Early Preview
This is currently very much a preview. Please feel free to try things out,
but don't be upset if anything is not yet working. Feedback is welcome over on our
GitHub Dicussions page.
System.Security.AccessControl
System Library
| Author | Microsoft |
| Version | 10.0.1 |
| Tags |
Public Types
System.Security.AccessControl
enum AccessControlActions
Specifies the actions that are permitted for securable objects.
Specifies the type of access control modification to perform. This enumeration is used by methods of the <see cref="T:System.Security.AccessControl.ObjectSecurity" /> class and its descendants.
Specifies which sections of a security descriptor to save or load.
enum AccessControlType
Specifies whether an <see cref="T:System.Security.AccessControl.AccessRule" /> object is used to allow or deny access. These values are not flags, and they cannot be combined.
class AccessRule
Represents a combination of a user's identity, an access mask, and an access control type (allow or deny). An <see cref="T:System.Security.AccessControl.AccessRule" /> object also contains information about how the rule is inherited by child objects and how that inheritance is propagated.
class AccessRule<T>
Represents a combination of a user's identity, an access mask, and an access control type (allow or deny). An AccessRule`1 object also contains information about the how the rule is inherited by child objects and how that inheritance is propagated.
class AceEnumerator
Provides the ability to iterate through the access control entries (ACEs) in an access control list (ACL).
enum AceFlags
Specifies the inheritance and auditing behavior of an access control entry (ACE).
enum AceQualifier
Specifies the function of an access control entry (ACE).
enum AceType
Defines the available access control entry (ACE) types.
enum AuditFlags
Specifies the conditions for auditing attempts to access a securable object.
class AuditRule
Represents a combination of a user's identity and an access mask. An <see cref="T:System.Security.AccessControl.AuditRule" /> object also contains information about how the rule is inherited by child objects, how that inheritance is propagated, and for what conditions it is audited.
class AuditRule<T>
Represents a combination of a user's identity and an access mask.
class AuthorizationRule
Determines access to securable objects. The derived classes <see cref="T:System.Security.AccessControl.AccessRule" /> and <see cref="T:System.Security.AccessControl.AuditRule" /> offer specializations for access and audit functionality.
Represents a collection of <see cref="T:System.Security.AccessControl.AuthorizationRule" /> objects.
class CommonAce
Represents an access control entry (ACE).
class CommonAcl
Represents an access control list (ACL) and is the base class for the <see cref="T:System.Security.AccessControl.DiscretionaryAcl" /> and <see cref="T:System.Security.AccessControl.SystemAcl" /> classes.
class CommonObjectSecurity
Controls access to objects without direct manipulation of access control lists (ACLs). This class is the abstract base class for the <see cref="T:System.Security.AccessControl.NativeObjectSecurity" /> class.
class CommonSecurityDescriptor
Represents a security descriptor. A security descriptor includes an owner, a primary group, a Discretionary Access Control List (DACL), and a System Access Control List (SACL).
class CompoundAce
Represents a compound Access Control Entry (ACE).
enum CompoundAceType
Specifies the type of a <see cref="T:System.Security.AccessControl.CompoundAce" /> object.
enum ControlFlags
These flags affect the security descriptor behavior.
class CustomAce
Represents an Access Control Entry (ACE) that is not defined by one of the members of the <see cref="T:System.Security.AccessControl.AceType" /> enumeration.
class DiscretionaryAcl
Represents a Discretionary Access Control List (DACL).
class GenericAce
Represents an Access Control Entry (ACE), and is the base class for all other ACE classes.
class GenericAcl
Represents an access control list (ACL) and is the base class for the <see cref="T:System.Security.AccessControl.CommonAcl" /> , <see cref="T:System.Security.AccessControl.DiscretionaryAcl" /> , <see cref="T:System.Security.AccessControl.RawAcl" /> , and <see cref="T:System.Security.AccessControl.SystemAcl" /> classes.
Represents a security descriptor. A security descriptor includes an owner, a primary group, a Discretionary Access Control List (DACL), and a System Access Control List (SACL).
enum InheritanceFlags
Inheritance flags specify the semantics of inheritance for access control entries (ACEs).
class KnownAce
Encapsulates all Access Control Entry (ACE) types currently defined by Microsoft Corporation. All <see cref="T:System.Security.AccessControl.KnownAce" /> objects contain a 32-bit access mask and a <see cref="T:System.Security.Principal.SecurityIdentifier" /> object.
class NativeObjectSecurity
Provides the ability to control access to native objects without direct manipulation of Access Control Lists (ACLs). Native object types are defined by the <see cref="T:System.Security.AccessControl.ResourceType" /> enumeration.
class ObjectAccessRule
Represents a combination of a user's identity, an access mask, and an access control type (allow or deny). An <see cref="T:System.Security.AccessControl.ObjectAccessRule" /> object also contains information about the type of object to which the rule applies, the type of child object that can inherit the rule, how the rule is inherited by child objects, and how that inheritance is propagated.
class ObjectAce
Controls access to Directory Services objects. This class represents an Access Control Entry (ACE) associated with a directory object.
enum ObjectAceFlags
Specifies the presence of object types for Access Control Entries (ACEs).
class ObjectAuditRule
Represents a combination of a user's identity, an access mask, and audit conditions. An <see cref="T:System.Security.AccessControl.ObjectAuditRule" /> object also contains information about the type of object to which the rule applies, the type of child object that can inherit the rule, how the rule is inherited by child objects, and how that inheritance is propagated.
class ObjectSecurity
Provides the ability to control access to objects without direct manipulation of Access Control Lists (ACLs). This class is the abstract base class for the <see cref="T:System.Security.AccessControl.CommonObjectSecurity" /> and <see cref="T:System.Security.AccessControl.DirectoryObjectSecurity" /> classes.
class ObjectSecurity<T>
Provides the ability to control access to objects without direct manipulation of Access Control Lists (ACLs); also grants the ability to type-cast access rights.
The exception that is thrown when a method in the <see cref="N:System.Security.AccessControl" /> namespace attempts to enable a privilege that it does not have.
enum PropagationFlags
Specifies how Access Control Entries (ACEs) are propagated to child objects. These flags are significant only if inheritance flags are present.
class QualifiedAce
Represents an Access Control Entry (ACE) that contains a qualifier. The qualifier, represented by an <see cref="T:System.Security.AccessControl.AceQualifier" /> object, specifies whether the ACE allows access, denies access, causes system audits, or causes system alarms. The <see cref="T:System.Security.AccessControl.QualifiedAce" /> class is the abstract base class for the <see cref="T:System.Security.AccessControl.CommonAce" /> and <see cref="T:System.Security.AccessControl.ObjectAce" /> classes.
class RawAcl
Represents an Access Control List (ACL).
class RawSecurityDescriptor
Represents a security descriptor. A security descriptor includes an owner, a primary group, a Discretionary Access Control List (DACL), and a System Access Control List (SACL).
enum ResourceType
Specifies the defined native object types.
enum SecurityInfos
Specifies the section of a security descriptor to be queried or set.
class SystemAcl
Represents a System Access Control List (SACL).
System.Security.Policy
class Evidence
Defines the set of information that constitutes input to security policy decisions. This class cannot be inherited.
class EvidenceBase
Provides a base class from which all objects to be used as evidence must derive.