tags:

views:

60

answers:

2
+1  Q: 

How to tell if current thread is impersonating?

I have a c++ application in which threads could impersonate using LogonUser/ImpersonateLoggedOnUser, and then revert impersonation using RevertToSelf. I ran across the bug which caused thread to impersonate this way twice. I want to prevent this by testing if current thread is already impersonating and throw exception if it is. Is there a way to tell if current thread is impersonating already?

+1  A: 

I expect you could do this using a convoluted sequence of Win32 API calls similar to these checks for thread running as Administrator.

However, it is far simpler (and better design) to ensure that impersonating threads always revert. You could brute force this using the Win32 APIs, but I believe you could also do this by creating a wrapper class that impersonates on construction and reverts when it goes out of scope, similar to the common lock guard model for exception-safe mutex/critical section handling. Even if you have more than a few places where your code does this, aligning them all on a reliable construct seems advisable.

Flow would then be:

{
  MyImpersonationClass newContext(desiredUser);  
      // constructor calls Impersonate, saving required info

  // do the code that requires impersonation here
}

// newContext goes out of scope, destructor calls RevertToSelf
Steve Townsend  2010-10-20 01:29:39
problem is that /*do the code that requires impersonation here*/ might be calling some code that attempts to impersonate and I want to block this behavior
galets  2010-10-20 21:14:13
@galets - have your constructor save something in TLS (thread-local storage) to prevent recursive impersonation. Destructor should reset this, of course.
Steve Townsend  2010-10-20 21:15:19
@Steve - doable...
galets  2010-10-21 16:25:54
+4  A: 

You can use OpenThreadToken. If a thread has a token then it is impersonating; if it doesn't have a token then it is not impersonating.

Luke  2010-10-20 02:14:15
+1 for the correct answer to the q as asked - personally, I would still prefer not to guess about this.
Steve Townsend  2010-10-20 02:31:46
thanks, let me test that and then I'll mark it as correct if it works out.
galets  2010-10-20 16:04:11

related questions

Of Memory Management, Heap Corruption, and C++
How do I make a GUI?
Alpha blending sprites in Nintendo DS Homebrew
Thread safe lazy contruction of a singleton in C++
Interview Programming Questions - In house Exam
Link issues (VC6)
What are the barriers to understanding pointers and what can be done to overcome them?
Why are professors or schools picking Java over C++ to teach to students?
What is the best way to create a sparse array in C++
C/C++ library for reading MIDI signals from a USB MIDI device
How do you pack a visual studio c++ project for release?
How to set up unit testing for Visual Studio C++
How do I configure and communicate with a serial port?
Lightweight IDE for Linux
Mapping Stream data to data structures in C#
CPU throttling in C++
Asynchronous multi-direction server-client communication over the same open socket?
Exceptions in C++
Heap corruption under Win32; how to locate?
Build for Windows NT 4.0 using Visual Studio 2005?
C++: Should I use nested classes in this case?
BerkeleyDB Concurrency
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
How to use the C socket API in C++ on z/OS