Powershell-Modules
/
NTFSSecurity-Module
mirror of https://github.com/raandree/NTFSSecurity
1
0
Fork 0
Code Issues 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
16 Commits
3 Branches
12 MiB
 
 
Tree: e79653c0e1
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'e79653c0e1'
${ noResults }
NTFSSecurity-Module/Security2/FileSystem/FileSystemAuditRule2 Class/FileSystemAuditRule2.GetFil...

62 lines
2.5 KiB
Raw Blame History 

  1. using Alphaleonis.Win32.Filesystem;

  2. using System.Collections.Generic;

  3. using System.Security.AccessControl;

  4. using System.Security.Principal;

  5. 

  6. namespace Security2

  7. {

  8.     public partial class FileSystemAuditRule2

  9.     {

  10.         public static IEnumerable<FileSystemAuditRule2> GetFileSystemAuditRules(FileSystemInfo item, bool includeExplicit, bool includeInherited, bool getInheritedFrom = false)

  11.         {

  12.             var sd = new FileSystemSecurity2(item);

  13. 

  14.             return GetFileSystemAuditRules(sd, includeExplicit, includeInherited, getInheritedFrom);

  15.         }

  16. 

  17.         public static IEnumerable<FileSystemAuditRule2> GetFileSystemAuditRules(FileSystemSecurity2 sd, bool includeExplicit, bool includeInherited, bool getInheritedFrom = false)

  18.         {

  19.             List<FileSystemAuditRule2> aceList = new List<FileSystemAuditRule2>();

  20.             List<string> inheritedFrom = null;

  21. 

  22.             if (getInheritedFrom)

  23.             {

  24.                 inheritedFrom = Win32.GetInheritedFrom(sd.Item, sd.SecurityDescriptor);

  25.             }

  26. 

  27.             var aceCounter = 0;

  28.             var acl = !sd.IsFile ?

  29.                 ((DirectorySecurity)sd.SecurityDescriptor).GetAuditRules(includeExplicit, includeInherited, typeof(SecurityIdentifier)) :

  30.                 ((FileSecurity)sd.SecurityDescriptor).GetAuditRules(includeExplicit, includeInherited, typeof(SecurityIdentifier));

  31. 

  32.             foreach (FileSystemAuditRule ace in acl)

  33.             {

  34.                 var ace2 = new FileSystemAuditRule2(ace) { FullName = sd.Item.FullName, InheritanceEnabled = !sd.SecurityDescriptor.AreAccessRulesProtected };

  35.                 if (getInheritedFrom)

  36.                 {

  37.                     ace2.inheritedFrom = string.IsNullOrEmpty(inheritedFrom[aceCounter]) ? "" : inheritedFrom[aceCounter].Substring(0, inheritedFrom[aceCounter].Length - 1);

  38.                     aceCounter++;

  39.                 }

  40. 

  41.                 aceList.Add(ace2);

  42.             }

  43. 

  44.             return aceList;

  45.         }

  46. 

  47.         public static IEnumerable<FileSystemAuditRule2> GetFileSystemAuditRules(string path, bool includeExplicit, bool includeInherited)

  48.         {

  49.             if (File.Exists(path))

  50.             {

  51.                 var item = new FileInfo(path);

  52.                 return GetFileSystemAuditRules(item, includeExplicit, includeInherited);

  53.             }

  54.             else

  55.             {

  56.                 var item = new DirectoryInfo(path);

  57.                 return GetFileSystemAuditRules(item, includeExplicit, includeInherited);

  58.             }

  59.         }

  60.     }

  61. }