工作用到了,記錄一下,就是網路路徑上有個共用目錄,給你分配一個帳號和密碼 有一定的許可權可以讀寫,不用在設定檔中做修改,比較安全。 採用WindowsIdentity.Impersonate 方法。希望給用到的朋友。
主要的類IdentityScope
using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Runtime.InteropServices;
/// <summary>
///IdentityScope 的摘要說明
/// </summary>
public class IdentityScope : IDisposable
{
// obtains user token
[DllImport("advapi32.dll", SetLastError = true)]
static extern bool LogonUser(string pszUsername, string pszDomain, string pszPassword,int dwLogonType, int dwLogonProvider, ref IntPtr phToken);
// closes open handes returned by LogonUser
[DllImport("kernel32.dll", CharSet = CharSet.Auto)]
extern static bool CloseHandle(IntPtr handle);
[DllImport("Advapi32.DLL")]
static extern bool ImpersonateLoggedOnUser(IntPtr hToken);
[DllImport("Advapi32.DLL")]
static extern bool RevertToSelf();
// logon types
const int LOGON32_LOGON_INTERACTIVE = 2;
const int LOGON32_LOGON_NETWORK = 3;
const int LOGON32_LOGON_NEW_CREDENTIALS = 9;
// logon providers
const int LOGON32_PROVIDER_DEFAULT = 0;
const int LOGON32_PROVIDER_WINNT50 = 3;
const int LOGON32_PROVIDER_WINNT40 = 2;
const int LOGON32_PROVIDER_WINNT35 = 1;
private bool disposed;
/// <summary>
/// 登入
/// </summary>
/// <param name="sUsername">使用者名稱</param>
/// <param name="sDomain">第二個參數是網域名稱,有網域名稱的話寫網域名稱,沒有網域名稱寫目標機器的IP·</param>
/// <param name="sPassword">密碼</param>
public IdentityScope(string sUsername, string sDomain, string sPassword)
{
// initialize tokens
IntPtr pExistingTokenHandle = new IntPtr(0);
IntPtr pDuplicateTokenHandle = new IntPtr(0);
try
{
// get handle to token
bool bImpersonated = LogonUser(sUsername, sDomain, sPassword, LOGON32_LOGON_INTERACTIVE, LOGON32_PROVIDER_DEFAULT, ref pExistingTokenHandle);
if (true == bImpersonated)
{
if (!ImpersonateLoggedOnUser(pExistingTokenHandle))
{
int nErrorCode = Marshal.GetLastWin32Error();
throw new Exception("ImpersonateLoggedOnUser error;Code=" + nErrorCode);
}
}
else
{
int nErrorCode = Marshal.GetLastWin32Error();
throw new Exception("LogonUser error;Code=" + nErrorCode);
}
}
finally
{
// close handle(s)
if (pExistingTokenHandle != IntPtr.Zero)
CloseHandle(pExistingTokenHandle);
if (pDuplicateTokenHandle != IntPtr.Zero)
CloseHandle(pDuplicateTokenHandle);
}
}
protected virtual void Dispose(bool disposing)
{
if (!disposed)
{
RevertToSelf();
disposed = true;
}
}
public void Dispose()
{
Dispose(true);
}
}
調用
using (IdentityScope c = new IdentityScope("使用者名稱", "域/IP", "密碼"))
{
string[] filelist = System.IO.Directory.GetDirectories(@"\\192.168.1.7\Test");
}
注意:
1.如果你所訪問的電腦位於域內,調用時傳入域的名字,並且修改
bool
bImpersonated = LogonUser(sUsername, sDomain, sPassword, LOGON32_LOGON_INTERACTIVE, LOGON32_PROVIDER_DEFAULT, ref pExistingTokenHandle);
2.如果你所訪問的電腦不在域內,調用是傳入IP即可,並修改
bool bImpersonated = LogonUser(sUsername, sDomain, sPassword, LOGON32_LOGON_NEW_CREDENTIALS, LOGON32_PROVIDER_DEFAULT, ref pExistingTokenHandle);
3.有時報“登入失敗: 未知的使用者名稱或錯誤密碼” 錯誤,就說明你的參數傳錯了,注意下LogonUser的第四個參數
4.每個人遇到的情況可能不一樣,但是希望給大家有所協助
MSDN:
http://msdn.microsoft.com/zh-cn/library/w070t6ka.aspx