다음을 통해 공유


AceCollection Class

Represents a collection of access control entries specifying access rights for one or more trustees.

네임스페이스: Microsoft.ReportingServices.Interfaces
어셈블리: Microsoft.ReportingServices.Interfaces (in microsoft.reportingservices.interfaces.dll)

구문

‘선언
<SerializableAttribute> _
<DefaultMemberAttribute("Item")> _
Public NotInheritable Class AceCollection
    Inherits CollectionBase
[SerializableAttribute] 
[DefaultMemberAttribute("Item")] 
public sealed class AceCollection : CollectionBase
[SerializableAttribute] 
[DefaultMemberAttribute(L"Item")] 
public ref class AceCollection sealed : public CollectionBase
/** @attribute SerializableAttribute() */ 
/** @attribute DefaultMemberAttribute("Item") */ 
public final class AceCollection extends CollectionBase
SerializableAttribute 
DefaultMemberAttribute("Item") 
public final class AceCollection extends CollectionBase

주의

An AceCollection instance contains items of type AceStruct and is used to represent an access control list (ACL) for items in the report server database.

An AceCollection identifies the trustees that are allowed access to a securable item in the report server database. When a user or process tries to access a securable item, the security extension checks the access control entries in the object's access control entry collection to determine whether to grant access to it. The security extension checks the access control entries in sequence until it finds one or more that allow all the requested access rights. For more information about access checks, see CheckAccess.

An AceCollection is similar to an access control list in Microsoft Windows. It is a list that tells a report server which access rights each user has to a particular item in the report server database, such as a folder or an individual report. Each item has a security descriptor that identifies its access control list. The list has an entry for each system user with access privileges. The most common privileges include the ability to read properties, to update content, and to execute reports. Each access control list has one or more access control entries consisting of the name of a user or group and the operations that user is allowed to perform. For each of these users or groups, the access privileges are stated in a collection of enumerable operations. Generally, the system administrator or the item owner creates the access control list for an object when setting report server policies through the Report Server Web service. Management applications (like Report Manager) call the Web service SetPolicies and SetSystemPolicies methods.

An AceCollection is passed as an argument to the CreateSecurityDescriptor method of the IAuthorizationExtension interface. You implement CreateSecurityDescriptor to serialize the AceCollection and any other metadata that you require for your security descriptor. You must also process the AceCollection for an item in the report server database when you implement the CheckAccess method.

Inheritance Hierarchy

System.Object
   System.Collections.CollectionBase
    Microsoft.ReportingServices.Interfaces.AceCollection

스레드 보안

Any public static (Shared in Microsoft Visual Basic) members of this type are thread safe. Any instance members are not guaranteed to be thread safe.

플랫폼

개발 플랫폼

지원되는 플랫폼 목록은 SQL Server 2005 설치를 위한 하드웨어 및 소프트웨어 요구 사항을 참조하십시오.

대상 플랫폼

지원되는 플랫폼 목록은 SQL Server 2005 설치를 위한 하드웨어 및 소프트웨어 요구 사항을 참조하십시오.

참고 항목

참조

AceCollection Members
Microsoft.ReportingServices.Interfaces Namespace