mscorlib-4.0-offline-doxygenated-documentation/html/_common_security_descriptor_8cs_source.html

 using System.Security.Principal;

 namespace System.Security.AccessControl
 {
     public sealed class CommonSecurityDescriptor : GenericSecurityDescriptor
     {
         private bool _isContainer;

         private bool _isDS;

         private RawSecurityDescriptor _rawSd;

         private SystemAcl _sacl;

         private DiscretionaryAcl _dacl;

         internal sealed override GenericAcl GenericSacl => _sacl;

         internal sealed override GenericAcl GenericDacl => _dacl;

         public bool IsContainer => _isContainer;

         public bool IsDS => _isDS;

         public override ControlFlags ControlFlags => _rawSd.ControlFlags;

         public override SecurityIdentifier Owner
         {
             get
             {
                 return _rawSd.Owner;
             }
             set
             {
                 _rawSd.Owner = value;
             }
         }

         public override SecurityIdentifier Group
         {
             get
             {
                 return _rawSd.Group;
             }
             set
             {
                 _rawSd.Group = value;
             }
         }

         public SystemAcl SystemAcl
         {
             get
             {
                 return _sacl;
             }
             set
             {
                 if (value != null)
                 {
                     if (value.IsContainer != IsContainer)
                     {
                         throw new ArgumentException(Environment.GetResourceString(IsContainer ? "AccessControl_MustSpecifyContainerAcl" : "AccessControl_MustSpecifyLeafObjectAcl"), "value");
                     }
                     if (value.IsDS != IsDS)
                     {
                         throw new ArgumentException(Environment.GetResourceString(IsDS ? "AccessControl_MustSpecifyDirectoryObjectAcl" : "AccessControl_MustSpecifyNonDirectoryObjectAcl"), "value");
                     }
                 }
                 _sacl = value;
                 if (_sacl != null)
                 {
                     _rawSd.SystemAcl = _sacl.RawAcl;
                     AddControlFlags(ControlFlags.SystemAclPresent);
                 }
                 else
                 {
                     _rawSd.SystemAcl = null;
                     RemoveControlFlags(ControlFlags.SystemAclPresent);
                 }
             }
         }

         public DiscretionaryAcl DiscretionaryAcl
         {
             get
             {
                 return _dacl;
             }
             set
             {
                 if (value != null)
                 {
                     if (value.IsContainer != IsContainer)
                     {
                         throw new ArgumentException(Environment.GetResourceString(IsContainer ? "AccessControl_MustSpecifyContainerAcl" : "AccessControl_MustSpecifyLeafObjectAcl"), "value");
                     }
                     if (value.IsDS != IsDS)
                     {
                         throw new ArgumentException(Environment.GetResourceString(IsDS ? "AccessControl_MustSpecifyDirectoryObjectAcl" : "AccessControl_MustSpecifyNonDirectoryObjectAcl"), "value");
                     }
                 }
                 if (value == null)
                 {
                     _dacl = DiscretionaryAcl.CreateAllowEveryoneFullAccess(IsDS, IsContainer);
                 }
                 else
                 {
                     _dacl = value;
                 }
                 _rawSd.DiscretionaryAcl = _dacl.RawAcl;
                 AddControlFlags(ControlFlags.DiscretionaryAclPresent);
             }
         }

         public bool IsSystemAclCanonical
         {
             get
             {
                 if (SystemAcl != null)
                 {
                     return SystemAcl.IsCanonical;
                 }
                 return true;
             }
         }

         public bool IsDiscretionaryAclCanonical
         {
             get
             {
                 if (DiscretionaryAcl != null)
                 {
                     return DiscretionaryAcl.IsCanonical;
                 }
                 return true;
             }
         }

         internal bool IsSystemAclPresent => (_rawSd.ControlFlags & ControlFlags.SystemAclPresent) != ControlFlags.None;

         internal bool IsDiscretionaryAclPresent => (_rawSd.ControlFlags & ControlFlags.DiscretionaryAclPresent) != ControlFlags.None;

         private void CreateFromParts(bool isContainer, bool isDS, ControlFlags flags, SecurityIdentifier owner, SecurityIdentifier group, SystemAcl systemAcl, DiscretionaryAcl discretionaryAcl)
         {
             if (systemAcl != null && systemAcl.IsContainer != isContainer)
             {
                 throw new ArgumentException(Environment.GetResourceString(isContainer ? "AccessControl_MustSpecifyContainerAcl" : "AccessControl_MustSpecifyLeafObjectAcl"), "systemAcl");
             }
             if (discretionaryAcl != null && discretionaryAcl.IsContainer != isContainer)
             {
                 throw new ArgumentException(Environment.GetResourceString(isContainer ? "AccessControl_MustSpecifyContainerAcl" : "AccessControl_MustSpecifyLeafObjectAcl"), "discretionaryAcl");
             }
             _isContainer = isContainer;
             if (systemAcl != null && systemAcl.IsDS != isDS)
             {
                 throw new ArgumentException(Environment.GetResourceString(isDS ? "AccessControl_MustSpecifyDirectoryObjectAcl" : "AccessControl_MustSpecifyNonDirectoryObjectAcl"), "systemAcl");
             }
             if (discretionaryAcl != null && discretionaryAcl.IsDS != isDS)
             {
                 throw new ArgumentException(Environment.GetResourceString(isDS ? "AccessControl_MustSpecifyDirectoryObjectAcl" : "AccessControl_MustSpecifyNonDirectoryObjectAcl"), "discretionaryAcl");
             }
             _isDS = isDS;
             _sacl = systemAcl;
             if (discretionaryAcl == null)
             {
                 discretionaryAcl = DiscretionaryAcl.CreateAllowEveryoneFullAccess(_isDS, _isContainer);
             }
             _dacl = discretionaryAcl;
             ControlFlags controlFlags = flags | ControlFlags.DiscretionaryAclPresent;
             controlFlags = ((systemAcl != null) ? (controlFlags | ControlFlags.SystemAclPresent) : (controlFlags & ~ControlFlags.SystemAclPresent));
             _rawSd = new RawSecurityDescriptor(controlFlags, owner, group, systemAcl?.RawAcl, discretionaryAcl.RawAcl);
         }

         public CommonSecurityDescriptor(bool isContainer, bool isDS, ControlFlags flags, SecurityIdentifier owner, SecurityIdentifier group, SystemAcl systemAcl, DiscretionaryAcl discretionaryAcl)
         {
             CreateFromParts(isContainer, isDS, flags, owner, group, systemAcl, discretionaryAcl);
         }

         private CommonSecurityDescriptor(bool isContainer, bool isDS, ControlFlags flags, SecurityIdentifier owner, SecurityIdentifier group, RawAcl systemAcl, RawAcl discretionaryAcl)
             : this(isContainer, isDS, flags, owner, group, (systemAcl == null) ? null : new SystemAcl(isContainer, isDS, systemAcl), (discretionaryAcl == null) ? null : new DiscretionaryAcl(isContainer, isDS, discretionaryAcl))
         {
         }

         public CommonSecurityDescriptor(bool isContainer, bool isDS, RawSecurityDescriptor rawSecurityDescriptor)
             : this(isContainer, isDS, rawSecurityDescriptor, trusted: false)
         {
         }

         internal CommonSecurityDescriptor(bool isContainer, bool isDS, RawSecurityDescriptor rawSecurityDescriptor, bool trusted)
         {
             if (rawSecurityDescriptor == null)
             {
                 throw new ArgumentNullException("rawSecurityDescriptor");
             }
             CreateFromParts(isContainer, isDS, rawSecurityDescriptor.ControlFlags, rawSecurityDescriptor.Owner, rawSecurityDescriptor.Group, (rawSecurityDescriptor.SystemAcl == null) ? null : new SystemAcl(isContainer, isDS, rawSecurityDescriptor.SystemAcl, trusted), (rawSecurityDescriptor.DiscretionaryAcl == null) ? null : new DiscretionaryAcl(isContainer, isDS, rawSecurityDescriptor.DiscretionaryAcl, trusted));
         }

         public CommonSecurityDescriptor(bool isContainer, bool isDS, string sddlForm)
             : this(isContainer, isDS, new RawSecurityDescriptor(sddlForm), trusted: true)
         {
         }

         public CommonSecurityDescriptor(bool isContainer, bool isDS, byte[] binaryForm, int offset)
             : this(isContainer, isDS, new RawSecurityDescriptor(binaryForm, offset), trusted: true)
         {
         }

         public void SetSystemAclProtection(bool isProtected, bool preserveInheritance)
         {
             if (!isProtected)
             {
                 RemoveControlFlags(ControlFlags.SystemAclProtected);
                 return;
             }
             if (!preserveInheritance && SystemAcl != null)
             {
                 SystemAcl.RemoveInheritedAces();
             }
             AddControlFlags(ControlFlags.SystemAclProtected);
         }

         public void SetDiscretionaryAclProtection(bool isProtected, bool preserveInheritance)
         {
             if (!isProtected)
             {
                 RemoveControlFlags(ControlFlags.DiscretionaryAclProtected);
             }
             else
             {
                 if (!preserveInheritance && DiscretionaryAcl != null)
                 {
                     DiscretionaryAcl.RemoveInheritedAces();
                 }
                 AddControlFlags(ControlFlags.DiscretionaryAclProtected);
             }
             if (DiscretionaryAcl != null && DiscretionaryAcl.EveryOneFullAccessForNullDacl)
             {
                 DiscretionaryAcl.EveryOneFullAccessForNullDacl = false;
             }
         }

         public void PurgeAccessControl(SecurityIdentifier sid)
         {
             if (sid == null)
             {
                 throw new ArgumentNullException("sid");
             }
             if (DiscretionaryAcl != null)
             {
                 DiscretionaryAcl.Purge(sid);
             }
         }

         public void PurgeAudit(SecurityIdentifier sid)
         {
             if (sid == null)
             {
                 throw new ArgumentNullException("sid");
             }
             if (SystemAcl != null)
             {
                 SystemAcl.Purge(sid);
             }
         }

         public void AddDiscretionaryAcl(byte revision, int trusted)
         {
             DiscretionaryAcl = new DiscretionaryAcl(IsContainer, IsDS, revision, trusted);
             AddControlFlags(ControlFlags.DiscretionaryAclPresent);
         }

         public void AddSystemAcl(byte revision, int trusted)
         {
             SystemAcl = new SystemAcl(IsContainer, IsDS, revision, trusted);
             AddControlFlags(ControlFlags.SystemAclPresent);
         }

         internal void UpdateControlFlags(ControlFlags flagsToUpdate, ControlFlags newFlags)
         {
             ControlFlags flags = newFlags | (_rawSd.ControlFlags & ~flagsToUpdate);
             _rawSd.SetFlags(flags);
         }

         internal void AddControlFlags(ControlFlags flags)
         {
             _rawSd.SetFlags(_rawSd.ControlFlags | flags);
         }

         internal void RemoveControlFlags(ControlFlags flags)
         {
             _rawSd.SetFlags(_rawSd.ControlFlags & ~flags);
         }
     }
 }
System.Security
Definition: AllowPartiallyTrustedCallersAttribute.cs:3

System.ArgumentNullException
The exception that is thrown when a null reference (Nothing in Visual Basic) is passed to a method th...
Definition: ArgumentNullException.cs:11

System.Security.AccessControl.CommonAcl.IsCanonical
bool IsCanonical
Gets a Boolean value that specifies whether the access control entries (ACEs) in the current T:System...
Definition: CommonAcl.cs:81

System.Security.AccessControl.RawSecurityDescriptor.ControlFlags
override ControlFlags ControlFlags
Gets values that specify behavior of the T:System.Security.AccessControl.RawSecurityDescriptor object...
Definition: RawSecurityDescriptor.cs:28

System.Security.AccessControl.CommonSecurityDescriptor.SetDiscretionaryAclProtection
void SetDiscretionaryAclProtection(bool isProtected, bool preserveInheritance)
Sets the inheritance protection for the Discretionary Access Control List (DACL) associated with this...
Definition: CommonSecurityDescriptor.cs:285

System.Security.AccessControl.CommonSecurityDescriptor
Represents a security descriptor. A security descriptor includes an owner, a primary group,...
Definition: CommonSecurityDescriptor.cs:6

System.Security.AccessControl.CommonSecurityDescriptor.SystemAcl
SystemAcl?? SystemAcl
Gets or sets the System Access Control List (SACL) for this T:System.Security.AccessControl....
Definition: CommonSecurityDescriptor.cs:67

System.Security.AccessControl.CommonSecurityDescriptor.IsDiscretionaryAclCanonical
bool IsDiscretionaryAclCanonical
Gets a Boolean value that specifies whether the Discretionary Access Control List (DACL) associated w...
Definition: CommonSecurityDescriptor.cs:152

System
Definition: __Canon.cs:3

System.Security.AccessControl.CommonSecurityDescriptor.ControlFlags
override ControlFlags ControlFlags
Gets values that specify behavior of the T:System.Security.AccessControl.CommonSecurityDescriptor obj...
Definition: CommonSecurityDescriptor.cs:34

System.Security.AccessControl.RawSecurityDescriptor.Group
override SecurityIdentifier Group
Gets or sets the primary group for this T:System.Security.AccessControl.RawSecurityDescriptor object.
Definition: RawSecurityDescriptor.cs:47

System.Security.AccessControl.CommonSecurityDescriptor.PurgeAudit
void PurgeAudit(SecurityIdentifier sid)
Removes all audit rules for the specified security identifier from the System Access Control List (SA...
Definition: CommonSecurityDescriptor.cs:321

System.Security.AccessControl
Definition: AccessControlActions.cs:1

System.Security.AccessControl.CommonSecurityDescriptor.PurgeAccessControl
void PurgeAccessControl(SecurityIdentifier sid)
Removes all access rules for the specified security identifier from the Discretionary Access Control ...
Definition: CommonSecurityDescriptor.cs:307

System.Security.AccessControl.RawAcl
Represents an Access Control List (ACL).
Definition: RawAcl.cs:6

System.Security.AccessControl.CommonSecurityDescriptor.DiscretionaryAcl
DiscretionaryAcl?? DiscretionaryAcl
Gets or sets the discretionary access control list (DACL) for this T:System.Security....
Definition: CommonSecurityDescriptor.cs:102

System.Security.AccessControl.CommonSecurityDescriptor.Owner
override SecurityIdentifier Owner
Gets or sets the owner of the object associated with this T:System.Security.AccessControl....
Definition: CommonSecurityDescriptor.cs:39

System.Security.AccessControl.CommonSecurityDescriptor.CommonSecurityDescriptor
CommonSecurityDescriptor(bool isContainer, bool isDS, ControlFlags flags, SecurityIdentifier owner, SecurityIdentifier group, SystemAcl systemAcl, DiscretionaryAcl discretionaryAcl)
Initializes a new instance of the T:System.Security.AccessControl.CommonSecurityDescriptor class from...
Definition: CommonSecurityDescriptor.cs:208

System.Environment
Provides information about, and means to manipulate, the current environment and platform....
Definition: Environment.cs:21

System.Security.AccessControl.CommonSecurityDescriptor.AddSystemAcl
void AddSystemAcl(byte revision, int trusted)
Sets the P:System.Security.AccessControl.CommonSecurityDescriptor.SystemAcl property for this T:Syste...
Definition: CommonSecurityDescriptor.cs:345

System.Security.AccessControl.RawSecurityDescriptor
Represents a security descriptor. A security descriptor includes an owner, a primary group,...
Definition: RawSecurityDescriptor.cs:8

System.Security.AccessControl.CommonSecurityDescriptor.CommonSecurityDescriptor
CommonSecurityDescriptor(bool isContainer, bool isDS, RawSecurityDescriptor rawSecurityDescriptor)
Initializes a new instance of the T:System.Security.AccessControl.CommonSecurityDescriptor class from...
Definition: CommonSecurityDescriptor.cs:224

System.Security.AccessControl.RawSecurityDescriptor.SystemAcl
RawAcl SystemAcl
Gets or sets the System Access Control List (SACL) for this T:System.Security.AccessControl....
Definition: RawSecurityDescriptor.cs:61

System.Security.AccessControl.CommonSecurityDescriptor.AddDiscretionaryAcl
void AddDiscretionaryAcl(byte revision, int trusted)
Sets the P:System.Security.AccessControl.CommonSecurityDescriptor.DiscretionaryAcl property for this ...
Definition: CommonSecurityDescriptor.cs:336

System.Security.AccessControl.ControlFlags
ControlFlags
These flags affect the security descriptor behavior.
Definition: ControlFlags.cs:5

System.Security.AccessControl.CommonSecurityDescriptor.SetSystemAclProtection
void SetSystemAclProtection(bool isProtected, bool preserveInheritance)
Sets the inheritance protection for the System Access Control List (SACL) associated with this T:Syst...
Definition: CommonSecurityDescriptor.cs:266

System.Security.AccessControl.CommonAcl.RemoveInheritedAces
void RemoveInheritedAces()
Removes all inherited access control entries (ACEs) from this T:System.Security.AccessControl....
Definition: CommonAcl.cs:1139

System.Security.Principal
Definition: GenericIdentity.cs:6

System.Security.AccessControl.RawSecurityDescriptor.Owner
override SecurityIdentifier Owner
Gets or sets the owner of the object associated with this T:System.Security.AccessControl....
Definition: RawSecurityDescriptor.cs:33

System.Security.AccessControl.GenericSecurityDescriptor
Represents a security descriptor. A security descriptor includes an owner, a primary group,...
Definition: GenericSecurityDescriptor.cs:6

System.ArgumentException
The exception that is thrown when one of the arguments provided to a method is not valid.
Definition: ArgumentException.cs:11

System.Security.AccessControl.RawSecurityDescriptor.DiscretionaryAcl
RawAcl DiscretionaryAcl
Gets or sets the Discretionary Access Control List (DACL) for this T:System.Security....
Definition: RawSecurityDescriptor.cs:75

System.Security.AccessControl.CommonSecurityDescriptor.IsDS
bool IsDS
Gets a Boolean value that specifies whether the object associated with this T:System....
Definition: CommonSecurityDescriptor.cs:30

System.Security.AccessControl.RawSecurityDescriptor.SetFlags
void SetFlags(ControlFlags flags)
Sets the P:System.Security.AccessControl.RawSecurityDescriptor.ControlFlags property of this T:System...
Definition: RawSecurityDescriptor.cs:217

System.Security.AccessControl.CommonSecurityDescriptor.CommonSecurityDescriptor
CommonSecurityDescriptor(bool isContainer, bool isDS, string sddlForm)
Initializes a new instance of the T:System.Security.AccessControl.CommonSecurityDescriptor class from...
Definition: CommonSecurityDescriptor.cs:244

System.Security.AccessControl.GenericAcl
Represents an access control list (ACL) and is the base class for the T:System.Security....
Definition: GenericAcl.cs:6

System.Security.AccessControl.CommonSecurityDescriptor.IsSystemAclCanonical
bool IsSystemAclCanonical
Gets a Boolean value that specifies whether the System Access Control List (SACL) associated with thi...
Definition: CommonSecurityDescriptor.cs:137

System.Security.Principal.SecurityIdentifier
Represents a security identifier (SID) and provides marshaling and comparison operations for SIDs.
Definition: SecurityIdentifier.cs:12

System.Security.AccessControl.CommonAcl.IsContainer
bool IsContainer
Sets whether the T:System.Security.AccessControl.CommonAcl object is a container.
Definition: CommonAcl.cs:86

System.Security.AccessControl.CommonSecurityDescriptor.Group
override SecurityIdentifier Group
Gets or sets the primary group for this T:System.Security.AccessControl.CommonSecurityDescriptor obje...
Definition: CommonSecurityDescriptor.cs:53

System.Security.AccessControl.DiscretionaryAcl
Represents a Discretionary Access Control List (DACL).
Definition: DiscretionaryAcl.cs:6

System.Security.AccessControl.CommonAcl.Purge
void Purge(SecurityIdentifier sid)
Removes all access control entries (ACEs) contained by this T:System.Security.AccessControl....
Definition: CommonAcl.cs:1155

System.Security.AccessControl.CommonAcl.IsDS
bool IsDS
Sets whether the current T:System.Security.AccessControl.CommonAcl object is a directory object acces...
Definition: CommonAcl.cs:91

System.Security.AccessControl.CommonSecurityDescriptor.CommonSecurityDescriptor
CommonSecurityDescriptor(bool isContainer, bool isDS, byte[] binaryForm, int offset)
Initializes a new instance of the T:System.Security.AccessControl.CommonSecurityDescriptor class from...
Definition: CommonSecurityDescriptor.cs:256

System.Security.AccessControl.SystemAcl
Represents a System Access Control List (SACL).
Definition: SystemAcl.cs:6

System.Security.AccessControl.CommonSecurityDescriptor.IsContainer
bool IsContainer
Gets a Boolean value that specifies whether the object associated with this T:System....
Definition: CommonSecurityDescriptor.cs:25