Authorization Plug-in Entry Points
Authorization plug-ins are configured only for an Internet Information Services (IIS) host process. Only one authorization plug-in can be configured per virtual directory.
All authorization plug-ins must support the following entry points:
The following entry point is optional:
The following table provides an overview of the authorization plug-in entry points in the Windows Remote Management (WinRM) Plug-in API.
| Function | Description |
|---|---|
| WSMAN_PLUGIN_ AUTHORIZE_OPERATION | Called to authorize a specific operation. The DLL entry point name for this method must be WSManPluginAuthzOperation. |
| WSMAN_PLUGIN_ AUTHORIZE_QUERY_QUOTA | Called after a connection has been authorized to retrieve quota information for the user. The DLL entry point name for this method must be WSManPluginAuthzQueryQuota. |
| WSMAN_PLUGIN_ AUTHORIZE_RELEASE_CONTEXT | Called to release the context that a plug-in reports from either the WSManPluginAuthzUserComplete or WSManPluginAuthzOperationComplete methods. The DLL entry point name for this method must be WSManPluginAuthzReleaseContext. |
| WSMAN_PLUGIN_AUTHORIZE_USER | Called to determine whether the user is allowed to carry out a request. The dynamic-link library (DLL) entry point name for this method must be WSManPluginAuthzUser. |