tags:

views:

392

answers:

3
Q: 

Can I change the owner of the file saved through IIS (with ASP.NET)

Is there a way to change owner of saved file using IIS on Windows Server. The easier the better. It doesn't matter either this will have to be done during saving or changing file owner after file is already saved to disc. An example in ASP.NET is highly apriciated.

A: 

While this is not a customized example, I believe your answer lies in the System.Security.AccessControl namespace.

Take a look at the FileSecurity Class which lets you identify rules and permissions. The FileSecurity class is used by methods such as File.Create().

Vaibhav  2009-01-28 17:07:47
+1  A: 

In theory it should be fairly straight forward. You should be able to do something like this to change the ownership of an existing file:

string domain = "domain";
string user = "username";

FileInfo info = new FileInfo(@"c:\test.txt");

FileSecurity security = info.GetAccessControl();

System.Security.Principal.NTAccount newOwner =
    new System.Security.Principal.NTAccount(domain, user);

security.AddAccessRule(
        new FileSystemAccessRule(newOwner, FileSystemRights.FullControl,
            AccessControlType.Allow));
security.SetAccessRuleProtection(true, false);
security.SetOwner(newOwner);

info.SetAccessControl(security);

In practice however this doesn't actually work because of a limitation that Windows imposes. Windows won't allow you to the change the owner of the file to anything other than the current user or the administrators group.

When it hits the last line you will get the exception "The security identifier is not allowed to be the owner of this object".

Googling suggests that it may be possible to work round this problem, but I have failed to get the work arounds to work when I have tried in the past. I'd be very interested to hear if anyone had successfully achieved the work around.

andynormancx  2009-01-28 18:12:28
A: 

A user can assign ownership to other users if they have the Restore Files and Directories privilege. This is disabled by default so you need to enable it before trying to set the owner. .Net doesn't have built in support for this so you'll need to PInvoke AdjustTokenPrivileges and use other unmanaged functions to get the inputs to this.

I've written a detailed description of its use on my blog

Richard Willis  2009-10-26 00:44:18

related questions

Is it better to create Model classes, or just stick with generic database utility class?
What are effective options for embedding video in an ASP.NET web site?
Visual Studio 2008 debugger already attached work-around
Tracking state using ASP.NET AJAX / ICallbackEventHandler
ASP.NET Display SVN Revision Number
ASP.NET URL Rewriting
How can I change the background of a masterpage from the code behind of a content page?
Easy way to AJAX WebControls
How do I define custom web.config sections with potential child elements and attributes for the properties?
ASP.NET MVC "CRUD" Database Sample
Are Multiple DataContext classes ever appropriate?
How to RedirectToAction in ASP.NET MVC without losing request data
Triple Quotes? How do I delimit a databound Javascript string parameter in ASP.NET?
ASP.NET built in user profile, Vs old stile user class/tables
What's a good book for learning ASP?
Bandwith throttling in IIS 6 by IP Address
ASP .Net Custom Client-Side Validation
How to get the value of built, encoded ViewState?
Decent, simple, GIS/mapping component for ASP.NET?
Checklist for IIS 6/ASP.NET Windows Authentication?
How to write to Web.Config in Medium Trust ?
ASP.NET, Visual Studio and Subversion - how to integrate?
Floating Point Number parsing: Is there a Catch All algorithm?
How do I sync the SVN revision number with my ASP.NET web site?
ASP.NET Site Maps