다음을 통해 공유

  • 아티클

Deny 메서드 (DatabasePermissionSet, String[], Boolean)

데이터베이스에 대해 지정한 피부여자와 피부여자가 지정한 사용 권한 집합을 부여한 다른 사용자의 지정한 사용 권한 집합을 거부합니다.

네임스페이스:  Microsoft.SqlServer.Management.Smo
어셈블리:  Microsoft.SqlServer.Smo(Microsoft.SqlServer.Smo.dll)

구문

‘선언
Public Sub Deny ( _
    permission As DatabasePermissionSet, _
    granteeNames As String(), _
    cascade As Boolean _
)
‘사용 방법
Dim instance As Database
Dim permission As DatabasePermissionSet
Dim granteeNames As String()
Dim cascade As Boolean

instance.Deny(permission, granteeNames, _
    cascade)

public void Deny(
    DatabasePermissionSet permission,
    string[] granteeNames,
    bool cascade
)

public:
void Deny(
    DatabasePermissionSet^ permission, 
    array<String^>^ granteeNames, 
    bool cascade
)

member Deny : 
        permission:DatabasePermissionSet * 
        granteeNames:string[] * 
        cascade:bool -> unit 

public function Deny(
    permission : DatabasePermissionSet, 
    granteeNames : String[], 
    cascade : boolean
)

매개 변수

  • granteeNames
    유형: array<System. . :: . .String> [] () [] []
    지정한 사용 권한 집합을 거부할 피부여자 목록을 지정하는 String 배열입니다.
  • cascade
    유형: System. . :: . .Boolean
    피부여자가 지정한 사용 권한 집합을 부여한 사용자에 대해서도 데이터베이스에 대해 지정한 사용 권한 집합에 대한 액세스가 거부되는지 여부를 지정하는 Boolean 속성입니다.
    True 이면 지정한 사용 권한 집합이 피부여자와 피부여자가 지정한 사용 권한 집합을 부여한 사용자 모두에 대해 거부됩니다. False이면 지정한 사용 권한 집합이 피부여자에 대해서만 거부됩니다.

The example shows how to use the Deny method with server permissions. The method is used in the same way with database permissions.

VB

'Connect to the local, default instance of SQL Server.
Dim svr As Server
svr = New Server()
'Define a ServerPermissionSet that contains permission to Create Endpoint and Alter Any Endpoint.
Dim sps As ServerPermissionSet
sps = New ServerPermissionSet(ServerPermission.CreateEndpoint)
sps.Add(ServerPermission.AlterAnyEndpoint)
'This sample assumes that the grantee already has permission to Create Endpoints. 
'Enumerate and display the server permissions in the set for the grantee specified in the vGrantee string variable.
Dim spis As ServerPermissionInfo()
spis = svr.EnumServerPermissions(vGrantee, sps)
Dim spi As ServerPermissionInfo
Console.WriteLine("=================Before revoke===========================")
For Each spi In spis
    Console.WriteLine(spi.Grantee & " has " & spi.PermissionType.ToString & " permission.")
Next
Console.WriteLine(" ")
'Remove a permission from the set.
sps.Remove(ServerPermission.CreateEndpoint)
'Revoke the create endpoint permission from the grantee.
svr.Revoke(sps, vGrantee)
'Enumerate and display the server permissions in the set for the grantee specified in the vGrantee string variable.
spis = svr.EnumServerPermissions(vGrantee, sps)
Console.WriteLine("=================After revoke============================")
For Each spi In spis
    Console.WriteLine(spi.Grantee & " has " & spi.PermissionType.ToString & " permission.")
Next
Console.WriteLine(" ")
'Grant the Create Endpoint permission to the grantee.
svr.Grant(sps, vGrantee)
'Enumerate and display the server permissions in the set for the grantee specified in the vGrantee string variable.
spis = svr.EnumServerPermissions(vGrantee, sps)
Console.WriteLine("=================After grant=============================")
For Each spi In spis
    Console.WriteLine(spi.Grantee & " has " & spi.PermissionType.ToString & " permission.")
Next
Console.WriteLine("")

PowerShell

$srv = new-Object Microsoft.SqlServer.Management.Smo.Server("(local)")
$arg = [Microsoft.SqlServer.Management.Smo.ServerPermission]::CreateEndpoint

$sps = new-object Microsoft.SqlServer.Management.Smo.ServerPermissionSet([Microsoft.SqlServer.Management.Smo.ServerPermission]::CreateEndpoint)
$sps.Add([Microsoft.SqlServer.Management.Smo.ServerPermission]::AlterAnyEndpoint)
$spis = $srv.EnumServerPermissions("vGrantee", $sps)
Write-Host "=================Before revoke==========================="
Foreach ($spi In $spis)
{
   Write-Host $spi.Grantee "has" $spi.PermissionType " permission."
}
Write-Host " "
$sps.Remove([Microsoft.SqlServer.Management.Smo.ServerPermission]::CreateEndpoint)