Partager via

CSecurityDesc Class

  • Article

This class is a wrapper for the SECURITY_DESCRIPTOR structure.

Important

This class and its members cannot be used in applications that execute in the Windows Runtime.

class CSecurityDesc

Members

Public Constructors

Name

Description

CSecurityDesc::CSecurityDesc

The constructor.

CSecurityDesc::~CSecurityDesc

The destructor.

Public Methods

Name

Description

CSecurityDesc::FromString

Converts a string-format security descriptor into a valid, functional security descriptor.

CSecurityDesc::GetControl

Retrieves control information from the security descriptor.

CSecurityDesc::GetDacl

Retrieves discretionary access-control list (DACL) information from the security descriptor.

CSecurityDesc::GetGroup

Retrieves the primary group information from the security descriptor.

CSecurityDesc::GetOwner

Retrieves owner informaton from the security descriptor.

CSecurityDesc::GetPSECURITY_DESCRIPTOR

Returns a pointer to the SECURITY_DESCRIPTOR structure.

CSecurityDesc::GetSacl

Retrieves system access-control list (SACL) information from the security descriptor.

CSecurityDesc::IsDaclAutoInherited

Determines if the DACL is configured to support automatic propagation.

CSecurityDesc::IsDaclDefaulted

Determines if the security descriptor is configured with a default DACL.

CSecurityDesc::IsDaclPresent

Determines if the security descriptor contains a DACL.

CSecurityDesc::IsDaclProtected

Determines if the DACL is configured to prevent modifications.

CSecurityDesc::IsGroupDefaulted

Determines if the security descriptor's group security identifier (SID) was set by default.

CSecurityDesc::IsOwnerDefaulted

Determines if the security descriptor's owner SID was set by default.

CSecurityDesc::IsSaclAutoInherited

Determines if the SACL is configured to support automatic propagation.

CSecurityDesc::IsSaclDefaulted

Determines if the security descriptor is configured with a default SACL.

CSecurityDesc::IsSaclPresent

Determines if the security descriptor contains a SACL.

CSecurityDesc::IsSaclProtected

Determines if the SACL is configured to prevent modifications.

CSecurityDesc::IsSelfRelative

Determines if the security descriptor is in self-relative format.

CSecurityDesc::MakeAbsolute

Call this method to convert the security descriptor to absolute format.

CSecurityDesc::MakeSelfRelative

Call this method to convert the security descriptor to self-relative format.

CSecurityDesc::SetControl

Sets the control bits of a security descriptor.

CSecurityDesc::SetDacl

Sets information in a DACL. If a DACL is already present in the security descriptor, it is replaced.

CSecurityDesc::SetGroup

Sets the primary group information of an absolute format security descriptor, replacing any primary group information already present.

CSecurityDesc::SetOwner

Sets the owner information of an absolute format security descriptor, replacing any owner information already present.

CSecurityDesc::SetSacl

Sets information in a SACL. If a SACL is already present in the security descriptor, it is replaced.

CSecurityDesc::ToString

Converts a security descriptor to a string format.

Public Operators

Name

Description

CSecurityDesc::operator const SECURITY_DESCRIPTOR *

Returns a pointer to the SECURITY_DESCRIPTOR structure.

CSecurityDesc::operator =

Assignment operator.

Remarks

The SECURITY_DESCRIPTOR structure contains the security information associated with an object. Applications use this structure to set and query an object's security status. See also AtlGetSecurityDescriptor.

Applications should not modify the SECURITY_DESCRIPTOR structure directly, and instead should use the class methods provided.

For an introduction to the access control model in Windows, see Access Control in the Windows SDK.

Requirements

Header: atlsecurity.h

See Also

Reference

SECURITY_DESCRIPTOR

Concepts

Security Sample

Other Resources

ATL Class Overview

Security Global Functions