Hi John,
I've dnone something similar, but while the MSI technology incorporates the
LockPermissions table in order to achieve such things it actually removes
any existing permissions and as such far more intrusive than you'd really
want. I use SubinACL.exe from M$... the WiX looks something like this for a
reg key.
<Binary Id="wixca" src="Installs\Common\Tools\WiX\wixca.dll" />
<CustomAction Id="SetCommandLineCommon" Property="QtExecDeferred1"
Value='"[#subinaclexe]" /noverbose /keyreg
HKEY_LOCAL_MACHINE\SOFTWARE\...\blah\blah\ /GRANT=S-1-1-0=F' />
<CustomAction Id="QtExecDeferred1" BinaryKey="wixca" DllEntry="CAQuietExec"
Execute="deferred" Return="check" />
<DirectoryRef Id="Program">
<Component Id="RegPermissions"
Guid="YOURGUID-????-????-????-????????????"
DiskId="1">
<File Id="subinaclexe" Name="subinacl.exe" Compressed="yes"
src="installs/common/tools/SubinACL/subinacl.exe" />
</Component>
</DirectoryRef>
Where "S-1-1-0" is the SID for the "Users" user group. I'm sure this is
easily adaptable for a folder simply by reading the help that comes with
SubinACL. And the CAQuietExec needs to be called differently if you don't
wish to perform the CA as deferred... this is documented in the WiX help.
If you're going for Vista verification, you'll need to make a manifest file
for subinacl, or call it from your sourcedir, but then make sure you don't
try and call it on modify/repair, etc.
Good luck,
Gareth
--
View this message in context:
http://www.nabble.com/Setting-Folder-ACL-Permissions-tf3768482.html#a10737099
Sent from the wix-users mailing list archive at Nabble.com.
-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
WiX-users mailing list
WiX-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/wix-users
