Provides a set of constants that identify individual permissions (access rights) that can be applied to an object. Access rights vary by object and control all operations on that type of object. A user's access to objects is controlled by the access rights awarded to the individual user, and by the access rights awarded to any group of which that user is a member. Access rights to individual objects are checked each time the user attempts to access an object from an object store.


Namespace: FileNet.Api.Constants
Assembly: FileNet.Api (in filenet.api.dll)

Syntax

Visual Basic (Declaration)
Public Enum AccessRight
C#
public enum AccessRight
C++
public enum class AccessRight
J#
public enum AccessRight
JScript
public enum AccessRight

Members

Member NameDescription
DELETESpecifies that the user or group is granted or denied permission to delete an object.
MODIFY_OBJECTSSpecifies that the user or group is granted or denied permission to modify objects in an object store.
NONESpecifies that the user or group has no access to objects.
UNLINKSpecifies that the user or group is granted or denied permission to unlink from an object.
USE_MARKINGDetermines whether or not the constraint mask will be applied. If a user has been denied the AccessRight.USE_MARKING access right, then the constraint mask is applied to the effective access mask that was computed by the authorization service.
LINKSpecifies that the user or group is granted or denied permission to link to an object.
WRITESpecifies that the user or group is granted or denied permission to modify the properties of an object.
REMOVE_MARKINGSpecifies that the user or group is granted or denied permission to remove a Marking object from an object.
ADD_MARKINGSpecifies that the user or group is granted or denied permission to assign a Marking object to an object.
PRIVILEGED_WRITESpecifies that the user or group is granted or denied permission to set certain system-level properties (Creator, DateCreated, LastModifier, DateLastModified).

This access right should be granted only to those users who run applications that require an elevated level of privilege on the Content Engine server. Examples of these are: import applications, which require the ability to preserve original user and date information (that is, the values of the above noted system properties) upon importing from the original repository; bulk entry applications; and migration applications.

NOTE: This access right should not be granted to ordinary users and groups or even to most administrators. It is not included in the full control level of object store access (AccessLevel.FULL_CONTROL_OBJECT_STORE).

PUBLISHSpecifies that the user or group is granted or denied permission to publish an object.
CONNECTSpecifies that the user or group is granted or denied permission to connect to an object store.
MINOR_VERSIONSpecifies that the user or group is granted or denied permission to create a new document minor version.
WRITE_ACLSpecifies that the user or group is granted or denied permission to modify an object's security (that is, its PermissionList collection).
WRITE_ANY_OWNERSpecifies that the user or group is granted or denied permission to change the ownership of an object to another user. If a user or group has been granted WRITE_ANY_OWNER permission on an ObjectStore object, then that user or group is also automatically granted the WRITE_OWNER permission on all objects contained in that object store.
READ_ACLSpecifies that the user or group is granted or denied permission to view an object's security (that is, its PermissionList collection).
CREATE_CHILDSpecifies that the user or group is granted or denied permission to create a child object.
CHANGE_STATESpecifies that the user or group is granted or denied permission to change the lifecycle state of an object.
RESERVED13Reserved.
VIEW_CONTENTSpecifies that the user or group is granted or denied permission to view the content of an object.
RESERVED12Reserved.
MAJOR_VERSIONSpecifies that the user or group is granted or denied permission to create a document major version.
REMOVE_OBJECTSSpecifies that the user or group is granted or denied permission to delete objects in an object store.
STORE_OBJECTSSpecifies that the user or group is granted or denied permission to create and store new objects in an object store.
WRITE_OWNERSpecifies that the user or group is granted or denied permission to assume the ownership of an object.
CREATE_INSTANCESpecifies that the user or group is granted or denied permission to create a new instance of an object.
READSpecifies that the user or group is granted or denied permission to view the properties of an object.

See Also