I'm attempting to apply custom rights to a folder as part of a WiX 3.0.4318.0 installer.
In terms of the Security properties UI in explorer, I want to add Modify to the rights for BUILTIN\Users. Obviously it needs to be resilient against localisation of the user name. So based on my research to date, I want at least:
<CreateFolder Directory="XYZ" >
<PermissionEx User="[WIX_ACCOUNT_USERS]"
GenericRead="yes" GenericWrite="yes" Delete="Yes" />
</CreateFolder>
Questions:
I'm doing this in a subdirectory - am I correct in assuming that the choice between Permission and PermissionEx is Moot?
What does 'Modify' in the Folder Permissions dialog in Explorer map to in terms of rights - I see many samples where people have translated it to a magic number or a big set of flags - what have other people used (the intent is to allow create, read, write, append and delete, which is best expressed in the UI in terms of Simple Rights as 'Modify'). I've looked at the underlying permissions with
icacls
which tells me its called 'M', but I have no way to map them to 'specific rights' (in terms as used byicacls /?
). There's another mapping table in the windows help. Has anyone got an authorative answer that's worked?
There is a very similar unanswered question at Question regarding PermissionEx (WIX), which it would be cruel but fair to cite as a duplicate.