MultiotpRegistry.h

/**
 * multiOTP Credential Provider
 *
 * @author    Andre Liechti, SysCo systemes de communication sa, <info@multiotp.net>
 * @version   5.6.1.5
 * @date      2019-10-23
 * @since     2013
 * @copyright (c) 2016-2019 SysCo systemes de communication sa
 * @copyright (c) 2015-2016 ArcadeJust ("RDP only" enhancement)
 * @copyright (c) 2013-2015 Last Squirrel IT 
 * @copyright Apache License, Version 2.0
 *
 *
 * Change Log
 *
 *   2019-10-23 5.6.1.5 SysCo/al FIX: Prefix password parameter was buggy (better handling of parameters in debug mode)
 *                               FIX: swprintf_s problem with special chars (thanks to anekix)
 *   2019-01-25 5.4.1.6 SysCo/al FIX: Username with space are now supported
 *                               ENH: Added integrated Visual C++ 2017 Redistributable installation
 *   2018-09-14 5.4.0.1 SysCo/al FIX: Better domain name and hostname detection
 *                               FIX: The cache lifetime check process was buggy since 5.3.0.3
 *                               ENH: multiOTP Credential Provider files and objects have been reorganized
 *   2018-08-26 5.3.0.3 SysCo/al FIX: Users without 2FA token are now supported
 *   2018-08-21 5.3.0.0 SysCo/yj FIX: Save flat domain name in the registry. While offline, use this value instead of asking the DC
 *                      SysCo/al ENH: The multiOTP timeout (how long the Credential Provider wait a response from
 *                                    the multiOTP process) is now 60 seconds by default (instead of 10)
 *   2018-03-11 5.2.0.0 SysCo/al New implementation from scratch
 *
 *********************************************************************/
 
#pragma once

#include "windows.h"
#include <winreg.h>
#include <stdio.h>

#define MULTIOTP_SETTINGS         L"CLSID\\"
#define MULTIOTP_PATH             L"multiOTPPath"
#define MULTIOTP_TIMEOUT          L"multiOTPTimeout"
#define MULTIOTP_RDPONLY          L"multiOTPRDPOnly"
#define MULTIOTP_PREFIX_PASSWORD  L"multiOTPPrefixPass"
#define MULTIOTP_DISPLAY_SMS_LINK L"multiOTPDisplaySmsLink"
#define MULTIOTP_UPN_FORMAT       L"multiOTPUPNFormat"
#define MULTIOTP_LOGIN_TITLE      L"multiOTPLoginTitle"
#define MULTIOTP_CACHE_ENABLED    L"multiOTPCacheEnabled"
#define MULTIOTP_SERVERS          L"multiOTPServers"
#define MULTIOTP_SERVER_TIMEOUT   L"multiOTPServerTimeout"
#define MULTIOTP_SHARED_SECRET    L"multiOTPSharedSecret"
#define MULTIOTP_FLAT_DOMAIN      L"multiOTPFlatDomain"
#define MULTIOTP_DEFAULT_PREFIX   L"multiOTPDefaultPrefix"

#define RDP_SETTINGS              L"SYSTEM\\CurrentControlSet\\Control\\Terminal Server\\WinStations\\RDP-Tcp"
#define RDP_PORT                  L"PortNumber"

#define TCPIP_SETTINGS            L"SYSTEM\\CurrentControlSet\\Services\\Tcpip\\Parameters"
#define TCPIP_DOMAIN              L"Domain"
#define TCPIP_HOSTNAME            L"Hostname"

struct REGISTRY_KEY
{
	HKEY ROOT_KEY;
	PWSTR KEY_NAME;
	PWSTR VALUE_NAME;
};

enum CONF_VALUE
{
	CONF_PATH                 = 0,
	CONF_TIMEOUT              = 1,
	CONF_RDP_ONLY             = 2,
	CONF_PREFIX_PASSWORD      = 3,
	CONF_DISPLAY_SMS_LINK     = 4,
	CONF_UPN_FORMAT           = 5,
	CONF_LOGIN_TITLE          = 6,
	CONF_CACHE_ENABLED        = 7,
	CONF_SERVERS              = 8,
	CONF_SERVER_TIMEOUT       = 9,
	CONF_SHARED_SECRET        = 10,
	CONF_FLAT_DOMAIN          = 11,
	CONF_DEFAULT_PREFIX       = 12,

	CONF_RDP_PORT             = 13,

	CONF_DOMAIN_NAME          = 14,
	CONF_HOST_NAME            = 15,

	CONF_NUM_VALUES           = 16,
};

static const REGISTRY_KEY s_CONF_VALUES[] =
{
	{ HKEY_CLASSES_ROOT, MULTIOTP_SETTINGS, MULTIOTP_PATH },
	{ HKEY_CLASSES_ROOT, MULTIOTP_SETTINGS, MULTIOTP_TIMEOUT },
	{ HKEY_CLASSES_ROOT, MULTIOTP_SETTINGS, MULTIOTP_RDPONLY },
	{ HKEY_CLASSES_ROOT, MULTIOTP_SETTINGS, MULTIOTP_PREFIX_PASSWORD },
	{ HKEY_CLASSES_ROOT, MULTIOTP_SETTINGS, MULTIOTP_DISPLAY_SMS_LINK },
	{ HKEY_CLASSES_ROOT, MULTIOTP_SETTINGS, MULTIOTP_UPN_FORMAT },
	{ HKEY_CLASSES_ROOT, MULTIOTP_SETTINGS, MULTIOTP_LOGIN_TITLE },
	{ HKEY_CLASSES_ROOT, MULTIOTP_SETTINGS, MULTIOTP_CACHE_ENABLED },
	{ HKEY_CLASSES_ROOT, MULTIOTP_SETTINGS, MULTIOTP_SERVERS },
	{ HKEY_CLASSES_ROOT, MULTIOTP_SETTINGS, MULTIOTP_SERVER_TIMEOUT },
	{ HKEY_CLASSES_ROOT, MULTIOTP_SETTINGS, MULTIOTP_SHARED_SECRET },
	{ HKEY_CLASSES_ROOT, MULTIOTP_SETTINGS, MULTIOTP_FLAT_DOMAIN },
	{ HKEY_CLASSES_ROOT, MULTIOTP_SETTINGS, MULTIOTP_DEFAULT_PREFIX },

	{ HKEY_LOCAL_MACHINE, RDP_SETTINGS, RDP_PORT },

	{ HKEY_LOCAL_MACHINE, TCPIP_SETTINGS, TCPIP_DOMAIN },
	{ HKEY_LOCAL_MACHINE, TCPIP_SETTINGS, TCPIP_HOSTNAME },
};

VOID writeRegistryValueString(_In_ CONF_VALUE conf_value, _In_ PWSTR writeValue);
DWORD readRegistryValueString( _In_ CONF_VALUE conf_value, _Outptr_result_nullonfailure_ PWSTR *data, _In_ PWSTR defaultValue);
DWORD readRegistryValueInteger(_In_ CONF_VALUE conf_value, _In_ DWORD defaultValue );