Fatal编程技术网
  • vb.net/
  • Vb.net 使用什么来代替SecurityManager.isgrated?

Vb.net 使用什么来代替SecurityManager.isgrated?

vb.net permissions

Vb.net 使用什么来代替SecurityManager.isgrated?,vb.net,permissions,user-permissions,Vb.net,Permissions,User Permissions,我还没有找到我要问的问题 我想知道用户是否有删除给定文件或文件夹的权限 我用的是: Private Function UserHasPermissionsToSource(ByVal source As String) As Boolean Dim writePermission As FileIOPermission = New FileIOPermission(FileIOPermissionAccess.Write, source) Return SecurityM

我还没有找到我要问的问题

我想知道用户是否有删除给定文件或文件夹的权限

我用的是:

Private Function UserHasPermissionsToSource(ByVal source As String) As Boolean    
    Dim writePermission As FileIOPermission = New FileIOPermission(FileIOPermissionAccess.Write, source)
    Return SecurityManager.IsGranted(writePermission)
End Function
但是,对于ISM,我不确定用什么来取代它。这是我目前拥有的,有人能确认这是否正确吗

Private Function UserHasPermissionsToSource(ByVal source As String) As Boolean
    'Get the permissions of the file/folder
    Dim writePermission As FileIOPermission = New FileIOPermission(FileIOPermissionAccess.Write, source)

    'Create your permission set and add file permissions for write
    Dim permissionSet As PermissionSet = New PermissionSet(PermissionState.None)
    permissionSet.AddPermission(writePermission)

    'checks permissions????
    If permissionSet.IsSubsetOf(AppDomain.CurrentDomain.PermissionSet) Then
        Return True
    End If

    Return False
End Function
为了同样的结果,似乎还有很多工作要做。

以上的说法不正确,我找到了解决办法

Private Function GetFileAccessControl(ByVal source As String) As String

        Dim denied As Boolean = False
        Dim allowed As Boolean = False

        'Gets the current User
        Dim wid As WindowsIdentity = WindowsIdentity.GetCurrent()

        Try
            Dim arc As AuthorizationRuleCollection = GetAuthorizationRuleCollection(source)
            Dim ars As IList(Of FileSystemAccessRule) = New List(Of FileSystemAccessRule)(arc.OfType(Of FileSystemAccessRule))
            Dim widgs As IList(Of IdentityReference) = New List(Of IdentityReference)

            For Each g As SecurityIdentifier In wid.Groups
                If g.IsAccountSid() Then
                    widgs.Add(g)
                End If
            Next

            'User not inherited rules
            For Each rule As FileSystemAccessRule In (From r In ars Where r.IdentityReference.Equals(wid.User) AndAlso Not r.IsInherited)
                denied = denied Or DeniesWriteAccess(rule)
                allowed = allowed Or AllowsWriteAccess(rule)
            Next

            For Each rule As FileSystemAccessRule In (From r In ars Where r.IdentityReference.Equals(wid.User) AndAlso r.IsInherited)
                denied = denied Or DeniesWriteAccess(rule)
                allowed = allowed Or AllowsWriteAccess(rule)
            Next

            For Each rule As FileSystemAccessRule In (From r In ars Where widgs.Contains(r.IdentityReference) AndAlso Not r.IsInherited)
                denied = denied Or DeniesWriteAccess(rule)
                allowed = allowed Or AllowsWriteAccess(rule)
            Next

            For Each rule As FileSystemAccessRule In (From r In ars Where widgs.Contains(r.IdentityReference) AndAlso r.IsInherited)
                denied = denied Or DeniesWriteAccess(rule)
                allowed = allowed Or AllowsWriteAccess(rule)
            Next
        Catch ex As UnauthorizedAccessException

        End Try

        If Not denied AndAlso allowed Then
            Return True
        End If

        Return False
    End Function

    Private Function GetAuthorizationRuleCollection(ByVal source As String) As AuthorizationRuleCollection

        'Gets the current User
        Dim wid As WindowsIdentity = WindowsIdentity.GetCurrent()
        Dim arc As AuthorizationRuleCollection
        arc = Nothing

        If (Directory.Exists(source)) Then
            Dim di As DirectoryInfo = New DirectoryInfo(source)
            Dim acl As DirectorySecurity = di.GetAccessControl()
            arc = acl.GetAccessRules(True, True, GetType(SecurityIdentifier))
        ElseIf File.Exists(source) Then
            Dim fi As FileInfo = New FileInfo(source)
            Dim acl As FileSecurity = fi.GetAccessControl()
            arc = acl.GetAccessRules(True, True, GetType(SecurityIdentifier))
        End If

        Return arc
    End Function

    Private Function AllowsWriteAccess(rule As FileSystemAccessRule) As Boolean
        If rule.AccessControlType = AccessControlType.Allow AndAlso
                (rule.FileSystemRights.HasFlag(FileSystemRights.Write) OrElse
                rule.FileSystemRights.HasFlag(FileSystemRights.WriteData) OrElse
                rule.FileSystemRights.HasFlag(FileSystemRights.CreateDirectories) OrElse
                rule.FileSystemRights.HasFlag(FileSystemRights.CreateFiles)) Then
            Return True
        End If
        Return False
    End Function

    Private Function DeniesWriteAccess(rule As FileSystemAccessRule) As Boolean
        If rule.AccessControlType = AccessControlType.Deny AndAlso
                (rule.FileSystemRights.HasFlag(FileSystemRights.Write) OrElse
                rule.FileSystemRights.HasFlag(FileSystemRights.WriteData) OrElse
                rule.FileSystemRights.HasFlag(FileSystemRights.CreateDirectories) OrElse
                rule.FileSystemRights.HasFlag(FileSystemRights.CreateFiles)) Then
            Return True
        End If
        Return False
    End Function
定义的第一个函数,
GetFileAccessControl
,应该是
作为布尔值,而不是
作为字符串,因为它返回一个布尔值。我还建议将第一个函数命名为
HasWriteAccessForFile
,因为它是专门针对写访问的检查,而不仅仅是针对任何权限。