win_run 0.1.1

Run any executable as User, Admin or Local System from a Windows Service.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94

/*!
Crate `win_run` allows Windows Services to run any executable as User, Admin or Local System.

# Important
In order for any of the functions offered by the library to work they must be executed from a Windows Service!

# Usage
To use this crate, add `win_run` as a dependency to your project's `Cargo.toml`:
```toml
[dependencies]
win_run = "0.1.1"
```

# Example: Start a process as Admin on the Default desktop:
```
use win_run::{Desktop, Elevation, run};

run("/executable/path", "args", "/current/directory/", Desktop::Default, Elevation::Admin)?;
```

# Example: Start a process as Local System on the Secure desktop:
```
use win_run::{Desktop, Elevation, run};

run("/executable/path", "args", "/current/directory/", Desktop::Secure, Elevation::LocalSystem)?;
```
 */

mod safe_windows_bindings;

use crate::safe_windows_bindings::high_level::{
    add_admin_privileges_to_token, create_process_with_token, get_current_user_token,
    get_process_pid, get_process_token,
};

pub enum Elevation {
    User,
    Admin,
    LocalSystem,
}

pub enum Desktop {
    Default,
    Secure,
}

/// Runs an executable with specified access rights and settings
///
/// # Arguments
///
/// * `path` - The path to the executable.
/// * `args` - Arguments with which to execute.
/// * `directory` - Directory from which to run the executable.
/// * `desktop` - Desktop on which the executable should run.
/// * `elevation` - User as which to run the executable.
pub fn run(
    path: &str,
    args: &str,
    directory: &str,
    desktop: Desktop,
    elevation: Elevation,
) -> Result<(), String> {
    let application_name = path;

    let command_line = format!("{path} {args}");

    let current_directory = directory;

    let desktop = match desktop {
        Desktop::Default => "",
        Desktop::Secure => "WinSta0\\Winlogon",
    };

    let token = match elevation {
        Elevation::User => get_current_user_token()?,
        Elevation::Admin => {
            let mut current_user_token = get_current_user_token()?;
            current_user_token = add_admin_privileges_to_token(current_user_token)?;
            current_user_token
        }
        Elevation::LocalSystem => {
            let process_pid = get_process_pid("winlogon")?;
            get_process_token(process_pid)?
        }
    };

    create_process_with_token(
        token,
        application_name,
        &command_line,
        current_directory,
        desktop,
    )
}