Delphi - how to check for any windows user if it is an administrator? -


i need check kind of accounts available on local machine.

i found how can current logged user:

function iswindowsadmin: boolean; var    haccesstoken: thandle;    ptggroups: ptokengroups;    dwinfobuffersize: dword;    psidadministrators: psid;    g: integer;    bsuccess: bool; begin    result:= false;    bsuccess:= openthreadtoken(getcurrentthread, token_query, true, haccesstoken);    if not bsuccess    begin      if getlasterror = error_no_token        bsuccess:= openprocesstoken(getcurrentprocess, token_query, haccesstoken);    end;     if bsuccess    begin      getmem(ptggroups, 1024);      bsuccess:= gettokeninformation(haccesstoken, tokengroups, ptggroups, 1024, dwinfobuffersize);      closehandle(haccesstoken);      if bsuccess      begin        allocateandinitializesid(security_nt_authority, 2,                                 security_builtin_domain_rid, domain_alias_rid_admins,                                 0, 0, 0, 0, 0, 0, psidadministrators);        g:= 0 ptggroups.groupcount - 1          if equalsid(psidadministrators, ptggroups.groups[g].sid)          begin            result:= true;            break;          end;        freesid(psidadministrators);      end;      freemem(ptggroups);    end; end;

i found how users on local machine. possible check user if administrator or limited account without having log in each , every user?

here's take on subject, sertac akyuz hint netuserenum user_info_2 request , structure.

we can request users following privilege levels

const   user_priv_guest = 0;   user_priv_user  = 1;   user_priv_admin = 2;   user_priv_any   = 3; // own invention  type   tprivlevel = user_priv_guest..user_priv_any;

some declarations need

const   // consts   nerr_success = 0;   max_preferred_length = $ffffffff;  type   netapistatus = dword;  // https://msdn.microsoft.com/en-us/library/windows/desktop/aa371337(v=vs.85).aspx   tuserinfo2 = record     usri2_name: lpwstr ;     usri2_password: lpwstr ;     usri2_password_age: dword  ;     usri2_priv: dword  ;     usri2_home_dir: lpwstr ;     usri2_comment: lpwstr ;     usri2_flags: dword  ;     usri2_script_path: lpwstr ;     usri2_auth_flags: dword  ;     usri2_full_name: lpwstr ;     usri2_usr_comment: lpwstr ;     usri2_parms: lpwstr ;     usri2_workstations: lpwstr ;     usri2_last_logon: dword  ;     usri2_last_logoff: dword  ;     usri2_acct_expires: dword  ;     usri2_max_storage: dword  ;     usri2_units_per_week: dword  ;     usri2_logon_hours: pbyte  ;     usri2_bad_pw_count: dword  ;     usri2_num_logons: dword  ;     usri2_logon_server: lpwstr ;     usri2_country_code: dword  ;     usri2_code_page: dword  ;   end;   puser_info_2 = ^tuserinfo2;   lpuser_info_2 = ^tuserinfo2;   // https://msdn.microsoft.com/en-us/library/windows/desktop/aa370304(v=vs.85).aspx function netapibufferfree (buffer: pointer): netapistatus ;                      stdcall; external 'netapi32.dll';  // https://msdn.microsoft.com/en-us/library/windows/desktop/aa370652%28v=vs.85%29.aspx function netuserenum(   servername: lpcwstr;   level: dword;   filter: dword;   var bufptr: pointer;   prefmaxlen: dword;   var entriesread: dword;   var totalentries: dword;   resume_handle: lpdword ): netapistatus; stdcall; external 'netapi32.dll';

and procedure privlevel privilege level asking users , users tstringlist populated user names.

function getusers(privlevel: tprivlevel; users: tstrings): integer; var   i: integer;   netapistatus: dword;   bufptr: pointer;   recptr: puser_info_2;   entriesread,   totalentries,   hresume: dword; begin   hresume := 0;    repeat     netapistatus := netuserenum(       nil,                         // local       2,                           // user_info_2       0,                           // no special filter       bufptr,       max_preferred_length,       entriesread,       totalentries,       @hresume     );      if (netapistatus = nerr_success) or (netapistatus = error_more_data)     begin       recptr := bufptr;       := 0 entriesread-1       begin         if (privlevel = user_priv_any) or (recptr^.usri2_priv = privlevel)           users.add(recptr^.usri2_name);         inc(recptr);       end;       netapibufferfree(bufptr);     end;    until netapistatus <> error_more_data;   result := netapistatus; end;

example of usage

procedure tform1.button1click(sender: tobject); var   res: integer; begin   res := getusers(user_priv_admin, memo.lines);   if res <> 0 memo.lines.add('error getting users! error code '+inttostr(res)); end;

edit

i changed getusers() function , return success/error code call netuserenum()

likely return values according documentation

nerr_success = 0 error_access_denied  =    5; // $0005 error_invalid_level  =  124; // $007c error_more_data      =  234; // $00ea nerr_buftoosmall     = 2123; // $084b nerr_invalidcomputer = 2351; // $092f

Comments

Post a Comment

Popular posts from this blog

networking - Vagrant-provisioned VirtualBox VM is not reachable from Ubuntu host -

this question exact duplicate of: puphpet/vagrant: unable access lamp vm ip address 1 answer i following basic vagrant tutorial , vagrant provisions box on ubuntu without complaining. moreover, can vagrant ssh vm. however, vm not reachable host: it's not possible ping it's ip address. what have achieved: installed virtualbox (5.1.24 r117012 (qt5.5.1)) , vagrant (1.9.7) onto ubuntu (16.04.2 lts) machine. provisioned vm vagrant up , vagrant finishes job , not complain. vagrant ssh works. i have manually installed lighttpd on guest vm , can ping/curl address: localhost within guest vm. this when trying reach guest vm host: ~/tmp/myfirstvagrantproject$ ping 172.22.22.22 ping 172.22.22.22 (172.22.22.22) 56(84) bytes of data. ... icmp_seq=4 destination net unreachable ... 171 packets transmitted, 0 received, +21 errors, 100% packet loss, time 173
Read more

c# - ASP.NET Core - There is already an object named 'AspNetRoles' in the database -

i'm receiving error applicationdbcontext database when trying update entity framework. i've googled, tried fixes here on so, no avail. i'm deleting database each time make change, once deploy, not option. here's error: pm> update-database -context applicationdbcontext system.data.sqlclient.sqlexception: there object named 'aspnetroles' in database. @ system.data.sqlclient.sqlconnection.onerror(sqlexception exception, boolean breakconnection, action 1 wrapcloseinaction) @ system.data.sqlclient.tdsparser.throwexceptionandwarning(tdsparserstateobject stateobj, boolean callerhasconnectionlock, boolean asyncclose) @ system.data.sqlclient.tdsparser.tryrun(runbehavior runbehavior, sqlcommand cmdhandler, sqldatareader datastream, bulkcopysimpleresultset bulkcopyhandler, tdsparserstateobject stateobj, boolean& dataready) @ system.data.sqlclient.sqlcommand.runexecutenonquerytds(string methodname, boolean async, int32 timeout, boolean
Read more

ruby on rails - ArgumentError: Missing host to link to! Please provide the :host parameter, set default_url_options[:host], or set :only_path to true -

i have built module in solidus , ruby on rails , try create tests. i trying create integration tests , have error: e error: prescriptionphotostest#test_/prescription_photos_post_endpoint_throws_an_error_when_wrong_params: argumenterror: missing host link to! please provide :host parameter, set default_url_options[:host], or set :only_path true test/integration/prescription_photos_test.rb:6:in `block in ' i read this , this , doesn't make difference. my code returning error on line: @user = factorygirl.create(:user) here code files. prescription_photos_rest.rb require 'test_helper' class prescriptionphotostest < actiondispatch::integrationtest setup spree::auth::config[:confirmable] = false @user = factorygirl.create(:user) end def authenticated_header token = knock::authtoken.new(payload: { sub: @user.id }).token { 'authorization': "bearer #{token}" } end test '/prescription_p
Read more