Vb.net 使用什么来代替SecurityManager.isgrated?
我还没有找到我要问的问题 我想知道用户是否有删除给定文件或文件夹的权限 我用的是:Vb.net 使用什么来代替SecurityManager.isgrated?,vb.net,permissions,user-permissions,Vb.net,Permissions,User Permissions,我还没有找到我要问的问题 我想知道用户是否有删除给定文件或文件夹的权限 我用的是: Private Function UserHasPermissionsToSource(ByVal source As String) As Boolean Dim writePermission As FileIOPermission = New FileIOPermission(FileIOPermissionAccess.Write, source) Return SecurityM
Private Function UserHasPermissionsToSource(ByVal source As String) As Boolean
Dim writePermission As FileIOPermission = New FileIOPermission(FileIOPermissionAccess.Write, source)
Return SecurityManager.IsGranted(writePermission)
End Function
但是,对于ISM,我不确定用什么来取代它。这是我目前拥有的,有人能确认这是否正确吗
Private Function UserHasPermissionsToSource(ByVal source As String) As Boolean
'Get the permissions of the file/folder
Dim writePermission As FileIOPermission = New FileIOPermission(FileIOPermissionAccess.Write, source)
'Create your permission set and add file permissions for write
Dim permissionSet As PermissionSet = New PermissionSet(PermissionState.None)
permissionSet.AddPermission(writePermission)
'checks permissions????
If permissionSet.IsSubsetOf(AppDomain.CurrentDomain.PermissionSet) Then
Return True
End If
Return False
End Function
为了同样的结果,似乎还有很多工作要做。以上的说法不正确,我找到了解决办法
Private Function GetFileAccessControl(ByVal source As String) As String
Dim denied As Boolean = False
Dim allowed As Boolean = False
'Gets the current User
Dim wid As WindowsIdentity = WindowsIdentity.GetCurrent()
Try
Dim arc As AuthorizationRuleCollection = GetAuthorizationRuleCollection(source)
Dim ars As IList(Of FileSystemAccessRule) = New List(Of FileSystemAccessRule)(arc.OfType(Of FileSystemAccessRule))
Dim widgs As IList(Of IdentityReference) = New List(Of IdentityReference)
For Each g As SecurityIdentifier In wid.Groups
If g.IsAccountSid() Then
widgs.Add(g)
End If
Next
'User not inherited rules
For Each rule As FileSystemAccessRule In (From r In ars Where r.IdentityReference.Equals(wid.User) AndAlso Not r.IsInherited)
denied = denied Or DeniesWriteAccess(rule)
allowed = allowed Or AllowsWriteAccess(rule)
Next
For Each rule As FileSystemAccessRule In (From r In ars Where r.IdentityReference.Equals(wid.User) AndAlso r.IsInherited)
denied = denied Or DeniesWriteAccess(rule)
allowed = allowed Or AllowsWriteAccess(rule)
Next
For Each rule As FileSystemAccessRule In (From r In ars Where widgs.Contains(r.IdentityReference) AndAlso Not r.IsInherited)
denied = denied Or DeniesWriteAccess(rule)
allowed = allowed Or AllowsWriteAccess(rule)
Next
For Each rule As FileSystemAccessRule In (From r In ars Where widgs.Contains(r.IdentityReference) AndAlso r.IsInherited)
denied = denied Or DeniesWriteAccess(rule)
allowed = allowed Or AllowsWriteAccess(rule)
Next
Catch ex As UnauthorizedAccessException
End Try
If Not denied AndAlso allowed Then
Return True
End If
Return False
End Function
Private Function GetAuthorizationRuleCollection(ByVal source As String) As AuthorizationRuleCollection
'Gets the current User
Dim wid As WindowsIdentity = WindowsIdentity.GetCurrent()
Dim arc As AuthorizationRuleCollection
arc = Nothing
If (Directory.Exists(source)) Then
Dim di As DirectoryInfo = New DirectoryInfo(source)
Dim acl As DirectorySecurity = di.GetAccessControl()
arc = acl.GetAccessRules(True, True, GetType(SecurityIdentifier))
ElseIf File.Exists(source) Then
Dim fi As FileInfo = New FileInfo(source)
Dim acl As FileSecurity = fi.GetAccessControl()
arc = acl.GetAccessRules(True, True, GetType(SecurityIdentifier))
End If
Return arc
End Function
Private Function AllowsWriteAccess(rule As FileSystemAccessRule) As Boolean
If rule.AccessControlType = AccessControlType.Allow AndAlso
(rule.FileSystemRights.HasFlag(FileSystemRights.Write) OrElse
rule.FileSystemRights.HasFlag(FileSystemRights.WriteData) OrElse
rule.FileSystemRights.HasFlag(FileSystemRights.CreateDirectories) OrElse
rule.FileSystemRights.HasFlag(FileSystemRights.CreateFiles)) Then
Return True
End If
Return False
End Function
Private Function DeniesWriteAccess(rule As FileSystemAccessRule) As Boolean
If rule.AccessControlType = AccessControlType.Deny AndAlso
(rule.FileSystemRights.HasFlag(FileSystemRights.Write) OrElse
rule.FileSystemRights.HasFlag(FileSystemRights.WriteData) OrElse
rule.FileSystemRights.HasFlag(FileSystemRights.CreateDirectories) OrElse
rule.FileSystemRights.HasFlag(FileSystemRights.CreateFiles)) Then
Return True
End If
Return False
End Function
定义的第一个函数,
GetFileAccessControl
,应该是作为布尔值,而不是作为字符串,因为它返回一个布尔值。我还建议将第一个函数命名为HasWriteAccessForFile
,因为它是专门针对写访问的检查,而不仅仅是针对任何权限。