public RESTStatus ListPolicies(SQLLib sql, object dummy, NetworkConnectionInfo ni, NameValueCollection QueryString) { if (ni.HasAcl(ACLFlags.ChangeServerSettings) == false) { ni.Error = "Access denied"; ni.ErrorID = ErrorFlags.AccessDenied; return(RESTStatus.Denied); } if (QueryString["MachineID"] != null && QueryString["Grouping"] != null) { ni.Error = "Invalid data"; ni.ErrorID = ErrorFlags.InvalidData; return(RESTStatus.Fail); } PolicyList = new PolicyObjectList(); PolicyList.Items = new List <PolicyObject>(); bool AllPolicies = true; bool WithData = false; int tmp; int.TryParse(QueryString["AllPolicies"] == null ? "1" : QueryString["AllPolicies"], out tmp); AllPolicies = tmp == 1 ? true : false; int.TryParse(QueryString["WithData"] == null ? "0" : QueryString["WithData"], out tmp); WithData = tmp == 1 ? true : false; lock (ni.sqllock) { SqlDataReader dr = null; if (AllPolicies == true) { dr = sql.ExecSQLReader("select * from Policies order by Name"); } else { dr = sql.ExecSQLReader("select * from Policies where " + (QueryString["Grouping"] == null ? " Grouping is null AND " : " Grouping=@grouping AND ") + (QueryString["MachineID"] == null ? " MachineID is null " : " MachineID=@machineid ") + " order by Name", new SQLParam("@machineid", QueryString["MachineID"]), new SQLParam("@grouping", QueryString["Grouping"])); } while (dr.Read()) { PolicyList.Items.Add(LoadPolicyDB(dr, WithData, false)); } dr.Close(); } return(RESTStatus.Success); }
public static List <PolicyObject> GetPolicyForComputerInternal(SQLLib sql, string MachineID) { PolicyObjectList PolicyListSigned = new PolicyObjectList(); PolicyListSigned.Items = new List <PolicyObject>(); SqlDataReader dr; dr = sql.ExecSQLReader("SELECT * FROM Policies WHERE MachineID=@m AND Enabled=1", new SQLParam("@m", MachineID)); while (dr.Read()) { PolicyObject obj = LoadPolicyDB(dr, false, false); PolicyListSigned.Items.Add(obj); } dr.Close(); Int64? GroupID = null; object sqlo = sql.ExecSQLScalar("select Grouping from ComputerAccounts where MachineID=@m", new SQLParam("@m", MachineID)); if (sqlo is DBNull || sqlo == null) { GroupID = null; } else { GroupID = Convert.ToInt64(sqlo); } do { dr = sql.ExecSQLReader("SELECT * FROM Policies WHERE " + (GroupID == null ? "Grouping is NULL" : "Grouping=@g") + " AND Enabled=1 AND MachineID is NULL", new SQLParam("@g", GroupID)); while (dr.Read()) { PolicyObject obj = LoadPolicyDB(dr, false, false); PolicyListSigned.Items.Add(obj); } dr.Close(); if (GroupID != null) { sqlo = sql.ExecSQLScalar("select ParentID FROM Grouping WHERE ID=@g", new SQLParam("@g", GroupID)); if (sqlo is DBNull || sqlo == null) { GroupID = null; } else { GroupID = Convert.ToInt64(sqlo); } } else { break; } } while (true); PolicyListSigned.Items.Reverse(); Int64 Count = 1; foreach (PolicyObject p in PolicyListSigned.Items) { p.Order = Count; Count++; } #region Resolve Linked Policies for client for (int i = 0; i < PolicyListSigned.Items.Count; i++) { PolicyObject pol = PolicyListSigned.Items[i]; if (pol.Type == PolicyIDs.LinkedPolicy) { List <Int64> RunningIDs = new List <Int64>(); PolicyObject po = pol; while (true) { if (RunningIDs.Contains(po.ID) == true) { FoxEventLog.WriteEventLog("Policy ID " + pol.ID.ToString() + " (" + pol.Name + ") creates a loop!", System.Diagnostics.EventLogEntryType.Warning); break; } RunningIDs.Add(po.ID); Int64 PolID; po.Data = Convert.ToString(sql.ExecSQLScalar("SELECT DataBlob FROM Policies WHERE ID=@id", new SQLParam("@id", po.ID))); if (Int64.TryParse(po.Data, out PolID) == false) { FoxEventLog.WriteEventLog("Cannot read data of policy ID " + po.ID.ToString() + " (" + po.Name + ") for linking.", System.Diagnostics.EventLogEntryType.Warning); break; } if (Policies.PolicyExsits(sql, PolID) == false) { FoxEventLog.WriteEventLog("Policy ID " + PolID.ToString() + " referencing from " + po.ID.ToString() + " (" + po.Name + ") does not exist.", System.Diagnostics.EventLogEntryType.Warning); break; } if (Convert.ToInt32(sql.ExecSQLScalar("SELECT Enabled FROM Policies WHERE ID=@id", new SQLParam("@id", PolID))) != 1) { break; } dr = sql.ExecSQLReader("SELECT * FROM Policies WHERE ID=@id", new SQLParam("@id", PolID)); dr.Read(); po = LoadPolicyDB(dr, false, false); dr.Close(); if (po == null) { FoxEventLog.WriteEventLog("Cannot read policy ID for linking " + PolID.ToString(), System.Diagnostics.EventLogEntryType.Warning); break; } if (po.Type != PolicyIDs.LinkedPolicy) { pol = po; PolicyListSigned.Items[i] = po; break; } } } } #endregion return(PolicyListSigned.Items); }