Condividi tramite


Security Code Permission Properties

Applies To: Microsoft Dynamics AX 2012 R3, Microsoft Dynamics AX 2012 R2, Microsoft Dynamics AX 2012 Feature Pack, Microsoft Dynamics AX 2012

A code permission is a group of permissions that are associated with a menu item or a service operation. When a security role has access to a menu item, the role also has access to other AOT items that are mentioned within the code permission for the menu item. The degree of access is controlled by the particular permissions that are defined under the code permission node.

Securable Objects

Code permissions are used to give access to securable objects. The following list shows the hierarchy of code permission nodes in the AOT:

  • Security

    • Code Permissions

      • YourCodePermission

        • Tables

        • Server Methods

        • Associated Objects

          • Forms

          • Web Controls

          • Reports

Code permissions can also override the access levels to securable objects under the Associated Objects node.

Code Permission Properties

This section describes the properties for the AOT node at Security > Code Permissions > YourCodePermission.

Property

Required

Description

Name

Yes

Name of the code permission. The code permission allows users to execute the class method that is specified in Method property.

Class

Optional

Class that is associated with this code permission.

Method

Optional

Method that is associated with this code permission.

Table Properties

This section describes the properties for the AOT node at Security > Code Permissions > YourCodePermission > Tables > YourTable.

Property

Required

Description

Table

Yes

Name of the table.

EffectiveAccess

Yes

Permission value. The value can be one of the following:

  • Read

  • Update

  • Create

  • Correct

  • Delete

  • NoAccess

The permission values for the EffectiveAccess property represent a hierarchy. Read is the weakest permission, and Delete is the strongest. Delete permission includes every other permission. Create permission includes Update and Read.

You can set the permission value to NoAccess to prevent all access to the table.

ManagedBy

Optional

This property is for use by automation tools.

Server Method Properties

This section describes the properties for the AOT node at Security > Code Permissions > YourCodePermission > Server Methods > YourServerMethod.

Property

Required

Description

Class

Yes

Name of the server class.

Method

Yes

The secure server method that is tagged with the SysEntryPointAttribute attribute.

EffectiveAccess

Yes

Permission value. The value can be one of the following:

  • Invoke. The server method can be called.

  • NoAccess. The server method cannot be called.

ManagedBy

Optional

This property is for use by automation tools.

Form Properties

This section describes the properties for the AOT node at Security > Code Permissions > YourCodePermission > Associated Objects > Forms > YourForm.

Property

Required

Description

Form

Yes

Name of the form.

AccessLevel

Yes

Permission value. This field can contain one of the following values:

  • Read

  • Update

  • Create

  • Correct

  • Delete

  • NoAccess

The permission values for the EffectiveAccess property represent a hierarchy. Read is the weakest permission, and Delete is the strongest. Delete permission includes every other permission. Create permission includes Update and Read.

You can set the permission value to NoAccess to prevent all access to the form.

ManagedBy

Optional

This property is for use by automation tools.

Web Control Properties

This section describes the properties for the AOT node at Security > Code Permissions > YourCodePermission > Associated Objects > Web Controls > YourWebControl.

Property

Required

Description

WebControl

Yes

Name of the web control.

AccessLevel

Yes

Permission value. The value can be one of the following:

  • Read

  • Update

  • Create

  • Correct

  • Delete

  • NoAccess

The permission values for the EffectiveAccess property represent a hierarchy. Read is the weakest permission, and Delete is the strongest. Delete permission includes every other permission. Create permission includes Update and Read.

You can set the permission value to NoAccess to prevent all access to the web control.

ManagedBy

Optional

This property is for use by automation tools.

Report Properties

This section describes the properties for the AOT node at Security > Code Permissions > YourCodePermission > Associated Objects > Reports > YourReport.

Property

Required

Description

Name

Yes

Name of the report design.

Report

Yes

Full name of the report.

ManagedBy

Optional

This property is for use by automation tools.

See also

Role-based Security in the AOT for Developers

Role-Based Security System

Walkthrough: Creating a Code Permission under AOT Security

Walkthrough: Design Permissions for a Form that is Started from a Menu Item

Announcements: New book: "Inside Microsoft Dynamics AX 2012 R3" now available. Get your copy at the MS Press Store.