Im stupid so i had chatgpt make this script, i dont actually know if its doing anything but i hope so

change_DL_folder_perms.ps1

# Define path
$downloadsPath = "$env:USERPROFILE\Downloads"
$user = "$env:USERNAME"
$identity = "$env:USERDOMAIN\$user"

# Get current ACL
$acl = Get-Acl $downloadsPath

# Remove all existing rules to start clean
$acl.Access | ForEach-Object { $acl.RemoveAccessRule($_) }

# 1. Deny deletion of the Downloads folder itself (not inherited by contents)
$denyDeleteSelf = New-Object System.Security.AccessControl.FileSystemAccessRule(
    "Everyone",
    "Delete",
    "None",  # Applies to folder only
    "None",
    "Deny"
)
$acl.AddAccessRule($denyDeleteSelf)

# 2. Allow everyone normal access to contents
$allowContents = New-Object System.Security.AccessControl.FileSystemAccessRule(
    "Everyone",
    "Read, Write, Modify, DeleteSubdirectoriesAndFiles",
    "ContainerInherit,ObjectInherit",  # Applies to subfolders and files
    "None",
    "Allow"
)
$acl.AddAccessRule($allowContents)

# 3. Grant full control to current user
$allowFull = New-Object System.Security.AccessControl.FileSystemAccessRule(
    $identity,
    "FullControl",
    "ContainerInherit,ObjectInherit",
    "None",
    "Allow"
)
$acl.AddAccessRule($allowFull)

# Apply permissions
Set-Acl -Path $downloadsPath -AclObject $acl
Write-Output "Permissions reset: Folder protected, contents editable."

# Set ownership to current user
takeown /F $downloadsPath /R /D Y | Out-Null
icacls $downloadsPath /setowner "$identity" /T | Out-Null
Write-Output "Ownership reset to $identity."