private List <AclTableEntry> ParseTableEntries(ArraySegment <byte> tableSegment) { List <AclTableEntry> result; using (BinaryDeserializer binaryDeserializer = new BinaryDeserializer(tableSegment)) { List <AclTableEntry> list = FolderSecurity.AclTableEntry.ParseTableEntries <AclTableEntry>(binaryDeserializer.Reader, new Func <BinaryReader, AclTableEntry>(AclTableEntry.Parse)); HashSet <string> hashSet = null; if (list != null) { for (int i = 0; i < list.Count; i++) { AclTableEntry aclTableEntry = list[i]; if (aclTableEntry.MemberEntryId != null && aclTableEntry.MemberEntryId.Length != 0) { if (hashSet == null) { hashSet = new HashSet <string>(); } string text = AclHelper.LegacyDnFromEntryId(aclTableEntry.MemberEntryId); if (!hashSet.Add(text.ToLower())) { return(null); } } if (aclTableEntry.MemberId != 0L && aclTableEntry.MemberId != -1L) { aclTableEntry.SetMemberId(AclModifyTable.GetIdForSecurityIdentifier(aclTableEntry.SecurityIdentifier, null, this.coreFolder.AclTableIdMap)); } } } result = list; } return(result); }
public static bool TryGetUserFromEntryId(byte[] memberEntryId, StoreSession session, IRecipientSession recipientSession, LazilyInitialized <ExternalUserCollection> externalUsers, out string legacyDN, out SecurityIdentifier securityIdentifier, out List <SecurityIdentifier> sidHistory, out bool isGroup, out string displayName) { legacyDN = AclHelper.LegacyDnFromEntryId(memberEntryId); if (AddressBookEntryId.IsLocalDirctoryAddressBookEntryId(memberEntryId)) { sidHistory = null; return(AclHelper.ResolveLocalDirectoryUserFromAddressBookEntryId(memberEntryId, externalUsers, out securityIdentifier, out isGroup, out displayName)); } return(AclHelper.ResolveRecipientParametersFromLegacyDN(legacyDN, session, recipientSession, out securityIdentifier, out sidHistory, out isGroup, out displayName)); }
public void ApplyPendingChanges() { this.CheckDisposed(null); bool flag = (this.options & ModifyTableOptions.ExtendedPermissionInformation) == ModifyTableOptions.ExtendedPermissionInformation; IRecipientSession recipientSession = this.recipientSession; if (flag) { this.recipientSession = null; } try { if (!this.propertyTableRestrictionSuppressed && this.modifyTableRestriction != null) { this.modifyTableRestriction.Enforce(this, this.pendingModifyOperations); } if (this.replaceAllRows) { this.tableEntries.Clear(); } List <long> list = new List <long>(1); AclTableEntry.ModifyOperation[] array = (from op in this.pendingModifyOperations select AclTableEntry.ModifyOperation.FromModifyTableOperation(op)).ToArray <AclTableEntry.ModifyOperation>(); for (int i = 0; i < array.Length; i++) { AclTableEntry.ModifyOperation aclModifyOperation = array[i]; if ((aclModifyOperation.Entry.MemberRights & (MemberRights.FreeBusySimple | MemberRights.FreeBusyDetailed)) != MemberRights.None && (this.options & ModifyTableOptions.FreeBusyAware) != ModifyTableOptions.FreeBusyAware) { throw new InvalidParamException(new LocalizedString("F/B unaware clients sent F/B rights")); } switch (aclModifyOperation.Operation) { case ModifyTableOperationType.Add: { SecurityIdentifier securityIdentifier = null; List <SecurityIdentifier> sidHistory = null; bool flag2 = false; string memberName = null; string arg; if (flag) { arg = AclHelper.LegacyDnFromEntryId(aclModifyOperation.Entry.MemberEntryId); bool flag3 = false; bool flag4 = false; bool flag5 = false; foreach (PropValue propValue in this.pendingModifyOperations[i].Properties) { if (propValue.Property == PermissionSchema.MemberIsGroup) { flag3 = true; flag2 = (bool)propValue.Value; } else if (propValue.Property == PermissionSchema.MemberSecurityIdentifier) { flag5 = true; securityIdentifier = new SecurityIdentifier((byte[])propValue.Value, 0); } else if (propValue.Property == PermissionSchema.MemberName) { flag4 = true; memberName = (string)propValue.Value; } } if (!flag3 || !flag4 || !flag5) { throw new InvalidOperationException(string.Format("Required property is missing. IsGroupFound={0}, DisplayNameFound={1}, SecurityIdentifierFound={2}", flag3, flag4, flag5)); } } else if (!AclHelper.TryGetUserFromEntryId(aclModifyOperation.Entry.MemberEntryId, this.Session, this.recipientSession, new LazilyInitialized <ExternalUserCollection>(() => this.GetExternalUsers(this.Session)), out arg, out securityIdentifier, out sidHistory, out flag2, out memberName)) { ExTraceGlobals.StorageTracer.TraceWarning <string>(0L, "Cannot find recipient for LegDN {0}, skip this entry", arg); break; } aclModifyOperation.Entry.SetSecurityIdentifier(securityIdentifier, flag2); aclModifyOperation.Entry.SetMemberId(AclModifyTable.GetIdForSecurityIdentifier(securityIdentifier, sidHistory, this.coreFolder.AclTableIdMap)); aclModifyOperation.Entry.SetMemberName(memberName); int num = this.tableEntries.FindIndex((AclTableEntry aclTableEntry) => aclTableEntry.MemberId == aclModifyOperation.Entry.MemberId); if (num != -1) { this.tableEntries.RemoveAt(num); } this.FixRightsIfNeeded(aclModifyOperation.Entry); if (flag2) { this.tableEntries.Add(aclModifyOperation.Entry); } else if (this.tableEntries.Count == 0 || this.tableEntries[0].MemberId != 0L) { this.tableEntries.Insert(0, aclModifyOperation.Entry); } else { this.tableEntries.Insert(1, aclModifyOperation.Entry); } break; } case ModifyTableOperationType.Modify: { if (this.replaceAllRows && aclModifyOperation.Entry.MemberId != -1L && aclModifyOperation.Entry.MemberId != 0L) { throw new InvalidParamException(new LocalizedString("Modify with ReplaceAllRows")); } AclTableEntry aclTableEntry2 = this.tableEntries.Find((AclTableEntry aclTableEntry) => aclTableEntry.MemberId == aclModifyOperation.Entry.MemberId); if (aclTableEntry2 == null) { if (aclModifyOperation.Entry.MemberId == -1L) { aclTableEntry2 = AclModifyTable.BuildAnonymousDefaultEntry(); this.tableEntries.Add(aclTableEntry2); } else { if (aclModifyOperation.Entry.MemberId != 0L) { throw new ObjectNotFoundException(new LocalizedString("AclTableEntry not found")); } aclTableEntry2 = AclModifyTable.BuildEveryoneDefaultEntry(MemberRights.FreeBusySimple); this.tableEntries.Add(aclTableEntry2); } } this.FixRightsIfNeeded(aclModifyOperation.Entry); aclTableEntry2.MemberRights = aclModifyOperation.Entry.MemberRights; break; } case ModifyTableOperationType.Remove: { if (this.replaceAllRows) { throw new InvalidParamException(new LocalizedString("Remove with ReplaceAllRows")); } bool flag6 = false; for (int k = i + 1; k < array.Length; k++) { if (array[k].Operation == ModifyTableOperationType.Modify && aclModifyOperation.Entry.MemberId == array[k].Entry.MemberId) { flag6 = true; } } if (!flag6) { int num2 = this.tableEntries.FindIndex((AclTableEntry aclTableEntry) => aclTableEntry.MemberId == aclModifyOperation.Entry.MemberId); if (num2 == -1) { if (!list.Contains(aclModifyOperation.Entry.MemberId)) { throw new ObjectNotFoundException(new LocalizedString("AclTableEntry not found")); } } else { list.Add(aclModifyOperation.Entry.MemberId); this.tableEntries.RemoveAt(num2); } } break; } } } this.replaceAllRows = false; this.pendingModifyOperations.Clear(); this.Save(); } finally { this.recipientSession = recipientSession; } }