Location: Symbol Reference > Classes > TJwSecureRegistryKey Class
|
JWSCL Documentation
|
   |
   |
TJwSecureRegistryKey Class
|
JWSCL Documentation
|
|
|
TJwSecureRegistryKey = class(TJwSecureBaseClass);
TJwSecureRegistryKey provides access to registry key security information
|
Name |
Description |
|
The following tables list the members exposed by TJwSecureBaseClass. | |
|
The methods of the TJwSecureBaseClass class are listed here. |
|
Name |
Description |
|
The following tables list the members exposed by TJwSecureRegistryKey. | |
|
The methods of the TJwSecureRegistryKey class are listed here. | |
|
The properties of the TJwSecureRegistryKey class are listed here. |
|
|
Name |
Description |
 |
This function converts generic rights to specifc ones It can convert several generic rights. This function converts generic rights to specifc ones It can convert several generic rights. | |
|
|
This is HasValidHandle, a member of class TJwSecureBaseClass. | |
|
|
this procedure replaces GENERIC access masks in the DACL with specific mask using mapping GenericMapping this procedure replaces GENERIC access masks in the DACL with specific mask using mapping GenericMapping |
|
|
Name |
Description |
 |
This is the overview for the AccessCheck method overload. | |
|
|
AccessCheckAndAuditAlarm. See http://msdn2.microsoft.com/en-us/library/aa374823.aspx for more information. Not tested yet! | |
|
|
CheckKeyNameValidity checks if a given KeyName is a correct key path. The keyname is correct if it has the following structure: "\serverrootsubkey" (UNC) or "rootsubkey" (standard) If the keyname is incorrect an exception is raised. | |
|
|
GetDACL returns the DACL of the file object. | |
|
|
GetGroup returns the group of the file object. | |
|
|
GetInheritanceSource retrieves the source if inheritance for the ACEs in the ACL of the given object. See MSDN http://msdn2.microsoft.com/en-us/library/aa446640.aspx. | |
|
|
This is the overview for the GetKeyInheritanceSource method overload. | |
|
|
GetMandatoryLabel returns the mandatory level of the object. The object is retrieved from the SACL. Its only supported on Windows Vista and newer. | |
|
|
GetOwner returns the owner of the file object. | |
|
|
GetSACL returns the SACL of the file object. You need to have SE_SECURITY_NAME privilege be enabled otherwise the call fails. | |
|
|
GetSecurityDescriptor returns a security descriptor of the file with specified SD entries given in parameter SD_entries. | |
|
|
GetSecurityDescriptorEx tries to get the security descriptor of a local or remote registry key. To connect to a remote registry use a UNC path (\serverrootsubkey) in parameter KeyName. | |
|
| ||
|
|
GetTempGroup returns the group of a file object. It does the same like GetGroup but the return value is stored and used as a cache. Consequently the returned instance must not be freed! The first call gets the file object owner. The following calls use the data from the first call. | |
|
|
GetTempOwner returns the owner of a file object. It does the same like GetOwner but the return value is stored and used as a cache. Consequently the returned instance must not be freed! The first call gets the file object owner. The following calls use the data from the first call. | |
|
| ||
|
|
ParseUNC retrieves from a UNC key name the server name, the root key and the sub key (if any). If the given KeyName is not a UNC path the return value is false and the output parameter Server is empty. The server name can also be the local computer name, "local" or "localhost". The last two names are automatically translated into the computer name and returned in parameter Server. | |
|
|
This is the overview for the RemoveInheritanceFlow method overload. | |
|
|
ResetTemp resets the cache. Subsequent calls to GetTempXXX will not use the cache instead it calls the security winapi functions. | |
|
|
This is the overview for the RestoreInheritanceFlow method overload. | |
|
|
SetDACL sets the DACL of the file object. You need WRITE_DACL rights to set the DACL or the curren token must be the owner. If you want to replace an existing DACL completly, you have to first call SetDACL with a nil list-Parameter. This creates a NULL DACL (with everybody has access to it) Afterwards you can set a new DACL to the file. So nobody can hijack the file you should also open the file exclusively and do not use the SetNamedXXX methods. New You can also use apProtected to remove inherited ACEs (replace an existing DACL completly). The... more | |
|
|
SetGroup sets the group of the file object. The SID is copied into the file object. | |
|
|
SetMandatoryLabel sets the mandatory level of the object. | |
|
|
SetOwner sets the owner of the file object. You need WRITE_DACL and WRITE_OWNER rights to set the DACL or the privilege SE_TAKE_OWNERSHIP must be enabled. To make a successfull call the ID must be the user of the thread calling this function. Only a user with enough rights can take ownership to his username. To set the owner to a different user as the token owner the user must be logged on (using LogonUser or similar), the thread must be impersonated to this user and the SetOwner is called in this thread. The SID is copied into the file object.... more | |
|
| ||
|
|
SetSecurityDescriptor sets the security descriptor of the registry key. It simply calls all SetXXX methods if defined in SD_entries. If a entry of the SD cannot be set an exception is raised and the rest is dismissed. However all entries that were successfully set before the exception are stored into the key security. The following values are ignored in SD_entries:
Instead use TJwSecurityDescriptor.InheritanceDACLProtection or TJwSecurityDescriptor.InheritanceSACLProtection to control inheritance. | |
|
|
SetSecurityDescriptorEx tries to set the security descriptor of a local or remote registry key. To connect to a remote registry use a UNC path (\serverrootsubkey) in parameter KeyName. | |
|
|
This is the overview for the TakeOwnerShip method overload. | |
|
|
TreeKeySetNamedSecurityInfo sets or resets the security information of a registry key. The process can be observed by a callback method or function. This method can be run in a seperate thread so that it immediately returns. This method cannot restore the security information for a locked out user without using SeBackupPrivilege privilege. | |
|
|
TreeResetNamedSecurityInfo sets the securiy information of a folder and all its children. See MSDN for more information http://msdn2.microsoft.com/en-us/library/aa965849.aspx. This function needs Windows XP or higher. This method can restore the security information for a locked out user without using SeBackupPrivilege privilege. It uses a highly privileged system accout to do this. Both callback methods can be used at the same time. If both are not nil, they are called in the following order : FNProgressMethod, FNProgressProcedure. Exceptions are caught in these calls. |
|
|
Name |
Description |
 | ||
 |
DACL returns a cached version of the file object DACL | |
|
|
Group return a cached version of the file object group | |
|
|
Handle returns the handle of the currently used file object. If the instance was created using a filename the Handle is 0. It will be automatically freed. | |
|
|
Owner return a cached version of the file object owner | |
|
|
SACL returns a cached version of the file object SACL |
|
Copyright (c) 2010. All rights reserved.
This help was created by Doc-O-Matic sponsored by toolsfactory software inc. |
|
What do you think about this topic? Send feedback!
|
