The IPermission type exposes the following members.
Properties
Type | Name | Description |
---|---|---|
![]() | ClassDescription |
The ClassDescription object containing the property metadata for the EngineObject.
(Inherited from IEngineObject.) |
![]() | GranteeName |
The distinguished name (DN) or short name of the user or group to whom an access permission is granted.
|
![]() | GranteeType |
Specifies whether a group or a user is being granted a permission.
|
![]() | InheritableDepth |
The maximum depth to which a permission (ACE) can be inherited. As the ACE gets
inherited from a security parent, the value is decremented. Example values are as follows:
A value of -2, -3, and less is only allowed on an ACE that is not inherited (that is, the PermissionSource value is SOURCE_DIRECT, SOURCE_DEFAULT, or SOURCE_TEMPLATE) and can be useful because that InheritableDepth value prevents the permission from affecting the security parent object itself. For instance, if the permission gave a user the DELETE right and the InheritableDepth value was -2, then the user would be able to delete security children objects that inherited that permission, but would not be able to delete the security parent object itself. If the permission has been inherited (PermissionSource.SOURCE_PARENT), then the InheritableDepth value will always be 0, -1, 1, or other positive value greater than 1. The value will never be -2, -3, or other negative value less than -3. For more information about inheritable depth values, see Security Inheritance. |
![]() | PermissionSource |
Indicates the source of the given permission.
The source of access rights can be:
|
![]() | Properties |
The IProperties collection of properties for the EngineObject.
(Inherited from IEngineObject.) |