The IDiscretionaryPermission type exposes the following members.
Properties
Type | Name | Description |
---|---|---|
![]() | AccessType |
Indicates the security access type (Allow or Deny) that a user has for a given AccessPermission object.
|
![]() | ClassDescription |
The ClassDescription object containing the property metadata for the EngineObject.
(Inherited from IEngineObject.) |
![]() | GranteeName |
The distinguished name (DN) or short name of the user or group to whom an access permission is granted.
(Inherited from IPermission.) |
![]() | GranteeType |
Specifies whether a group or a user is being granted a permission.
(Inherited from IPermission.) |
![]() | InheritableDepth |
The maximum depth to which a permission (ACE) can be inherited. As the ACE gets
inherited from a security parent, the value is decremented. Example values are as follows:
(Inherited from IPermission.)
A value of -2, -3, and less is only allowed on an ACE that is not inherited (that is, the PermissionSource value is SOURCE_DIRECT, SOURCE_DEFAULT, or SOURCE_TEMPLATE) and can be useful because that InheritableDepth value prevents the permission from affecting the security parent object itself. For instance, if the permission gave a user the DELETE right and the InheritableDepth value was -2, then the user would be able to delete security children objects that inherited that permission, but would not be able to delete the security parent object itself. If the permission has been inherited (PermissionSource.SOURCE_PARENT), then the InheritableDepth value will always be 0, -1, 1, or other positive value greater than 1. The value will never be -2, -3, or other negative value less than -3. For more information about inheritable depth values, see Security Inheritance. |
![]() | PermissionSource |
Indicates the source of the given permission.
(Inherited from IPermission.)The source of access rights can be:
|
![]() | Properties |
The IProperties collection of properties for the EngineObject.
(Inherited from IEngineObject.) |