2 // WindowsPrincipal.cs: Windows IPrincipal implementation
5 // Sebastien Pouliot (sebastien@ximian.com)
7 // (C) 2003 Motus Technologies Inc. (http://www.motus.com)
8 // Copyright (C) 2004-2005 Novell, Inc (http://www.novell.com)
10 // Permission is hereby granted, free of charge, to any person obtaining
11 // a copy of this software and associated documentation files (the
12 // "Software"), to deal in the Software without restriction, including
13 // without limitation the rights to use, copy, modify, merge, publish,
14 // distribute, sublicense, and/or sell copies of the Software, and to
15 // permit persons to whom the Software is furnished to do so, subject to
16 // the following conditions:
18 // The above copyright notice and this permission notice shall be
19 // included in all copies or substantial portions of the Software.
21 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
22 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
23 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
24 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
25 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
26 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
27 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
30 using System.Collections;
31 using System.Runtime.CompilerServices;
32 using System.Runtime.InteropServices;
34 namespace System.Security.Principal {
38 public class WindowsPrincipal : IPrincipal {
40 private WindowsIdentity _identity;
41 // http://groups.google.ca/groups?q=WindowsPrincipal+m_roles&hl=en&lr=&ie=UTF-8&oe=UTF-8&selm=OghXf4OgCHA.4228%40tkmsftngp08&rnum=4
42 private string [] m_roles;
44 // case sensitivity versus number of groups
45 // http://groups.google.ca/groups?q=WindowsPrincipal+m_roles&hl=en&lr=&ie=UTF-8&oe=UTF-8&selm=%23JEMHsMQCHA.1916%40tkmsftngp13&rnum=5
47 public WindowsPrincipal (WindowsIdentity ntIdentity)
49 if (ntIdentity == null)
50 throw new ArgumentNullException ("ntIdentity");
52 _identity = ntIdentity;
57 public virtual IIdentity Identity {
58 get { return _identity; }
63 public virtual bool IsInRole (int rid)
65 if (Environment.IsUnix) {
66 return IsMemberOfGroupId (Token, (IntPtr) rid);
71 case 544: // Administrator
72 role = "BUILTIN\\Administrators";
75 role = "BUILTIN\\Users";
78 role = "BUILTIN\\Guests";
80 case 547: // PowerUser
81 role = "BUILTIN\\Power Users";
83 case 548: // AccountOperator
84 role = "BUILTIN\\Account Operators";
86 case 549: // SystemOperator
87 role = "BUILTIN\\System Operators";
89 case 550: // PrintOperator
90 role = "BUILTIN\\Print Operators";
92 case 551: // BackupOperator
93 role = "BUILTIN\\Backup Operators";
95 case 552: // Replicator
96 role = "BUILTIN\\Replicator";
101 return IsInRole (role);
105 public virtual bool IsInRole (string role)
108 return false; // ArgumentNullException
110 if (Environment.IsUnix) {
111 // note: Posix is always case-sensitive
112 return IsMemberOfGroupName (Token, role);
115 // Windows specific code that
116 // (a) build the role cache like the MS framework (for compatibility)
117 // (b) case sensitive (for Fx 1.0) and case insensitive (later Fx)
118 if (m_roles == null) {
119 m_roles = WindowsIdentity._GetRoles (Token);
122 role = role.ToUpperInvariant ();
124 foreach (string check in m_roles) {
129 if ((check != null) && (role == check.ToUpperInvariant ()))
137 public virtual bool IsInRole (WindowsBuiltInRole role)
139 if (Environment.IsUnix) {
140 // right now we only map Administrator == root
143 case WindowsBuiltInRole.Administrator:
149 return IsInRole (group);
152 return IsInRole ((int) role);
155 [MonoTODO ("not implemented")]
157 public virtual bool IsInRole (SecurityIdentifier sid)
159 throw new NotImplementedException ();
162 private IntPtr Token {
163 get { return (_identity as WindowsIdentity).Token; }
166 // see mono/mono/metadata/security.c for implementation
168 // note: never called by Win32 code (i.e. always return false)
169 [MethodImplAttribute (MethodImplOptions.InternalCall)]
170 private extern static bool IsMemberOfGroupId (IntPtr user, IntPtr group);
172 // note: never called by Win32 code (i.e. always return false)
173 [MethodImplAttribute (MethodImplOptions.InternalCall)]
174 private extern static bool IsMemberOfGroupName (IntPtr user, string group);