ArcObjects Library Reference (Server)  

IPermissionsAdmin Interface

Provides administrative access to the Permissions Store.

Product Availability

Available with ArcGIS Engine, ArcGIS Desktop, and ArcGIS Server.

Description

IPermissionsAdmin provides methods to Allow and Deny operations on ArcGIS Server resources and to retrieve all principals with access to resources.

The IPermissionsAdmin interface can be obtained by a query interface with the IServerObjectAdmin interface.

A list of security model concepts is useful here.

Permissions are assigned in a Continuous Inheritance model.  A child resource inherits permissions from its parent resource and the child can be changed to differ from the parent.  Changing the permission on the parent for a specific user/role restores inheritance to match the parent recursively; all children will be changed to match the parent.

When To Use

Use the IPermissionsAdmin interface when your application needs to set permissions on ArcGIS for Server GIS resources for specific principals.

If your application is connecting to the server only to retrieve information about the current state of permissions on ArcGIS for Server GIS resources, use the IPermissionsManager interface instead.

Members

Description
Method AllowPermission Grants permission to the specified principal to perform the given operation on the indicated resource.
Method DenyPermission Revokes permission from the specified principal to perform the given operation on the indicated resource.
Method GetAllPrincipals Enumrates all princiapls in the Permissions Store.

CoClasses that implement IPermissionsAdmin

CoClasses and Classes Description
ServerObjectAdmin The ServerObjectAdmin object which administrates the GIS Server.

Remarks

The following administration functionality of the ArcGIS Server is exposed by the methods of IPermissionsAdmin:

Administer role-based ArcGIS Server security:

Get information about the ArcGIS Security mode: