Deny 方法 (DatabasePermissionSet, String[], Boolean)

对指定的被授权者以及该被授权者向其授予针对数据库的指定权限集的其他用户,拒绝指定的权限集。

命名空间:  Microsoft.SqlServer.Management.Smo
程序集:  Microsoft.SqlServer.Smo(在 Microsoft.SqlServer.Smo.dll 中)

语法

声明
Public Sub Deny ( _
    permission As DatabasePermissionSet, _
    granteeNames As String(), _
    cascade As Boolean _
)
用法
Dim instance As Database
Dim permission As DatabasePermissionSet
Dim granteeNames As String()
Dim cascade As Boolean

instance.Deny(permission, granteeNames, _
    cascade)
public void Deny(
    DatabasePermissionSet permission,
    string[] granteeNames,
    bool cascade
)
public:
void Deny(
    DatabasePermissionSet^ permission, 
    array<String^>^ granteeNames, 
    bool cascade
)
member Deny : 
        permission:DatabasePermissionSet * 
        granteeNames:string[] * 
        cascade:bool -> unit 
public function Deny(
    permission : DatabasePermissionSet, 
    granteeNames : String[], 
    cascade : boolean
)

参数

  • granteeNames
    类型:array<System. . :: . .String> [] () [] []
    一个 String 数组,该数组指定要对其拒绝指定权限集的被授权者的列表。
  • cascade
    类型:System. . :: . .Boolean
    一个 Boolean 属性,该属性指定是否也对被授权者向其授予指定权限集的用户拒绝针对数据库的指定权限集的访问权限。
    如果为 True,则同时对被授权者以及该被授权者向其授予指定权限集的用户拒绝指定的权限集。如果为 False,则仅对被授权者拒绝指定的权限集。

示例

The example shows how to use the Deny method with server permissions. The method is used in the same way with database permissions.

VB

'Connect to the local, default instance of SQL Server.
Dim svr As Server
svr = New Server()
'Define a ServerPermissionSet that contains permission to Create Endpoint and Alter Any Endpoint.
Dim sps As ServerPermissionSet
sps = New ServerPermissionSet(ServerPermission.CreateEndpoint)
sps.Add(ServerPermission.AlterAnyEndpoint)
'This sample assumes that the grantee already has permission to Create Endpoints. 
'Enumerate and display the server permissions in the set for the grantee specified in the vGrantee string variable.
Dim spis As ServerPermissionInfo()
spis = svr.EnumServerPermissions(vGrantee, sps)
Dim spi As ServerPermissionInfo
Console.WriteLine("=================Before revoke===========================")
For Each spi In spis
    Console.WriteLine(spi.Grantee & " has " & spi.PermissionType.ToString & " permission.")
Next
Console.WriteLine(" ")
'Remove a permission from the set.
sps.Remove(ServerPermission.CreateEndpoint)
'Revoke the create endpoint permission from the grantee.
svr.Revoke(sps, vGrantee)
'Enumerate and display the server permissions in the set for the grantee specified in the vGrantee string variable.
spis = svr.EnumServerPermissions(vGrantee, sps)
Console.WriteLine("=================After revoke============================")
For Each spi In spis
    Console.WriteLine(spi.Grantee & " has " & spi.PermissionType.ToString & " permission.")
Next
Console.WriteLine(" ")
'Grant the Create Endpoint permission to the grantee.
svr.Grant(sps, vGrantee)
'Enumerate and display the server permissions in the set for the grantee specified in the vGrantee string variable.
spis = svr.EnumServerPermissions(vGrantee, sps)
Console.WriteLine("=================After grant=============================")
For Each spi In spis
    Console.WriteLine(spi.Grantee & " has " & spi.PermissionType.ToString & " permission.")
Next
Console.WriteLine("")

PowerShell

$srv = new-Object Microsoft.SqlServer.Management.Smo.Server("(local)")
$arg = [Microsoft.SqlServer.Management.Smo.ServerPermission]::CreateEndpoint

$sps = new-object Microsoft.SqlServer.Management.Smo.ServerPermissionSet([Microsoft.SqlServer.Management.Smo.ServerPermission]::CreateEndpoint)
$sps.Add([Microsoft.SqlServer.Management.Smo.ServerPermission]::AlterAnyEndpoint)
$spis = $srv.EnumServerPermissions("vGrantee", $sps)
Write-Host "=================Before revoke==========================="
Foreach ($spi In $spis)
{
   Write-Host $spi.Grantee "has" $spi.PermissionType " permission."
}
Write-Host " "
$sps.Remove([Microsoft.SqlServer.Management.Smo.ServerPermission]::CreateEndpoint)