堆栈内存溢出
  简体   繁体   English

文件权限不会继承目录权限

[英]File permissions do not inherit directory permissions

 原文  2009-10-07 14:34:35       c#/ security/ permissions/ file-permissions

问题描述

I have a program that's creating a secure directory for user output. 我有一个程序正在为用户输出创建一个安全的目录。 This is working correctly, but the files I create in it (or copy to it) are ending up with only administrator access. 这工作正常,但我在其中创建的文件(或复制到它)最终只有管理员访问权限。 

 DirectoryInfo outputDirectory =
            baseOutputDirectory.CreateSubdirectory(outputDirectoryName,
            GetDirectorySecurity(searchHits.Request.UserId));

 ...

private DirectorySecurity GetDirectorySecurity(string owner)
{
    const string LOG_SOURCE = "GetDirectorySecurity";
    DirectorySecurity ds = new DirectorySecurity();

    System.Security.Principal.NTAccount ownerAccount = 
        new System.Security.Principal.NTAccount(owner);

    ds.SetOwner(ownerAccount);

    ds.AddAccessRule(
        new FileSystemAccessRule(owner, 
        FileSystemRights.FullControl,
        AccessControlType.Allow));

    //AdminUsers is a List<string> that contains a list from configuration
    //  That represents the admins who should be allowed
    foreach (string adminUser in AdminUsers)
    {
        ds.AddAccessRule(
            new FileSystemAccessRule(adminUser,
            FileSystemRights.FullControl,
            AccessControlType.Allow));
    }
    return ds;
}

/// <summary>
/// This method copies any static supporting files, such as javascripts
/// </summary>
/// <param name="outputDirectory"></param>
private void CopySupportingFiles(DirectoryInfo outputDirectory)
{
    foreach (FileInfo file in SupportingFiles)
    {
        file.CopyTo(
            Path.Combine(outputDirectory.FullName, file.Name));
    }
}

etc, etc, etc. 等等等

What am I doing wrong? 我究竟做错了什么? Why aren't the permissions cascading? 为什么权限不级联?

1 个解决方案

解决方案1
 3 已采纳  2009-10-07 15:37:23

It looks like you should be setting the InheritanceFlags and PropagationFlags when setting the DirectorySecurity (I believe it overwrite whatever you've manually set). 看起来你应该在设置DirectorySecurity时设置InheritanceFlagsPropagationFlags (我相信它会覆盖你手动设置的任何内容)。 

private DirectorySecurity GetDirectorySecurity(string owner)
{
    const string LOG_SOURCE = "GetDirectorySecurity";
    DirectorySecurity ds = new DirectorySecurity();

    System.Security.Principal.NTAccount ownerAccount =
        new System.Security.Principal.NTAccount(owner);

    ds.SetOwner(ownerAccount);

    ds.AddAccessRule(
        new FileSystemAccessRule(owner,
        FileSystemRights.FullControl,
        InheritanceFlags.ObjectInherit, 
        PropagationFlags.InheritOnly,
        AccessControlType.Allow));

    //AdminUsers is a List<string> that contains a list from configuration
    //  That represents the admins who should be allowed
    foreach (string adminUser in AdminUsers)
    {
        ds.AddAccessRule(
            new FileSystemAccessRule(adminUser,
            FileSystemRights.FullControl,
            InheritanceFlags.ObjectInherit,
            PropagationFlags.InheritOnly,
            AccessControlType.Allow));
    }
    return ds;
}

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 File.Move不会从目标目录继承权限? - File.Move does not inherit permissions from target directory? 通过C#继承Active Directory权限 - Inherit Active Directory permissions via C# C#文件/目录权限 - C# File/Directory Permissions 如何检查写入目录或文件的权限? - How do you check for permissions to write to a directory or file? 以编程方式创建的文件并不总是继承父文件夹的权限 - Programmatically created file doesn't always inherit the permissions of the parent folder 检查 .NET 中的目录和文件写入权限 - Checking for directory and file write permissions in .NET 本地共享的 C# 文件/目录权限 - C# File/Directory Permissions for local share 如何更改文件权限以阻止 Vista 写入 VirtualStore 目录中的文件? - How do you change file permissions to stop Vista from writing to a file in the VirtualStore directory? C#代码,用于设置远程共享以从其父目录继承权限 - C# code to set a remote share to inherit permissions from its parent directory 删除所有目录权限 - Remove All Directory Permissions
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM