is_sudo 0.0.1

Checks whether the process is running as root/sudo/admin permission in Windows and Unix systems
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75

// Use std::io::Error::last_os_error for errors.
// NOTE: For this example I'm simple passing on the OS error.
// However, customising the error could provide more context
#[cfg(windows)]
pub fn check_main() {
    use std::io::Error;
    use std::ptr;

    use winapi::um::handleapi::CloseHandle;
    use winapi::um::processthreadsapi::{GetCurrentProcess, OpenProcessToken};
    use winapi::um::securitybaseapi::GetTokenInformation;
    use winapi::um::winnt::{TokenElevation, HANDLE, TOKEN_ELEVATION, TOKEN_QUERY};

    /// Returns true if the current process has admin rights, otherwise false.
    pub fn is_app_elevated() -> bool {
        _is_app_elevated().unwrap_or(false)
    }

    /// On success returns a bool indicating if the current process has admin rights.
    /// Otherwise returns an OS error.
    ///
    /// This is unlikely to fail but if it does it's even more unlikely that you have admin permissions anyway.
    /// Therefore the public function above simply eats the error and returns a bool.
    fn _is_app_elevated() -> Result<bool, Error> {
        let token = QueryAccessToken::from_current_process()?;
        token.is_elevated()
    }

    /// A safe wrapper around querying Windows access tokens.
    pub struct QueryAccessToken(HANDLE);
    impl QueryAccessToken {
        pub fn from_current_process() -> Result<Self, Error> {
            unsafe {
                let mut handle: HANDLE = ptr::null_mut();
                let result = OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &mut handle);

                if result != 0 {
                    Ok(Self(handle))
                } else {
                    Err(Error::last_os_error())
                }
            }
        }

        /// On success returns a bool indicating if the access token has elevated privilidges.
        /// Otherwise returns an OS error.
        pub fn is_elevated(&self) -> Result<bool, Error> {
            unsafe {
                let mut elevation = TOKEN_ELEVATION::default();
                let size = std::mem::size_of::<TOKEN_ELEVATION>() as u32;
                let mut ret_size = size;
                // The weird looking repetition of `as *mut _` is casting the reference to a c_void pointer.
                if GetTokenInformation(
                    self.0,
                    TokenElevation,
                    &mut elevation as *mut _ as *mut _,
                    size,
                    &mut ret_size,
                ) != 0
                {
                    Ok(elevation.TokenIsElevated != 0)
                } else {
                    Err(Error::last_os_error())
                }
            }
        }
    }
    impl Drop for QueryAccessToken {
        fn drop(&mut self) {
            if !self.0.is_null() {
                unsafe { CloseHandle(self.0) };
            }
        }
    }
}