Reputation: 43
Windows file permissions as string
Given a specific file system path (folder or file, doesn't matter), I need to generate a string that reflects each principal's access to that path.
The result I'm after would be very similar to what you see in the Permissions tab of the Advanced Security Settings dialog in Windows:
which I will ultimately display in a User1: [access], User2: [access], etc. format.
What is the straight-forward method of achieving this result? Specifically, which Windows security API functions must be executed, and in what order?
Upvotes: 1
Views: 371
Answers (1)
Reputation: 104589
Open the file via CreateFile with FILE_FLAG_BACKUP_SEMANTICS and FILE_GENERIC_READ attributes (or'd together).
Then with the obtained file handle, call GetKernelObjectSecurity. Then parse out the SECURITY_DESCRIPTOR that is returned by this call.
You'll likely need to learn about ACLs and DACLs.
Upvotes: 2
Related Questions
- C++ How to retrieve a file permission and ownership via win32 api
- Exact way to get permissions of a file in windows using C++ and api
- how to change the ACLs from c++?
- Effective file permissions tool's api in windows
- Changing folder security permissions via Win32 API
- How to fetch ACL for Folders
- Checking windows file permissions
- How can I correctly check for effective read/write access to a file using Windows API?
- Set folder permission using plain c++, or java
- API to change ownership of file vista