locked
Does HttpClient require admin rights?

    Question

  • Would like to use Windows::Web::Http::HttpClient. Does these calls require admin rights?

    Also, Can all network related tasks be done in standard user mode ? If no, then what is the best design practice for implementing a network module i.e. as a service or a an elevated out-of-proc com server(which is not possible as registration free COM AFAIK ?)?

    Thanks in advance.



    • Edited by manswar Tuesday, April 15, 2014 1:40 PM
    Tuesday, April 15, 2014 1:38 PM

Answers

  • Windows Store apps always run with low rights. Not only are administrative rights unnecessary, they are not possible.
    • Marked as answer by manswar Monday, April 28, 2014 5:10 AM
    Tuesday, April 15, 2014 2:40 PM
    Moderator

All replies

  • Windows Store apps always run with low rights. Not only are administrative rights unnecessary, they are not possible.
    • Marked as answer by manswar Monday, April 28, 2014 5:10 AM
    Tuesday, April 15, 2014 2:40 PM
    Moderator
  • Thanks for the quick reply.

    Would like to clear some more doubts.

    Currently, we would like to go for windows 8.1 desktop app certification.

    We are using Qt based App which connects to our company server(s) for all it's data needs. So basically all calls are HTTPS.

    When tested under App Verifier, there were LuaPriv related errors related to networking, hence we planned to go for "Admin COM Object Model" separate out the network related tasks into a separate out-of-proc COM server. So, to take care of UAC, the app has been designed so that all the networking is handled by an out-of-proc com server that uses MFC for http related tasks and there is a COM client(Qt App) that uses COM Elevation Moniker to handle network related tasks.

    But now in near future we may want to go for Windows App Certification, so we are planning to go for WinRT based network module, so that it can be used in both desktop app as well as store app (does it sound correct?)

    My Doubts:

    1) Do https calls require admin rights? Are there any https functions that does not require admin rights as MFC Http functions failed Luapriv test when called in main process.

    2) For handling network related tasks from UAC perspective, should we go for "Admin COM Object Model" or "Back-End Service Model"?

    3) Should both COM client as well as COM server pass App verifier tests? Or only client should be checked with App Verifier? If com server should pass as well, then are there any recommended design changes (like starting COM server in admin mode during installation etc.) that can we should consider as currently COM server throws LuaPriv related errors with App Verifier during it's instantiation when all COM initialization takes place.

    4) Finally, is this whole approach correct? If not, can you please suggest the correct way to proceed?

    Hope I am clear enough.

    Thanks in advance.


    • Edited by manswar Wednesday, April 16, 2014 6:32 AM
    Wednesday, April 16, 2014 5:15 AM