System.IO.FileSystem.AccessControl
[SECURITY CRITICAL] Provides the ability to control access to directory objects without direct manipulation of Access Control Lists (ACLs).
[SECURITY CRITICAL] Initializes a new instance of the class.
[SECURITY CRITICAL] Initializes a new instance of the class with the specified security descriptor.
The security descriptor to be associated with the new object.
[SECURITY CRITICAL] Initializes a new instance of the class with the specified values.
The object that this method creates.
The identity to which the access rule applies. It must be an object that can be cast as a .
The access mask of this rule. The access mask is a 32-bit collection of anonymous bits, the meaning of which is defined by the individual integrators.
true if this rule is inherited from a parent container.
Specifies the inheritance properties of the access rule.
Specifies whether inherited access rules are automatically propagated. The propagation flags are ignored if is set to .
Specifies the valid access control type.
The identity of the class of objects to which the new access rule applies.
The identity of the class of child objects which can inherit the new access rule.
[SECURITY CRITICAL] Adds the specified access rule to the Discretionary Access Control List (DACL) associated with this object.
The access rule to add.
[SECURITY CRITICAL] Adds the specified audit rule to the System Access Control List (SACL) associated with this object.
The audit rule to add.
[SECURITY CRITICAL] Initializes a new instance of the class with the specified values.
The object that this method creates.
The identity to which the audit rule applies. It must be an object that can be cast as a .
The access mask of this rule. The access mask is a 32-bit collection of anonymous bits, the meaning of which is defined by the individual integrators.
true if this rule is inherited from a parent container.
Specifies the inheritance properties of the audit rule.
Specifies whether inherited audit rules are automatically propagated. The propagation flags are ignored if is set to .
Specifies the conditions for which the rule is audited.
The identity of the class of objects to which the new audit rule applies.
The identity of the class of child objects which can inherit the new audit rule.
[SECURITY CRITICAL] Gets a collection of the access rules associated with the specified security identifier.
The collection of access rules associated with the specified object.
true to include access rules explicitly set for the object.
true to include inherited access rules.
The security identifier for which to retrieve access rules. This must be an object that can be cast as a object.
[SECURITY CRITICAL] Gets a collection of the audit rules associated with the specified security identifier.
The collection of audit rules associated with the specified object.
true to include audit rules explicitly set for the object.
true to include inherited audit rules.
The security identifier for which to retrieve audit rules. This must be an object that can be cast as a object.
[SECURITY CRITICAL] Applies the specified modification to the Discretionary Access Control List (DACL) associated with this object.
true if the DACL is successfully modified; otherwise, false.
The modification to apply to the DACL.
The access rule to modify.
true if the DACL is successfully modified; otherwise, false.
[SECURITY CRITICAL] Applies the specified modification to the System Access Control List (SACL) associated with this object.
true if the SACL is successfully modified; otherwise, false.
The modification to apply to the SACL.
The audit rule to modify.
true if the SACL is successfully modified; otherwise, false.
[SECURITY CRITICAL] Removes access rules that contain the same security identifier and access mask as the specified access rule from the Discretionary Access Control List (DACL) associated with this object.
true if the access rule was successfully removed; otherwise, false.
The access rule to remove.
[SECURITY CRITICAL] Removes all access rules that have the same security identifier as the specified access rule from the Discretionary Access Control List (DACL) associated with this object.
The access rule to remove.
[SECURITY CRITICAL] Removes all access rules that exactly match the specified access rule from the Discretionary Access Control List (DACL) associated with this object.
The access rule to remove.
[SECURITY CRITICAL] Removes audit rules that contain the same security identifier and access mask as the specified audit rule from the System Access Control List (SACL) associated with this object.
true if the audit rule was successfully removed; otherwise, false.
The audit rule to remove.
[SECURITY CRITICAL] Removes all audit rules that have the same security identifier as the specified audit rule from the System Access Control List (SACL) associated with this object.
The audit rule to remove.
[SECURITY CRITICAL] Removes all audit rules that exactly match the specified audit rule from the System Access Control List (SACL) associated with this object.
The audit rule to remove.
[SECURITY CRITICAL] Removes all access rules in the Discretionary Access Control List (DACL) associated with this object and then adds the specified access rule.
The access rule to reset.
[SECURITY CRITICAL] Removes all access rules that contain the same security identifier and qualifier as the specified access rule in the Discretionary Access Control List (DACL) associated with this object and then adds the specified access rule.
The access rule to set.
[SECURITY CRITICAL] Removes all audit rules that contain the same security identifier and qualifier as the specified audit rule in the System Access Control List (SACL) associated with this object and then adds the specified audit rule.
The audit rule to set.
[SECURITY CRITICAL] Represents the access control and audit security for a directory. This class cannot be inherited.
[SECURITY CRITICAL] Initializes a new instance of the class.
[SECURITY CRITICAL] Initializes a new instance of the class from a specified directory using the specified values of the enumeration.
The location of a directory to create a object from.
One of the values that specifies the type of access control list (ACL) information to retrieve.
[SECURITY CRITICAL] Represents the access control and audit security for a file. This class cannot be inherited.
[SECURITY CRITICAL] Initializes a new instance of the class.
[SECURITY CRITICAL] Initializes a new instance of the class from a specified file using the specified values of the enumeration.
The location of a file to create a object from.
One of the values that specifies the type of access control list (ACL) information to retrieve.
[SECURITY CRITICAL] Represents an abstraction of an access control entry (ACE) that defines an access rule for a file or directory. This class cannot be inherited.
[SECURITY CRITICAL] Initializes a new instance of the class using a reference to a user account, a value that specifies the type of operation associated with the access rule, and a value that specifies whether to allow or deny the operation.
An object that encapsulates a reference to a user account.
One of the values that specifies the type of operation associated with the access rule.
One of the values that specifies whether to allow or deny the operation.
[SECURITY CRITICAL] Initializes a new instance of the class using a reference to a user account, a value that specifies the type of operation associated with the access rule, a value that determines how rights are inherited, a value that determines how rights are propagated, and a value that specifies whether to allow or deny the operation.
An object that encapsulates a reference to a user account.
One of the values that specifies the type of operation associated with the access rule.
One of the values that specifies how access masks are propagated to child objects.
One of the values that specifies how Access Control Entries (ACEs) are propagated to child objects.
One of the values that specifies whether to allow or deny the operation.
[SECURITY CRITICAL] Initializes a new instance of the class using the name of a user account, a value that specifies the type of operation associated with the access rule, and a value that describes whether to allow or deny the operation.
The name of a user account.
One of the values that specifies the type of operation associated with the access rule.
One of the values that specifies whether to allow or deny the operation.
[SECURITY CRITICAL] Initializes a new instance of the class using the name of a user account, a value that specifies the type of operation associated with the access rule, a value that determines how rights are inherited, a value that determines how rights are propagated, and a value that specifies whether to allow or deny the operation.
The name of a user account.
One of the values that specifies the type of operation associated with the access rule.
One of the values that specifies how access masks are propagated to child objects.
One of the values that specifies how Access Control Entries (ACEs) are propagated to child objects.
One of the values that specifies whether to allow or deny the operation.
[SECURITY CRITICAL] Gets the flags associated with the current object.
The flags associated with the current object.
[SECURITY CRITICAL] Represents an abstraction of an access control entry (ACE) that defines an audit rule for a file or directory. This class cannot be inherited.
[SECURITY CRITICAL] Initializes a new instance of the class using a reference to a user account, a value that specifies the type of operation associated with the audit rule, and a value that specifies when to perform auditing.
An object that encapsulates a reference to a user account.
One of the values that specifies the type of operation associated with the audit rule.
One of the values that specifies when to perform auditing.
[SECURITY CRITICAL] Initializes a new instance of the class using the name of a reference to a user account, a value that specifies the type of operation associated with the audit rule, a value that determines how rights are inherited, a value that determines how rights are propagated, and a value that specifies when to perform auditing.
An object that encapsulates a reference to a user account.
One of the values that specifies the type of operation associated with the audit rule.
One of the values that specifies how access masks are propagated to child objects.
One of the values that specifies how Access Control Entries (ACEs) are propagated to child objects.
One of the values that specifies when to perform auditing.
[SECURITY CRITICAL] Initializes a new instance of the class using a user account name, a value that specifies the type of operation associated with the audit rule, and a value that specifies when to perform auditing.
The name of a user account.
One of the values that specifies the type of operation associated with the audit rule.
One of the values that specifies when to perform auditing.
[SECURITY CRITICAL] Initializes a new instance of the class using the name of a user account, a value that specifies the type of operation associated with the audit rule, a value that determines how rights are inherited, a value that determines how rights are propagated, and a value that specifies when to perform auditing.
The name of a user account.
One of the values that specifies the type of operation associated with the audit rule.
One of the values that specifies how access masks are propagated to child objects.
One of the values that specifies how Access Control Entries (ACEs) are propagated to child objects.
One of the values that specifies when to perform auditing.
[SECURITY CRITICAL] Gets the flags associated with the current object.
The flags associated with the current object.
[SECURITY CRITICAL] Defines the access rights to use when creating access and audit rules.
Specifies the right to append data to the end of a file.
Specifies the right to change the security and audit rules associated with a file or folder.
Specifies the right to create a folder.
Specifies the right to create a file.
Specifies the right to delete a folder or file.
Specifies the right to delete a folder and any files contained within that folder.
Specifies the right to run an application file.
Specifies the right to exert full control over a folder or file, and to modify access control and audit rules. This value represents the right to do anything with a file and is the combination of all rights in this enumeration.
Specifies the right to read the contents of a directory.
Specifies the right to read, write, list folder contents, delete folders and files, and run application files. This right includes the right, the right, and the right.
Specifies the right to open and copy folders or files as read-only. This right includes the right, right, right, and right.
Specifies the right to open and copy folders or files as read-only, and to run application files. This right includes the right and the right.
Specifies the right to open and copy file system attributes from a folder or file. For example, this value specifies the right to view the file creation or modified date. This does not include the right to read data, extended file system attributes, or access and audit rules.
Specifies the right to open and copy a file or folder. This does not include the right to read file system attributes, extended file system attributes, or access and audit rules.
Specifies the right to open and copy extended file system attributes from a folder or file. For example, this value specifies the right to view author and content information. This does not include the right to read data, file system attributes, or access and audit rules.
Specifies the right to open and copy access and audit rules from a folder or file. This does not include the right to read data, file system attributes, and extended file system attributes.
Specifies whether the application can wait for a file handle to synchronize with the completion of an I/O operation.
Specifies the right to change the owner of a folder or file. Note that owners of a resource have full access to that resource.
Specifies the right to list the contents of a folder and to run applications contained within that folder.
Specifies the right to create folders and files, and to add or remove data from files. This right includes the right, right, right, and right.
Specifies the right to open and write file system attributes to a folder or file. This does not include the ability to write data, extended attributes, or access and audit rules.
Specifies the right to open and write to a file or folder. This does not include the right to open and write file system attributes, extended file system attributes, or access and audit rules.
Specifies the right to open and write extended file system attributes to a folder or file. This does not include the ability to write data, attributes, or access and audit rules.
[SECURITY CRITICAL] Represents the access control and audit security for a file or directory.
[SECURITY CRITICAL] Gets the enumeration that the class uses to represent access rights.
A object representing the enumeration.
[SECURITY CRITICAL] Initializes a new instance of the class that represents a new access control rule for the specified user, with the specified access rights, access control, and flags.
A new object that represents a new access control rule for the specified user, with the specified access rights, access control, and flags.
An object that represents a user account.
An integer that specifies an access type.
true if the access rule is inherited; otherwise, false.
One of the values that specifies how to propagate access masks to child objects.
One of the values that specifies how to propagate Access Control Entries (ACEs) to child objects.
One of the values that specifies whether access is allowed or denied.
[SECURITY CRITICAL] Gets the enumeration that the class uses to represent access rules.
A object representing the class.
[SECURITY CRITICAL] Adds the specified access control list (ACL) permission to the current file or directory.
A object that represents an access control list (ACL) permission to add to a file or directory.
[SECURITY CRITICAL] Adds the specified audit rule to the current file or directory.
A object that represents an audit rule to add to a file or directory.
[SECURITY CRITICAL] Initializes a new instance of the class representing the specified audit rule for the specified user.
A new object representing the specified audit rule for the specified user.
An object that represents a user account.
An integer that specifies an access type.
true if the access rule is inherited; otherwise, false.
One of the values that specifies how to propagate access masks to child objects.
One of the values that specifies how to propagate Access Control Entries (ACEs) to child objects.
One of the values that specifies the type of auditing to perform.
[SECURITY CRITICAL] Gets the type that the class uses to represent audit rules.
A object representing the class.
[SECURITY CRITICAL] Removes all matching allow or deny access control list (ACL) permissions from the current file or directory.
true if the access rule was removed; otherwise, false.
A object that represents an access control list (ACL) permission to remove from a file or directory.
[SECURITY CRITICAL] Removes all access control list (ACL) permissions for the specified user from the current file or directory.
A object that specifies a user whose access control list (ACL) permissions should be removed from a file or directory.
[SECURITY CRITICAL] Removes a single matching allow or deny access control list (ACL) permission from the current file or directory.
A object that specifies a user whose access control list (ACL) permissions should be removed from a file or directory.
[SECURITY CRITICAL] Removes all matching allow or deny audit rules from the current file or directory.
true if the audit rule was removed; otherwise, false
A object that represents an audit rule to remove from a file or directory.
[SECURITY CRITICAL] Removes all audit rules for the specified user from the current file or directory.
A object that specifies a user whose audit rules should be removed from a file or directory.
[SECURITY CRITICAL] Removes a single matching allow or deny audit rule from the current file or directory.
A object that represents an audit rule to remove from a file or directory.
[SECURITY CRITICAL] Adds the specified access control list (ACL) permission to the current file or directory and removes all matching ACL permissions.
A object that represents an access control list (ACL) permission to add to a file or directory.
[SECURITY CRITICAL] Sets the specified access control list (ACL) permission for the current file or directory.
A object that represents an access control list (ACL) permission to set for a file or directory.
[SECURITY CRITICAL] Sets the specified audit rule for the current file or directory.
A object that represents an audit rule to set for a file or directory.