mscorlib-4.0-offline-doxygenated-documentation/html/_discretionary_acl_8cs_source.html

 using System.Security.Principal;

 namespace System.Security.AccessControl
 {
     public sealed class DiscretionaryAcl : CommonAcl
     {
         private static SecurityIdentifier _sidEveryone = new SecurityIdentifier(WellKnownSidType.WorldSid, null);

         private bool everyOneFullAccessForNullDacl;

         internal bool EveryOneFullAccessForNullDacl
         {
             get
             {
                 return everyOneFullAccessForNullDacl;
             }
             set
             {
                 everyOneFullAccessForNullDacl = value;
             }
         }

         public DiscretionaryAcl(bool isContainer, bool isDS, int capacity)
             : this(isContainer, isDS, isDS ? GenericAcl.AclRevisionDS : GenericAcl.AclRevision, capacity)
         {
         }

         public DiscretionaryAcl(bool isContainer, bool isDS, byte revision, int capacity)
             : base(isContainer, isDS, revision, capacity)
         {
         }

         public DiscretionaryAcl(bool isContainer, bool isDS, RawAcl rawAcl)
             : this(isContainer, isDS, rawAcl, trusted: false)
         {
         }

         internal DiscretionaryAcl(bool isContainer, bool isDS, RawAcl rawAcl, bool trusted)
             : base(isContainer, isDS, (rawAcl == null) ? new RawAcl(isDS ? GenericAcl.AclRevisionDS : GenericAcl.AclRevision, 0) : rawAcl, trusted, isDacl: true)
         {
         }

         public void AddAccess(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags)
         {
             CheckAccessType(accessType);
             CheckFlags(inheritanceFlags, propagationFlags);
             everyOneFullAccessForNullDacl = false;
             AddQualifiedAce(sid, (accessType != 0) ? AceQualifier.AccessDenied : AceQualifier.AccessAllowed, accessMask, GenericAce.AceFlagsFromInheritanceFlags(inheritanceFlags, propagationFlags), ObjectAceFlags.None, Guid.Empty, Guid.Empty);
         }

         public void SetAccess(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags)
         {
             CheckAccessType(accessType);
             CheckFlags(inheritanceFlags, propagationFlags);
             everyOneFullAccessForNullDacl = false;
             SetQualifiedAce(sid, (accessType != 0) ? AceQualifier.AccessDenied : AceQualifier.AccessAllowed, accessMask, GenericAce.AceFlagsFromInheritanceFlags(inheritanceFlags, propagationFlags), ObjectAceFlags.None, Guid.Empty, Guid.Empty);
         }

         public bool RemoveAccess(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags)
         {
             CheckAccessType(accessType);
             everyOneFullAccessForNullDacl = false;
             return RemoveQualifiedAces(sid, (accessType != 0) ? AceQualifier.AccessDenied : AceQualifier.AccessAllowed, accessMask, GenericAce.AceFlagsFromInheritanceFlags(inheritanceFlags, propagationFlags), saclSemantics: false, ObjectAceFlags.None, Guid.Empty, Guid.Empty);
         }

         public void RemoveAccessSpecific(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags)
         {
             CheckAccessType(accessType);
             everyOneFullAccessForNullDacl = false;
             RemoveQualifiedAcesSpecific(sid, (accessType != 0) ? AceQualifier.AccessDenied : AceQualifier.AccessAllowed, accessMask, GenericAce.AceFlagsFromInheritanceFlags(inheritanceFlags, propagationFlags), ObjectAceFlags.None, Guid.Empty, Guid.Empty);
         }

         public void AddAccess(AccessControlType accessType, SecurityIdentifier sid, ObjectAccessRule rule)
         {
             AddAccess(accessType, sid, rule.AccessMask, rule.InheritanceFlags, rule.PropagationFlags, rule.ObjectFlags, rule.ObjectType, rule.InheritedObjectType);
         }

         public void AddAccess(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags, ObjectAceFlags objectFlags, Guid objectType, Guid inheritedObjectType)
         {
             if (!base.IsDS)
             {
                 throw new InvalidOperationException(Environment.GetResourceString("InvalidOperation_OnlyValidForDS"));
             }
             CheckAccessType(accessType);
             CheckFlags(inheritanceFlags, propagationFlags);
             everyOneFullAccessForNullDacl = false;
             AddQualifiedAce(sid, (accessType != 0) ? AceQualifier.AccessDenied : AceQualifier.AccessAllowed, accessMask, GenericAce.AceFlagsFromInheritanceFlags(inheritanceFlags, propagationFlags), objectFlags, objectType, inheritedObjectType);
         }

         public void SetAccess(AccessControlType accessType, SecurityIdentifier sid, ObjectAccessRule rule)
         {
             SetAccess(accessType, sid, rule.AccessMask, rule.InheritanceFlags, rule.PropagationFlags, rule.ObjectFlags, rule.ObjectType, rule.InheritedObjectType);
         }

         public void SetAccess(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags, ObjectAceFlags objectFlags, Guid objectType, Guid inheritedObjectType)
         {
             if (!base.IsDS)
             {
                 throw new InvalidOperationException(Environment.GetResourceString("InvalidOperation_OnlyValidForDS"));
             }
             CheckAccessType(accessType);
             CheckFlags(inheritanceFlags, propagationFlags);
             everyOneFullAccessForNullDacl = false;
             SetQualifiedAce(sid, (accessType != 0) ? AceQualifier.AccessDenied : AceQualifier.AccessAllowed, accessMask, GenericAce.AceFlagsFromInheritanceFlags(inheritanceFlags, propagationFlags), objectFlags, objectType, inheritedObjectType);
         }

         public bool RemoveAccess(AccessControlType accessType, SecurityIdentifier sid, ObjectAccessRule rule)
         {
             return RemoveAccess(accessType, sid, rule.AccessMask, rule.InheritanceFlags, rule.PropagationFlags, rule.ObjectFlags, rule.ObjectType, rule.InheritedObjectType);
         }

         public bool RemoveAccess(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags, ObjectAceFlags objectFlags, Guid objectType, Guid inheritedObjectType)
         {
             if (!base.IsDS)
             {
                 throw new InvalidOperationException(Environment.GetResourceString("InvalidOperation_OnlyValidForDS"));
             }
             CheckAccessType(accessType);
             everyOneFullAccessForNullDacl = false;
             return RemoveQualifiedAces(sid, (accessType != 0) ? AceQualifier.AccessDenied : AceQualifier.AccessAllowed, accessMask, GenericAce.AceFlagsFromInheritanceFlags(inheritanceFlags, propagationFlags), saclSemantics: false, objectFlags, objectType, inheritedObjectType);
         }

         public void RemoveAccessSpecific(AccessControlType accessType, SecurityIdentifier sid, ObjectAccessRule rule)
         {
             RemoveAccessSpecific(accessType, sid, rule.AccessMask, rule.InheritanceFlags, rule.PropagationFlags, rule.ObjectFlags, rule.ObjectType, rule.InheritedObjectType);
         }

         public void RemoveAccessSpecific(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags, ObjectAceFlags objectFlags, Guid objectType, Guid inheritedObjectType)
         {
             if (!base.IsDS)
             {
                 throw new InvalidOperationException(Environment.GetResourceString("InvalidOperation_OnlyValidForDS"));
             }
             CheckAccessType(accessType);
             everyOneFullAccessForNullDacl = false;
             RemoveQualifiedAcesSpecific(sid, (accessType != 0) ? AceQualifier.AccessDenied : AceQualifier.AccessAllowed, accessMask, GenericAce.AceFlagsFromInheritanceFlags(inheritanceFlags, propagationFlags), objectFlags, objectType, inheritedObjectType);
         }

         internal override void OnAclModificationTried()
         {
             everyOneFullAccessForNullDacl = false;
         }

         internal static DiscretionaryAcl CreateAllowEveryoneFullAccess(bool isDS, bool isContainer)
         {
             DiscretionaryAcl discretionaryAcl = new DiscretionaryAcl(isContainer, isDS, 1);
             discretionaryAcl.AddAccess(AccessControlType.Allow, _sidEveryone, -1, isContainer ? (InheritanceFlags.ContainerInherit | InheritanceFlags.ObjectInherit) : InheritanceFlags.None, PropagationFlags.None);
             discretionaryAcl.everyOneFullAccessForNullDacl = true;
             return discretionaryAcl;
         }
     }
 }
System.Security
Definition: AllowPartiallyTrustedCallersAttribute.cs:3

System.Security.AccessControl.DiscretionaryAcl.DiscretionaryAcl
DiscretionaryAcl(bool isContainer, bool isDS, RawAcl rawAcl)
Initializes a new instance of the T:System.Security.AccessControl.DiscretionaryAcl class with the spe...
Definition: DiscretionaryAcl.cs:53

System.Security.AccessControl.PropagationFlags
PropagationFlags
Specifies how Access Control Entries (ACEs) are propagated to child objects. These flags are signific...
Definition: PropagationFlags.cs:5

System.Security.AccessControl.AuthorizationRule.AccessMask
internal int AccessMask
Gets the access mask for this rule.
Definition: AuthorizationRule.cs:24

System.Security.AccessControl.DiscretionaryAcl.RemoveAccessSpecific
void RemoveAccessSpecific(AccessControlType accessType, SecurityIdentifier sid, ObjectAccessRule rule)
Removes the specified Access Control Entry (ACE) from the current T:System.Security....
Definition: DiscretionaryAcl.cs:215

System.Security.AccessControl.DiscretionaryAcl.SetAccess
void SetAccess(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags, ObjectAceFlags objectFlags, Guid objectType, Guid inheritedObjectType)
Sets the specified access control for the specified T:System.Security.Principal.SecurityIdentifier ob...
Definition: DiscretionaryAcl.cs:167

System
Definition: __Canon.cs:3

System.Security.AccessControl.ObjectAccessRule.InheritedObjectType
Guid InheritedObjectType
Gets the type of child object that can inherit the T:System.Security.AccessControl....
Definition: ObjectAccessRule.cs:20

System.Security.AccessControl.DiscretionaryAcl.AddAccess
void AddAccess(AccessControlType accessType, SecurityIdentifier sid, ObjectAccessRule rule)
Adds an Access Control Entry (ACE) with the specified settings to the current T:System....
Definition: DiscretionaryAcl.cs:123

System.Security.AccessControl.GenericAce
Represents an Access Control Entry (ACE), and is the base class for all other ACE classes.
Definition: GenericAce.cs:6

System.Security.AccessControl
Definition: AccessControlActions.cs:1

System.Security.AccessControl.RawAcl
Represents an Access Control List (ACL).
Definition: RawAcl.cs:6

System.Security.AccessControl.DiscretionaryAcl.AddAccess
void AddAccess(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags, ObjectAceFlags objectFlags, Guid objectType, Guid inheritedObjectType)
Adds an Access Control Entry (ACE) with the specified settings to the current T:System....
Definition: DiscretionaryAcl.cs:137

System.Security.AccessControl.DiscretionaryAcl.RemoveAccessSpecific
void RemoveAccessSpecific(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags)
Removes the specified Access Control Entry (ACE) from the current T:System.Security....
Definition: DiscretionaryAcl.cs:112

System.Environment
Provides information about, and means to manipulate, the current environment and platform....
Definition: Environment.cs:21

System.Security.AccessControl.ObjectAccessRule.ObjectType
Guid ObjectType
Gets the type of object to which the T:System.Security.AccessControl.ObjectAccessRule applies.
Definition: ObjectAccessRule.cs:16

System.Guid
Represents a globally unique identifier (GUID).To browse the .NET Framework source code for this type...
Definition: Guid.cs:14

System.Security.AccessControl.AceFlags.InheritanceFlags
A logical OR of F:System.Security.AccessControl.AceFlags.ObjectInherit, F:System.Security....

System.Security.AccessControl.DiscretionaryAcl.AddAccess
void AddAccess(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags)
Adds an Access Control Entry (ACE) with the specified settings to the current T:System....
Definition: DiscretionaryAcl.cs:69

System.Security.AccessControl.ObjectAccessRule.ObjectFlags
ObjectAceFlags ObjectFlags
Gets flags that specify if the P:System.Security.AccessControl.ObjectAccessRule.ObjectType and P:Syst...
Definition: ObjectAccessRule.cs:25

System.Security.AccessControl.DiscretionaryAcl.RemoveAccess
bool RemoveAccess(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags)
Removes the specified access control rule from the current T:System.Security.AccessControl....
Definition: DiscretionaryAcl.cs:99

System.Security.AccessControl.DiscretionaryAcl.RemoveAccess
bool RemoveAccess(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags, ObjectAceFlags objectFlags, Guid objectType, Guid inheritedObjectType)
Removes the specified access control rule from the current T:System.Security.AccessControl....
Definition: DiscretionaryAcl.cs:200

System.Security.AccessControl.DiscretionaryAcl.RemoveAccess
bool RemoveAccess(AccessControlType accessType, SecurityIdentifier sid, ObjectAccessRule rule)
Removes the specified access control rule from the current T:System.Security.AccessControl....
Definition: DiscretionaryAcl.cs:184

System.Security.AccessControl.CommonAcl
Represents an access control list (ACL) and is the base class for the T:System.Security....
Definition: CommonAcl.cs:6

System.Security.Principal
Definition: GenericIdentity.cs:6

System.Security.AccessControl.GenericAcl.AclRevisionDS
static readonly byte AclRevisionDS
The revision level of the current T:System.Security.AccessControl.GenericAcl. This value is returned ...
Definition: GenericAcl.cs:12

System.Security.AccessControl.ObjectAccessRule
Represents a combination of a user's identity, an access mask, and an access control type (allow or d...
Definition: ObjectAccessRule.cs:6

System.Security.AccessControl.AccessControlType
AccessControlType
Specifies whether an T:System.Security.AccessControl.AccessRule object is used to allow or deny acces...
Definition: AccessControlType.cs:4

System.Security.AccessControl.DiscretionaryAcl.DiscretionaryAcl
DiscretionaryAcl(bool isContainer, bool isDS, byte revision, int capacity)
Initializes a new instance of the T:System.Security.AccessControl.DiscretionaryAcl class with the spe...
Definition: DiscretionaryAcl.cs:42

System.Security.AccessControl.AuthorizationRule.InheritanceFlags
InheritanceFlags InheritanceFlags
Gets the value of flags that determine how this rule is inherited by child objects.
Definition: AuthorizationRule.cs:33

System.Security.AccessControl.DiscretionaryAcl.SetAccess
void SetAccess(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags)
Sets the specified access control for the specified T:System.Security.Principal.SecurityIdentifier ob...
Definition: DiscretionaryAcl.cs:83

System.Security.AccessControl.GenericAcl
Represents an access control list (ACL) and is the base class for the T:System.Security....
Definition: GenericAcl.cs:6

System.Security.AccessControl.AceQualifier
AceQualifier
Specifies the function of an access control entry (ACE).
Definition: AceQualifier.cs:4

System.Security.Principal.SecurityIdentifier
Represents a security identifier (SID) and provides marshaling and comparison operations for SIDs.
Definition: SecurityIdentifier.cs:12

System.Security.AccessControl.DiscretionaryAcl.RemoveAccessSpecific
void RemoveAccessSpecific(AccessControlType accessType, SecurityIdentifier sid, int accessMask, InheritanceFlags inheritanceFlags, PropagationFlags propagationFlags, ObjectAceFlags objectFlags, Guid objectType, Guid inheritedObjectType)
Removes the specified Access Control Entry (ACE) from the current T:System.Security....
Definition: DiscretionaryAcl.cs:229

System.Security.AccessControl.GenericAcl.AclRevision
static readonly byte AclRevision
The revision level of the current T:System.Security.AccessControl.GenericAcl. This value is returned ...
Definition: GenericAcl.cs:9

System.InvalidOperationException
The exception that is thrown when a method call is invalid for the object's current state.
Definition: InvalidOperationException.cs:10

System.Security.AccessControl.DiscretionaryAcl.SetAccess
void SetAccess(AccessControlType accessType, SecurityIdentifier sid, ObjectAccessRule rule)
Sets the specified access control for the specified T:System.Security.Principal.SecurityIdentifier ob...
Definition: DiscretionaryAcl.cs:153

System.Guid.Empty
static readonly Guid Empty
A read-only instance of the T:System.Guid structure whose value is all zeros.
Definition: Guid.cs:126

System.Security.AccessControl.DiscretionaryAcl
Represents a Discretionary Access Control List (DACL).
Definition: DiscretionaryAcl.cs:6

System.Security.AccessControl.InheritanceFlags
InheritanceFlags
Inheritance flags specify the semantics of inheritance for access control entries (ACEs).
Definition: InheritanceFlags.cs:5

System.Security.AccessControl.ObjectAceFlags
ObjectAceFlags
Specifies the presence of object types for Access Control Entries (ACEs).
Definition: ObjectAceFlags.cs:5

System.Security.Principal.WellKnownSidType
WellKnownSidType
Defines a set of commonly used security identifiers (SIDs).
Definition: WellKnownSidType.cs:7

System.Security.AccessControl.AuthorizationRule.PropagationFlags
PropagationFlags PropagationFlags
Gets the value of the propagation flags, which determine how inheritance of this rule is propagated t...
Definition: AuthorizationRule.cs:37