目录访问控制 如果你的目录是Everyone的话,应该有这个权限呀,aspnet是user级的用户!! 解决方案 » 免费领取超大流量手机卡,每月29元包185G流量+100分钟通话, 中国电信官方发货 在FAT32下是不用设置写入权限的,但在NTFS下aspnet这个用户对目录没有写入权限,您可以文件夹属性的安全中看得到,如果手动添加的话是可以的,但用户往往最简单的操作也不愿做,而且从一个产品来说,也不该让用户去操作。 苦找了几个星期,终于在老外的一个站点上找到了一些资料,可惜不全,所以现在我用的方法有点怪,又是api又是Wmi,总算是解决问题了,在此谢谢文子,顺便给出我的决办法,也许你能帮我想一个万全之策,如果找到了的话,请取系我,mail:[email protected],[email protected].我的方法如下:using System;using System.Drawing;using System.Collections;using System.ComponentModel;using System.Windows.Forms;using System.Data;using System.Management;using System.Text;using System.Runtime.InteropServices;namespace SetAcl{ /// <summary> /// Form1 的摘要说明。 /// </summary> public class Form1 : System.Windows.Forms.Form { private System.Windows.Forms.TextBox textBox1; private System.Windows.Forms.TextBox textBox2; private System.Windows.Forms.Button SetAcl; private System.Windows.Forms.Label label1; private System.Windows.Forms.Label label2; /// <summary> /// 必需的设计器变量。 /// </summary> private System.ComponentModel.Container components = null; public Form1() { // // Windows 窗体设计器支持所必需的 // InitializeComponent(); // // TODO: 在 InitializeComponent 调用后添加任何构造函数代码 // } /// <summary> /// 清理所有正在使用的资源。 /// </summary> protected override void Dispose( bool disposing ) { if( disposing ) { if (components != null) { components.Dispose(); } } base.Dispose( disposing ); } #region Windows Form Designer generated code /// <summary> /// 设计器支持所需的方法 - 不要使用代码编辑器修改 /// 此方法的内容。 /// </summary> private void InitializeComponent() { this.textBox1 = new System.Windows.Forms.TextBox(); this.textBox2 = new System.Windows.Forms.TextBox(); this.SetAcl = new System.Windows.Forms.Button(); this.label1 = new System.Windows.Forms.Label(); this.label2 = new System.Windows.Forms.Label(); this.SuspendLayout(); // // textBox1 // this.textBox1.Location = new System.Drawing.Point(80, 32); this.textBox1.Name = "textBox1"; this.textBox1.Size = new System.Drawing.Size(152, 21); this.textBox1.TabIndex = 0; this.textBox1.Text = "c:\\test"; // // textBox2 // this.textBox2.Location = new System.Drawing.Point(80, 80); this.textBox2.Name = "textBox2"; this.textBox2.Size = new System.Drawing.Size(152, 21); this.textBox2.TabIndex = 1; this.textBox2.Text = "ASPNET"; // // SetAcl // this.SetAcl.Location = new System.Drawing.Point(152, 136); this.SetAcl.Name = "SetAcl"; this.SetAcl.TabIndex = 2; this.SetAcl.Text = "设置"; this.SetAcl.Click += new System.EventHandler(this.SetAcl_Click); // // label1 // this.label1.Location = new System.Drawing.Point(24, 80); this.label1.Name = "label1"; this.label1.Size = new System.Drawing.Size(48, 23); this.label1.TabIndex = 5; this.label1.Text = "用户:"; // // label2 // this.label2.Location = new System.Drawing.Point(24, 32); this.label2.Name = "label2"; this.label2.Size = new System.Drawing.Size(48, 23); this.label2.TabIndex = 6; this.label2.Text = "目录:"; // // Form1 // this.AutoScaleBaseSize = new System.Drawing.Size(6, 14); this.ClientSize = new System.Drawing.Size(280, 197); this.Controls.AddRange(new System.Windows.Forms.Control[] { this.label2, this.label1, this.SetAcl, this.textBox2, this.textBox1}); this.MaximizeBox = false; this.MinimizeBox = false; this.Name = "Form1"; this.Text = "Form1"; this.ResumeLayout(false); } #endregion /// <summary> /// 应用程序的主入口点。 /// </summary> [STAThread] static void Main() { Application.Run(new Form1()); } [DllImport("advapi32.dll")] public static extern bool LookupAccountName(string lpSystemName, string lpAccountName,byte[] sid,ref int cbSid, StringBuilder ReferencedDomainName, ref int cbReferencedDomainName,ref int peUse); private void SetAcl_Click(object sender, System.EventArgs e) { string filePath=this.textBox1.Text; string userName=this.textBox2.Text; if(GetFileSystem(filePath.Substring(0,1))!="NTFS") return; if(FindTrustee(filePath,userName)) return; SetDACL(filePath,userName); } private string GetFileSystem(string diskName) { string fileSystem=""; System.Management.ManagementObjectSearcher diskClass=new ManagementObjectSearcher("select filesystem from Win32_LogicalDisk where name='"+diskName+":'"); ManagementObjectCollection disks=diskClass.Get(); foreach(ManagementObject disk in disks) { PropertyDataCollection diskProperties=disk.Properties; foreach (PropertyData diskProperty in diskProperties) { fileSystem = diskProperty.Value.ToString(); } } return fileSystem; } private bool FindTrustee(string filePath,string userName) { ArrayList trusteesName=new ArrayList(); ManagementPath path = new ManagementPath( ); path.Server = "."; path.NamespacePath = @"root\cimv2"; path.RelativePath = @"Win32_LogicalFileSecuritySetting.Path='"+filePath+"'"; //定位到文件夹 ManagementObject dir = new ManagementObject(path); ManagementBaseObject outParams = dir.InvokeMethod("GetSecurityDescriptor", null, null); //获取安全描述符 if (((uint)(outParams.Properties["ReturnValue"].Value)) != 0) //OK { throw new Exception("获取文件描述符失败"); } ManagementBaseObject Descriptor = ((ManagementBaseObject)(outParams.Properties["Descriptor"].Value)); ManagementBaseObject[] DaclObject = ((ManagementBaseObject[])(Descriptor.Properties["Dacl"].Value)); //获取访问控制列表 for(int i=0;i<DaclObject.Length;i++) { trusteesName.Add(((ManagementBaseObject)DaclObject[i].Properties["Trustee"].Value).Properties["Name"].Value); } return trusteesName.Contains(userName); } 太长,只好再续一下 private void SetDACL(string filePath,string userName) { //获取帐户信息 int cbSid = 100; byte[] userSid = new byte[28] ; StringBuilder domainName=new StringBuilder(255); int domainNameLength = 255; int sidType =255; bool result = LookupAccountName(null, userName,userSid, ref cbSid, domainName,ref domainNameLength,ref sidType); if(!result) return; //获取文件描述符 ManagementPath path = new ManagementPath(); path.Server = "."; path.NamespacePath = @"root\cimv2"; path.RelativePath = @"Win32_LogicalFileSecuritySetting.Path='"+filePath+"'"; ManagementObject dir = new ManagementObject(path); ManagementBaseObject outParams = dir.InvokeMethod("GetSecurityDescriptor", null, null); if (((uint)(outParams.Properties["ReturnValue"].Value)) != 0) { throw new Exception("获取文件描述符失败"); } ManagementBaseObject Descriptor = ((ManagementBaseObject)(outParams.Properties["Descriptor"].Value)); //获取访问控制列表 ManagementBaseObject[] DaclObject = ((ManagementBaseObject[])(Descriptor.Properties["Dacl"].Value)); //复制一个访问控制项 ManagementBaseObject ace=(ManagementBaseObject)DaclObject[0].Clone(); //设置访问控制项属性 ManagementBaseObject trustee=(ManagementBaseObject)ace.Properties["Trustee"].Value; trustee.Properties["Domain"].Value=domainName.ToString(); trustee.Properties["Name"].Value=userName; trustee.Properties["SID"].Value=userSid; trustee.Properties["SidLength"].Value=28;//trustee.Properties["SIDString"].Value="S-1-5-21-602162358-708899826-854245398-1005"; ace.Properties["Trustee"].Value=trustee; ace.Properties["AccessMask"].Value=2032127; ace.Properties["AceFlags"].Value=3; ace.Properties["AceType"].Value=0; //复制一份访问控制列表,并将以上生成的访问控制项添加到其后。 ManagementBaseObject[] newDacl=new ManagementBaseObject[DaclObject.Length+1]; for(int i=0;i<DaclObject.Length;i++) { newDacl[i]=DaclObject[i]; } newDacl[DaclObject.Length]=ace; //将安全描述符的DACL属性设为新生成的访问控制列表 Descriptor.Properties["Dacl"].Value=newDacl; //设置安全描述符 dir.Scope.Options.EnablePrivileges=true; ManagementBaseObject inProperties=dir.GetMethodParameters("SetSecurityDescriptor"); inProperties["Descriptor"] = Descriptor; outParams = dir.InvokeMethod("SetSecurityDescriptor", inProperties, null); } }} ld2文件如何用c# 读取 终止多线程问题 gridview通过CSS固定表头出现错误,100分请教!! 急,报表问题 999999打开文件选择对话框提示出错 100分求:如何访问局域网的数据库? VS2012环境调试 怎么把一个控件插入RichTextBox中??? 这句话那里错了?document.all(Button1).click(); 在Web Form中傳值 谁能提供一个winform的remoting例子 如何从客户端向后台数据库插入大量数据,比如10000条,谢谢!
我的方法如下:
using System;
using System.Drawing;
using System.Collections;
using System.ComponentModel;
using System.Windows.Forms;
using System.Data;
using System.Management;
using System.Text;
using System.Runtime.InteropServices;
namespace SetAcl
{
/// <summary>
/// Form1 的摘要说明。
/// </summary>
public class Form1 : System.Windows.Forms.Form
{
private System.Windows.Forms.TextBox textBox1;
private System.Windows.Forms.TextBox textBox2;
private System.Windows.Forms.Button SetAcl;
private System.Windows.Forms.Label label1;
private System.Windows.Forms.Label label2;
/// <summary>
/// 必需的设计器变量。
/// </summary>
private System.ComponentModel.Container components = null; public Form1()
{
//
// Windows 窗体设计器支持所必需的
//
InitializeComponent(); //
// TODO: 在 InitializeComponent 调用后添加任何构造函数代码
//
} /// <summary>
/// 清理所有正在使用的资源。
/// </summary>
protected override void Dispose( bool disposing )
{
if( disposing )
{
if (components != null)
{
components.Dispose();
}
}
base.Dispose( disposing );
} #region Windows Form Designer generated code
/// <summary>
/// 设计器支持所需的方法 - 不要使用代码编辑器修改
/// 此方法的内容。
/// </summary>
private void InitializeComponent()
{
this.textBox1 = new System.Windows.Forms.TextBox();
this.textBox2 = new System.Windows.Forms.TextBox();
this.SetAcl = new System.Windows.Forms.Button();
this.label1 = new System.Windows.Forms.Label();
this.label2 = new System.Windows.Forms.Label();
this.SuspendLayout();
//
// textBox1
//
this.textBox1.Location = new System.Drawing.Point(80, 32);
this.textBox1.Name = "textBox1";
this.textBox1.Size = new System.Drawing.Size(152, 21);
this.textBox1.TabIndex = 0;
this.textBox1.Text = "c:\\test";
//
// textBox2
//
this.textBox2.Location = new System.Drawing.Point(80, 80);
this.textBox2.Name = "textBox2";
this.textBox2.Size = new System.Drawing.Size(152, 21);
this.textBox2.TabIndex = 1;
this.textBox2.Text = "ASPNET";
//
// SetAcl
//
this.SetAcl.Location = new System.Drawing.Point(152, 136);
this.SetAcl.Name = "SetAcl";
this.SetAcl.TabIndex = 2;
this.SetAcl.Text = "设置";
this.SetAcl.Click += new System.EventHandler(this.SetAcl_Click);
//
// label1
//
this.label1.Location = new System.Drawing.Point(24, 80);
this.label1.Name = "label1";
this.label1.Size = new System.Drawing.Size(48, 23);
this.label1.TabIndex = 5;
this.label1.Text = "用户:";
//
// label2
//
this.label2.Location = new System.Drawing.Point(24, 32);
this.label2.Name = "label2";
this.label2.Size = new System.Drawing.Size(48, 23);
this.label2.TabIndex = 6;
this.label2.Text = "目录:";
//
// Form1
//
this.AutoScaleBaseSize = new System.Drawing.Size(6, 14);
this.ClientSize = new System.Drawing.Size(280, 197);
this.Controls.AddRange(new System.Windows.Forms.Control[] {
this.label2,
this.label1,
this.SetAcl,
this.textBox2,
this.textBox1});
this.MaximizeBox = false;
this.MinimizeBox = false;
this.Name = "Form1";
this.Text = "Form1";
this.ResumeLayout(false); }
#endregion /// <summary>
/// 应用程序的主入口点。
/// </summary>
[STAThread]
static void Main()
{
Application.Run(new Form1());
}
[DllImport("advapi32.dll")]
public static extern bool LookupAccountName(string lpSystemName, string lpAccountName,byte[] sid,ref int cbSid, StringBuilder ReferencedDomainName, ref int cbReferencedDomainName,ref int peUse);
private void SetAcl_Click(object sender, System.EventArgs e)
{
string filePath=this.textBox1.Text;
string userName=this.textBox2.Text;
if(GetFileSystem(filePath.Substring(0,1))!="NTFS")
return;
if(FindTrustee(filePath,userName))
return;
SetDACL(filePath,userName);
}
private string GetFileSystem(string diskName)
{
string fileSystem="";
System.Management.ManagementObjectSearcher diskClass=new ManagementObjectSearcher("select filesystem from Win32_LogicalDisk where name='"+diskName+":'");
ManagementObjectCollection disks=diskClass.Get();
foreach(ManagementObject disk in disks)
{
PropertyDataCollection diskProperties=disk.Properties;
foreach (PropertyData diskProperty in diskProperties)
{
fileSystem = diskProperty.Value.ToString();
}
}
return fileSystem;
}
private bool FindTrustee(string filePath,string userName)
{
ArrayList trusteesName=new ArrayList();
ManagementPath path = new ManagementPath( );
path.Server = ".";
path.NamespacePath = @"root\cimv2";
path.RelativePath = @"Win32_LogicalFileSecuritySetting.Path='"+filePath+"'"; //定位到文件夹
ManagementObject dir = new ManagementObject(path);
ManagementBaseObject outParams = dir.InvokeMethod("GetSecurityDescriptor", null, null); //获取安全描述符 if (((uint)(outParams.Properties["ReturnValue"].Value)) != 0) //OK
{
throw new Exception("获取文件描述符失败");
}
ManagementBaseObject Descriptor = ((ManagementBaseObject)(outParams.Properties["Descriptor"].Value));
ManagementBaseObject[] DaclObject = ((ManagementBaseObject[])(Descriptor.Properties["Dacl"].Value)); //获取访问控制列表
for(int i=0;i<DaclObject.Length;i++)
{
trusteesName.Add(((ManagementBaseObject)DaclObject[i].Properties["Trustee"].Value).Properties["Name"].Value);
}
return trusteesName.Contains(userName);
}
private void SetDACL(string filePath,string userName)
{
//获取帐户信息
int cbSid = 100;
byte[] userSid = new byte[28] ;
StringBuilder domainName=new StringBuilder(255);
int domainNameLength = 255;
int sidType =255;
bool result = LookupAccountName(null, userName,userSid, ref cbSid, domainName,ref domainNameLength,ref sidType);
if(!result)
return;
//获取文件描述符
ManagementPath path = new ManagementPath();
path.Server = ".";
path.NamespacePath = @"root\cimv2";
path.RelativePath = @"Win32_LogicalFileSecuritySetting.Path='"+filePath+"'";
ManagementObject dir = new ManagementObject(path);
ManagementBaseObject outParams = dir.InvokeMethod("GetSecurityDescriptor", null, null);
if (((uint)(outParams.Properties["ReturnValue"].Value)) != 0)
{
throw new Exception("获取文件描述符失败");
}
ManagementBaseObject Descriptor = ((ManagementBaseObject)(outParams.Properties["Descriptor"].Value));
//获取访问控制列表
ManagementBaseObject[] DaclObject = ((ManagementBaseObject[])(Descriptor.Properties["Dacl"].Value));
//复制一个访问控制项
ManagementBaseObject ace=(ManagementBaseObject)DaclObject[0].Clone();
//设置访问控制项属性
ManagementBaseObject trustee=(ManagementBaseObject)ace.Properties["Trustee"].Value;
trustee.Properties["Domain"].Value=domainName.ToString();
trustee.Properties["Name"].Value=userName;
trustee.Properties["SID"].Value=userSid;
trustee.Properties["SidLength"].Value=28;//trustee.Properties["SIDString"].Value="S-1-5-21-602162358-708899826-854245398-1005";
ace.Properties["Trustee"].Value=trustee;
ace.Properties["AccessMask"].Value=2032127;
ace.Properties["AceFlags"].Value=3;
ace.Properties["AceType"].Value=0;
//复制一份访问控制列表,并将以上生成的访问控制项添加到其后。
ManagementBaseObject[] newDacl=new ManagementBaseObject[DaclObject.Length+1];
for(int i=0;i<DaclObject.Length;i++)
{
newDacl[i]=DaclObject[i];
}
newDacl[DaclObject.Length]=ace;
//将安全描述符的DACL属性设为新生成的访问控制列表
Descriptor.Properties["Dacl"].Value=newDacl;
//设置安全描述符
dir.Scope.Options.EnablePrivileges=true;
ManagementBaseObject inProperties=dir.GetMethodParameters("SetSecurityDescriptor");
inProperties["Descriptor"] = Descriptor;
outParams = dir.InvokeMethod("SetSecurityDescriptor", inProperties, null);
}
}
}