C#　Windows帐户和目录添加用户权限方法

Posted on 2010-08-27 10:50 linFen 阅读(1357) 评论(0) 编辑收藏举报
/// <summary> 

003
/// 目录权限 

004
/// </summary> 

005
public enum FloderRights 

006
{ 

007
    FullControl, 

008
    Read, 

009
    Write 

010
} 

011
 
012
    /// <summary> 

013
    /// 创建Windows帐户 

014
    /// </summary> 

015
    /// <param name="pathname"></param> 

016
    /// <returns></returns> 

017
    public static void CreateLocalUser(string username, string password, string description) 

018
    { 

019
        DirectoryEntry dirEntry = new DirectoryEntry("WinNT://" + Environment.MachineName + ",computer"); 

020
        var NewUser = dirEntry.Children.Add(username, "user"); 

021
        NewUser.Invoke("SetPassword", new object[] { password }); 

022
        NewUser.Invoke("Put", new object[] { "Description", description }); 

023
        NewUser.CommitChanges(); 

024
    } 

025
 
026
 
027
    /// <summary> 

028
    /// 更改Windows帐户密码 

029
    /// </summary> 

030
    /// <param name="username"></param> 

031
    /// <param name="oldPwd"></param> 

032
    /// <param name="newPwd"></param> 

033
    public static void ChangeWinUserPasswd(string username, string oldPwd, string newPwd) 

034
    { 

035
        DirectoryEntry dirEntry = new DirectoryEntry("WinNT://" + Environment.MachineName + ",computer"); 

036
        DirectoryEntry userEntry = dirEntry.Children.Find(username, "user"); 

037
        object[] password = new object[] { newPwd, oldPwd }; 

038
        object ret = userEntry.Invoke("ChangePassword", password); 

039
        userEntry.CommitChanges(); 

040
    } 

041
 
042
    /// <summary> 

043
    /// 给目录添加用户和权限 

044
    /// </summary> 

045
    /// <param name="pathname"></param> 

046
    /// <param name="username"></param> 

047
    /// <param name="qx"></param> 

048
    public static void AddPathRights(string pathname, string username, FloderRights qx) 

049
    { 

050
        DirectoryInfo dirinfo = new DirectoryInfo(pathname); 

051
        if ((dirinfo.Attributes & FileAttributes.ReadOnly) != 0) 

052
        { 

053
            dirinfo.Attributes = FileAttributes.Normal; 

054
        } 

055
        //取得访问控制列表 

056
        DirectorySecurity dirsecurity = dirinfo.GetAccessControl(); 

057
        // string strDomain = Dns.GetHostName(); 

058
        switch (qx) 

059
        { 

060
            case FloderRights.FullControl: 

061
                dirsecurity.AddAccessRule(new FileSystemAccessRule(username, FileSystemRights.FullControl, AccessControlType.Allow)); 

062
                break; 

063
            case FloderRights.Read: 

064
                dirsecurity.AddAccessRule(new FileSystemAccessRule(username, FileSystemRights.Read, AccessControlType.Allow)); 

065
                break; 

066
            case FloderRights.Write: 

067
                dirsecurity.AddAccessRule(new FileSystemAccessRule(username, FileSystemRights.Write, AccessControlType.Allow)); 

068
                break; 

069
            default: 

070
                dirsecurity.AddAccessRule(new FileSystemAccessRule(username, FileSystemRights.FullControl, AccessControlType.Deny)); 

071
                break; 

072
        } 

073
 
074
        dirinfo.SetAccessControl(dirsecurity); 

075
 
076
        //取消目录从父继承 

077
        DirectorySecurity dirSecurity = System.IO.Directory.GetAccessControl(pathname); 

078
        dirSecurity.SetAccessRuleProtection(true, false); 

079
        System.IO.Directory.SetAccessControl(pathname, dirSecurity); 

080
 
081
        //AccessControlType.Allow允许访问受保护对象//Deny拒绝访问受保护对象 

082
        //FullControl、Read 和 Write 完全控制,读,写 

083
        //FileSystemRights.Write写入//Delete删除 //DeleteSubdirectoriesAndFiles删除文件夹和文件//ListDirectory读取 

084
        //Modify读写删除-修改//只读打开文件和复制// 

085
    } 

086
 
087
    /// <summary> 

088
    /// 判断Windows用户是否存在 

089
    /// </summary> 

090
    /// <param name="username"></param> 

091
    /// <returns></returns> 

092
    public static bool ExistWinUser(string username) 

093
    { 

094
        try

095
        { 

096
            using (DirectoryEntry dirEntry = new DirectoryEntry("WinNT://" + Environment.MachineName + ",computer")) 

097
            { 

098
                //删除存在用户 

099
                var delUser = dirEntry.Children.Find(username, "user"); 

100
                return delUser != null; 

101
            } 

102
        } 

103
        catch

104
        { 

105
            return false; 

106
        } 

107
    } 

108
 
109
    /// <summary> 

110
    /// 删除Windows用户 

111
    /// </summary> 

112
    /// <param name="username"></param> 

113
    /// <returns></returns> 

114
    public static bool DeleteWinUser(string username) 

115
    { 

116
        try

117
        { 

118
            using (DirectoryEntry dirEntry = new DirectoryEntry("WinNT://" + Environment.MachineName + ",computer")) 

119
            { 

120
                //删除存在用户 

121
                var delUser = dirEntry.Children.Find(username, "user"); 

122
                if (delUser != null) 

123
                { 

124
                    dirEntry.Children.Remove(delUser); 

125
                } 

126
            } 

127
            return true; 

128
        } 

129
        catch

130
        { 

131
            return false; 

132
        } 

133
    }
刷新页面返回顶部
luluping

公告

C#　Windows帐户和目录添加用户权限方法

luluping

公告

C# Windows帐户和目录添加用户权限方法

C#　Windows帐户和目录添加用户权限方法
