c# 给文件/文件夹 管理用户权限
生活随笔
收集整理的這篇文章主要介紹了
c# 给文件/文件夹 管理用户权限
小編覺得挺不錯(cuò)的,現(xiàn)在分享給大家,幫大家做個(gè)參考.
?
public class PermissionManager{/// <summary>/// 為文件添加users,everyone用戶組的完全控制權(quán)限/// </summary>/// <param name="filePath"></param>public static void AddSecurityControll2File(string filePath){//獲取文件信息FileInfo fileInfo = new FileInfo(filePath);//獲得該文件的訪問(wèn)權(quán)限System.Security.AccessControl.FileSecurity fileSecurity = fileInfo.GetAccessControl();//添加ereryone用戶組的訪問(wèn)權(quán)限規(guī)則 完全控制權(quán)限fileSecurity.AddAccessRule(new FileSystemAccessRule("Everyone", FileSystemRights.FullControl, AccessControlType.Allow));//添加Users用戶組的訪問(wèn)權(quán)限規(guī)則 完全控制權(quán)限fileSecurity.AddAccessRule(new FileSystemAccessRule("Users", FileSystemRights.FullControl, AccessControlType.Allow));//設(shè)置訪問(wèn)權(quán)限 fileInfo.SetAccessControl(fileSecurity);}/// <summary>///為文件夾添加users,everyone用戶組的完全控制權(quán)限/// </summary>/// <param name="dirPath"></param>public static void AddSecurityControll2Folder(string dirPath){//獲取文件夾信息DirectoryInfo dir = new DirectoryInfo(dirPath);//獲得該文件夾的所有訪問(wèn)權(quán)限System.Security.AccessControl.DirectorySecurity dirSecurity = dir.GetAccessControl(AccessControlSections.All);//設(shè)定文件ACL繼承InheritanceFlags inherits = InheritanceFlags.ContainerInherit | InheritanceFlags.ObjectInherit;//添加ereryone用戶組的訪問(wèn)權(quán)限規(guī)則 完全控制權(quán)限FileSystemAccessRule everyoneFileSystemAccessRule = new FileSystemAccessRule("Everyone", FileSystemRights.FullControl, inherits, PropagationFlags.None, AccessControlType.Allow);//添加Users用戶組的訪問(wèn)權(quán)限規(guī)則 完全控制權(quán)限FileSystemAccessRule usersFileSystemAccessRule = new FileSystemAccessRule("Users", FileSystemRights.FullControl, inherits, PropagationFlags.None, AccessControlType.Allow);bool isModified = false;dirSecurity.ModifyAccessRule(AccessControlModification.Add, everyoneFileSystemAccessRule, out isModified);dirSecurity.ModifyAccessRule(AccessControlModification.Add, usersFileSystemAccessRule, out isModified);//設(shè)置訪問(wèn)權(quán)限 dir.SetAccessControl(dirSecurity);}/// <summary>/// 為文件夾移除某個(gè)用戶的權(quán)限/// </summary>/// <param name="dirName"></param>/// <param name="username"></param>static void removePermissions(string dirName, string username){string user = System.Environment.UserDomainName + "\\" + username;DirectoryInfo dirinfo = new DirectoryInfo(dirName);DirectorySecurity dsec = dirinfo.GetAccessControl(AccessControlSections.All);AuthorizationRuleCollection rules = dsec.GetAccessRules(true, true, typeof(System.Security.Principal.NTAccount));foreach (AccessRule rule in rules){if (rule.IdentityReference.Value == user){bool value;dsec.PurgeAccessRules(rule.IdentityReference);dsec.ModifyAccessRule(AccessControlModification.RemoveAll, rule, out value);}}}/// <summary>/// 項(xiàng)目中用,文件夾只保留everyone權(quán)限,其中允許用戶讀,但不允許寫/// by the way,代碼結(jié)果是給文件夾一個(gè)特殊權(quán)限,點(diǎn)進(jìn)去高級(jí)看,會(huì)發(fā)現(xiàn)這個(gè)特殊權(quán)限的子項(xiàng)和寫入權(quán)限的子項(xiàng)是一樣的/// </summary>/// <param name="dirName"></param>public static void OnlyKeepEveryonePermissionsWithWriteNotAllowed(string dirName){DirectoryInfo dirinfo = new DirectoryInfo(dirName);DirectorySecurity objSecObj = dirinfo.GetAccessControl();AuthorizationRuleCollection acl = objSecObj.GetAccessRules(true, true,typeof(System.Security.Principal.NTAccount));objSecObj.SetAccessRuleProtection(true, false); //to remove inherited permissionsforeach (FileSystemAccessRule ace in acl) //to remove any other permission {objSecObj.PurgeAccessRules(ace.IdentityReference); //same as use objSecObj.RemoveAccessRuleSpecific(ace); }InheritanceFlags inherits = InheritanceFlags.ContainerInherit | InheritanceFlags.ObjectInherit;FileSystemAccessRule everyoneFileSystemAccessRule = new FileSystemAccessRule("Everyone", FileSystemRights.ReadAndExecute | FileSystemRights.ListDirectory | FileSystemRights.Read, inherits, PropagationFlags.None, AccessControlType.Allow);FileSystemAccessRule everyoneFileSystemAccessRule2 = new FileSystemAccessRule("Everyone", FileSystemRights.Write, AccessControlType.Deny);bool isModified = false;objSecObj.ModifyAccessRule(AccessControlModification.Add, everyoneFileSystemAccessRule2, out isModified);objSecObj.ModifyAccessRule(AccessControlModification.Add, everyoneFileSystemAccessRule, out isModified);dirinfo.SetAccessControl(objSecObj);}}?寫入:
代碼生成的特殊權(quán)限
?
?其實(shí)權(quán)限是一樣的
?
轉(zhuǎn)載于:https://www.cnblogs.com/swobble/p/11198765.html
總結(jié)
以上是生活随笔為你收集整理的c# 给文件/文件夹 管理用户权限的全部?jī)?nèi)容,希望文章能夠幫你解決所遇到的問(wèn)題。
- 上一篇: .Net软件测试指南 第一章 用.net
- 下一篇: 穷不过三代,囧不过三个公司——程序员如何