     }

  68.                 }

  69. 

  70.                 isFile = true;

  71.             }

  72.             else

  73.             {

  74.                 this.item = (DirectoryInfo)item;

  75.                 try

  76.                 {

  77.                     sd = ((DirectoryInfo)this.item).GetAccessControl(AccessControlSections.All);

  78.                 }

  79.                 catch

  80.                 {

  81.                     try

  82.                     {

  83.                         sd = ((DirectoryInfo)this.item).GetAccessControl(AccessControlSections.Access | AccessControlSections.Owner | AccessControlSections.Group);

  84.                     }

  85.                     catch

  86.                     {

  87.                         sd = ((DirectoryInfo)this.item).GetAccessControl(AccessControlSections.Access);

  88.                     }

  89.                 }

  90.             }

  91.         }

  92. 

  93.         public FileSystemSecurity SecurityDescriptor

  94.         {

  95.             get

  96.             {

  97.                 return sd;

  98.             }

  99.         }

  100. 

  101.         public void Write()

  102.         {

  103.             var values = Enum.GetValues(typeof(System.Security.AccessControl.AccessControlSections));

  104.             foreach (var value in values) //.Cast<string>().Where(v => v != "All" | v != "None"))

  105.             {

  106.                 try

  107.                 {

  108.                     if (isFile)

  109.                     {

  110.                         ((FileInfo)item).SetAccessControl((FileSecurity)sd, (AccessControlSections)value);

  111.                     }

  112.                     else

  113.                     {

  114.                         ((DirectoryInfo)item).SetAccessControl((DirectorySecurity)sd, (AccessControlSections)value);

  115.                     }

  116.                 }

  117.                 catch

  118.                 {

  119.                     //Console.WriteLine("Exception {0} - {1}", item.FullName, value);

  120.                 }

  121.             }

  122.             

  123.         }

  124. 

  125.         public void Write(FileSystemInfo item)

  126.         {

  127.             if (item is FileInfo)

  128.             {

  129.                 ((FileInfo)item).SetAccessControl((FileSecurity)sd);

  130.             }

  131.             else

  132.             {

  133.                 ((DirectoryInfo)item).SetAccessControl((DirectorySecurity)sd);

  134.             }

  135.         }

  136. 

  137.         public void Write(string path)

  138.         {

  139.             FileSystemInfo item = null;

  140. 

  141.             if (File.Exists(path))

  142.             {

  143.                 item = new FileInfo(path);

  144.             }

  145.             else if (Directory.Exists(path))

  146.             {

  147.                 item = new DirectoryInfo(path);

  148.             }

  149.             else

  150.             {

  151.                 throw new System.IO.FileNotFoundException("File not found", path);

  152.             }

  153. 

  154.             Write(item);

  155.         }

  156. 

  157.         #region Conversion

  158.         public static implicit operator FileSecurity(FileSystemSecurity2 fs2)

  159.         {

  160.             return fs2.fileSecurityDescriptor;

  161.         }

  162.         public static implicit operator FileSystemSecurity2(FileSecurity fs)

  163.         {

  164.             return new FileSystemSecurity2(new FileInfo(""));

  165.         }

  166. 

  167.         public static implicit operator DirectorySecurity(FileSystemSecurity2 fs2)

  168.         {

  169.             return fs2.directorySecurityDescriptor;

  170.         }

  171.         public static implicit operator FileSystemSecurity2(DirectorySecurity fs)

  172.         {

  173.             return new FileSystemSecurity2(new DirectoryInfo(""));

  174.         }

  175. 

  176.         //REQUIRED BECAUSE OF CONVERSION OPERATORS

  177.         public override bool Equals(object obj)

  178.         {

  179.             return this.fileSecurityDescriptor == (FileSecurity)obj;

  180.         }

  181.         public override int GetHashCode()

  182.         {

  183.             return fileSecurityDescriptor.GetHashCode();

  184.         }

  185.         #endregion

  186. 

  187.         public static void ConvertToFileSystemFlags(ApplyTo ApplyTo, out InheritanceFlags inheritanceFlags, out PropagationFlags propagationFlags)

  188.         {

  189.             inheritanceFlags = InheritanceFlags.None;

  190.             propagationFlags = PropagationFlags.None;

  191. 

  192.             switch (ApplyTo)

  193.             {

  194.                 case ApplyTo.FilesOnly:

  195.                     inheritanceFlags = InheritanceFlags.ObjectInherit;

  196.                     propagationFlags = PropagationFlags.InheritOnly;

  197.                     break;

  198.                 case ApplyTo.SubfoldersAndFilesOnly:

  199.                     inheritanceFlags = InheritanceFlags.ObjectInherit | InheritanceFlags.ContainerInherit;

  200.                     propagationFlags = PropagationFlags.InheritOnly;

  201.                     break;

  202.                 case ApplyTo.SubfoldersOnly:

  203.                     inheritanceFlags = InheritanceFlags.ContainerInherit;

  204.                     propagationFlags = PropagationFlags.InheritOnly;

  205.                     break;

  206.                 case ApplyTo.ThisFolderAndFiles:

  207.                     inheritanceFlags = InheritanceFlags.ObjectInherit;

  208.                     propagationFlags = PropagationFlags.None;

  209.                     break;

  210.                 case ApplyTo.ThisFolderAndSubfolders:

  211.                     inheritanceFlags = InheritanceFlags.ContainerInherit;

  212.                     propagationFlags = PropagationFlags.None;

  213.                     break;

  214.                 case ApplyTo.ThisFolderOnly:

  215.                     inheritanceFlags = InheritanceFlags.None;

  216.                     propagationFlags = PropagationFlags.None;

  217.                     break;

  218.                 case ApplyTo.ThisFolderSubfoldersAndFiles:

  219.                     inheritanceFlags = InheritanceFlags.ContainerInherit | InheritanceFlags.ObjectInherit;

  220.                     propagationFlags = PropagationFlags.None;

  221.                     break;

  222.                 case ApplyTo.FilesOnlyOneLevel:

  223.                     inheritanceFlags = InheritanceFlags.ObjectInherit;

  224.                     propagationFlags = PropagationFlags.InheritOnly | PropagationFlags.NoPropagateInherit;

  225.                     break;

  226.                 case ApplyTo.SubfoldersAndFilesOnlyOneLevel:

  227.                     inheritanceFlags = InheritanceFlags.ContainerInherit | InheritanceFlags.ObjectInherit;

  228.                     propagationFlags = PropagationFlags.InheritOnly | PropagationFlags.NoPropagateInherit;

  229.                     break;

  230.                 case ApplyTo.SubfoldersOnlyOneLevel:

  231.                     inheritanceFlags = InheritanceFlags.ContainerInherit;

  232.                     propagationFlags = PropagationFlags.InheritOnly | PropagationFlags.NoPropagateInherit;

  233.                     break;

  234.                 case ApplyTo.ThisFolderAndFilesOneLevel:

  235.                     inheritanceFlags = InheritanceFlags.ObjectInherit;

  236.                     propagationFlags = PropagationFlags.NoPropagateInherit;

  237.                     break;

  238.                 case ApplyTo.ThisFolderAndSubfoldersOneLevel:

  239.                     inheritanceFlags = InheritanceFlags.ContainerInherit;

  240.                     propagationFlags = PropagationFlags.NoPropagateInherit;

  241.                     break;

  242.                 case ApplyTo.ThisFolderSubfoldersAndFilesOneLevel:

  243.                     inheritanceFlags = InheritanceFlags.ContainerInherit | InheritanceFlags.ObjectInherit;

  244.                     propagationFlags = PropagationFlags.NoPropagateInherit;

  245.                     break;

  246.             }

  247.         }

  248. 

  249.         public static ApplyTo ConvertToApplyTo(InheritanceFlags InheritanceFlags, PropagationFlags PropagationFlags)

  250.         {

  251.             if (InheritanceFlags == InheritanceFlags.ObjectInherit & PropagationFlags == PropagationFlags.InheritOnly)

  252.                 return ApplyTo.FilesOnly;

  253.             else if (InheritanceFlags == (InheritanceFlags.ObjectInherit | InheritanceFlags.ContainerInherit) & PropagationFlags == PropagationFlags.InheritOnly)

  254.                 return ApplyTo.SubfoldersAndFilesOnly;

  255.             else if (InheritanceFlags == InheritanceFlags.ContainerInherit & PropagationFlags == PropagationFlags.InheritOnly)

  256.                 return ApplyTo.SubfoldersOnly;

  257.             else if (InheritanceFlags == InheritanceFlags.ObjectInherit & PropagationFlags == PropagationFlags.None)

  258.                 return ApplyTo.ThisFolderAndFiles;

  259.             else if (InheritanceFlags == InheritanceFlags.ContainerInherit & PropagationFlags == PropagationFlags.None)

  260.                 return ApplyTo.ThisFolderAndSubfolders;

  261.             else if (InheritanceFlags == InheritanceFlags.None & PropagationFlags == PropagationFlags.None)

  262.                 return ApplyTo.ThisFolderOnly;

  263.             else if (InheritanceFlags == (InheritanceFlags.ContainerInherit | InheritanceFlags.ObjectInherit) & PropagationFlags == PropagationFlags.None)

  264.                 return ApplyTo.ThisFolderSubfoldersAndFiles;

  265.             else if (InheritanceFlags == (InheritanceFlags.ContainerInherit | InheritanceFlags.ObjectInherit) & PropagationFlags == PropagationFlags.NoPropagateInherit)

  266.                 return ApplyTo.ThisFolderSubfoldersAndFilesOneLevel;

  267.             else if (InheritanceFlags == InheritanceFlags.ContainerInherit & PropagationFlags == PropagationFlags.NoPropagateInherit)

  268.                 return ApplyTo.ThisFolderAndSubfoldersOneLevel;

  269.             else if (InheritanceFlags == InheritanceFlags.ObjectInherit & PropagationFlags == PropagationFlags.NoPropagateInherit)

  270.                 return ApplyTo.ThisFolderAndFilesOneLevel;

  271.             else if (InheritanceFlags == (InheritanceFlags.ContainerInherit | InheritanceFlags.ObjectInherit) & PropagationFlags == (PropagationFlags.InheritOnly | PropagationFlags.NoPropagateInherit))

  272.                 return ApplyTo.SubfoldersAndFilesOnlyOneLevel;

  273.             else if (InheritanceFlags == InheritanceFlags.ContainerInherit & PropagationFlags == (PropagationFlags.InheritOnly | PropagationFlags.NoPropagateInherit))

  274.                 return ApplyTo.SubfoldersOnlyOneLevel;

  275.             else if (InheritanceFlags == InheritanceFlags.ObjectInherit & PropagationFlags == (PropagationFlags.InheritOnly | PropagationFlags.NoPropagateInherit))

  276.                 return ApplyTo.FilesOnlyOneLevel;

  277. 

  278.             throw new RightsConverionException("The combination of InheritanceFlags and PropagationFlags could not be translated");

  279.         }

  280. 

  281.         public static FileSystemRights MapGenericRightsToFileSystemRights(uint originalRights)

  282.         {

  283.             try

  284.             {

  285.                 var r = Enum.Parse(typeof(FileSystemRights), (originalRights).ToString());

  286.                 if (r.ToString() == originalRights.ToString())

  287.                 {

  288.                     throw new ArgumentOutOfRangeException();

  289.                 }

  290. 

  291.                 var fileSystemRights = (FileSystemRights)originalRights;

  292.                 return fileSystemRights;

  293.             }

  294.             catch (Exception)

  295.             {

  296.                 FileSystemRights rights = 0;

  297.                 if (Convert.ToBoolean(originalRights & (uint)GenericRights.GENERIC_EXECUTE))

  298.                 {

  299.                     rights |= (FileSystemRights)MappedGenericRights.FILE_GENERIC_EXECUTE;

  300.                     originalRights ^= (uint)GenericRights.GENERIC_EXECUTE;

  301.                 }

  302.                 if (Convert.ToBoolean(originalRights & (uint)GenericRights.GENERIC_READ))

  303.                 {

  304.                     rights |= (FileSystemRights)MappedGenericRights.FILE_GENERIC_READ;

  305.                     originalRights ^= (uint)GenericRights.GENERIC_READ;

  306.                 }

  307.                 if (Convert.ToBoolean(originalRights & (uint)GenericRights.GENERIC_WRITE))

  308.                 {

  309.                     rights |= (FileSystemRights)MappedGenericRights.FILE_GENERIC_WRITE;

  310.                     originalRights ^= (uint)GenericRights.GENERIC_WRITE;

  311.                 }

  312.                 if (Convert.ToBoolean(originalRights & (uint)GenericRights.GENERIC_ALL))

  313.                 {

  314.                     rights |= (FileSystemRights)MappedGenericRights.FILE_GENERIC_ALL;

  315.                     originalRights ^= (uint)GenericRights.GENERIC_ALL;

  316.                 }

  317.                 //throw new RightsConverionException("Cannot convert GenericRights into FileSystemRights");

  318. 

  319.                 var remainingRights = (FileSystemRights)Enum.Parse(typeof(FileSystemRights), (originalRights).ToString());

  320. 

  321.                 rights |= remainingRights;

  322. 

  323.                 return rights;

  324.             }

  325.         }

  326.     }

  327. }