Welcome Sign in
Microsoft Developer Network
.NET Framework Class Library
SecurityAction Enumeration

Specifies the security actions that can be performed using declarative security.

Namespace:  System.Security.Permissions
Assembly:  mscorlib (in mscorlib.dll)
Visual Basic (Declaration)
<SerializableAttribute> _
<ComVisibleAttribute(True)> _
Public Enumeration SecurityAction
Visual Basic (Usage)
Dim instance As SecurityAction
C#
[SerializableAttribute]
[ComVisibleAttribute(true)]
public enum SecurityAction
Visual C++
[SerializableAttribute]
[ComVisibleAttribute(true)]
public enum class SecurityAction
JScript
public enum SecurityAction
Member nameDescription
Demand All callers higher in the call stack are required to have been granted the permission specified by the current permission object (see Security Demands).
Assert The calling code can access the resource identified by the current permission object, even if callers higher in the stack have not been granted permission to access the resource (see Using the Assert Method).
Deny The ability to access the resource specified by the current permission object is denied to callers, even if they have been granted permission to access it (see Using the Deny Method).
PermitOnly Only the resources specified by this permission object can be accessed, even if the code has been granted permission to access other resources (see Using the PermitOnly Method).
3scex4y1.CFW(en-us,VS.90).gif3scex4y1.xna(en-us,VS.90).gifLinkDemand The immediate caller is required to have been granted the specified permission.
InheritanceDemand The derived class inheriting the class or overriding a method is required to have been granted the specified permission. For more information, see Inheritance Demands.
RequestMinimum The request for the minimum permissions required for code to run. This action can only be used within the scope of the assembly.
RequestOptional The request for additional permissions that are optional (not required to run). This request implicitly refuses all other permissions not specifically requested. This action can only be used within the scope of the assembly.
RequestRefuse The request that permissions that might be misused will not be granted to the calling code. This action can only be used within the scope of the assembly.

The following table describes the time that each of the security actions takes place and the targets that each supports.

Declaration of security action

Time of action

Targets supported

LinkDemand

Just-in-time compilation

Class, Method

InheritanceDemand

Load time

Class, Method

Demand

Run time

Class, Method

Assert

Run time

Class, Method

Deny

Run time

Class, Method

PermitOnly

Run time

Class, Method

RequestMinimum

Grant time

Assembly

RequestOptional

Grant time

Assembly

RequestRefuse

Grant time

Assembly

For additional information about attribute targets, see Attribute.

TopicLocation
How to: Refuse Permissions by Using the RequestRefuse Flag.NET Framework: Security
How to: Refuse Permissions by Using the RequestRefuse Flag.NET Framework: Security
How to: Refuse Permissions by Using the RequestRefuse Flag.NET Framework: Security
How to: Request Minimum Permissions by Using the RequestMinimum Flag.NET Framework: Security
How to: Request Minimum Permissions by Using the RequestMinimum Flag.NET Framework: Security
How to: Request Minimum Permissions by Using the RequestMinimum Flag.NET Framework: Security
How to: Request Optional Permissions by Using the RequestOptional Flag.NET Framework: Security
How to: Request Optional Permissions by Using the RequestOptional Flag.NET Framework: Security
How to: Request Optional Permissions by Using the RequestOptional Flag.NET Framework: Security

This example shows how to tell the CLR that code in this assembly requires the IsolatedStoragePermission and also demonstrates how to write and read from isolated storage.

C#
using System;
using System.Security.Permissions;
using System.IO.IsolatedStorage;
using System.IO;

// Notify the CLR to grant this assembly the IsolatedStorageFilePermission. 
// This allows the assembly to work with storage files that are isolated 
// by user and assembly.
[assembly: IsolatedStorageFilePermission(SecurityAction.RequestMinimum, UsageAllowed = IsolatedStorageContainment.AssemblyIsolationByUser)]

public sealed class App
{
    static void Main()
    {
        // Attempt to create a storage file that is isolated by user and assembly.
        // IsolatedStorageFilePermission granted to the attribute at the top of this file 
        // allows CLR to load this assembly and execution of this statement.
        using (Stream s = new IsolatedStorageFileStream("AssemblyData", FileMode.Create, IsolatedStorageFile.GetUserStoreForAssembly()))
        {

             // Write some data out to the isolated file.
             using (StreamWriter sw = new StreamWriter(s))
             {
                sw.Write("This is some test data.");
             }
        }

        // Attempt to open the file that was previously created.
        using (Stream s = new IsolatedStorageFileStream("AssemblyData", FileMode.Open, IsolatedStorageFile.GetUserStoreForAssembly()))
        {
             // Read the data from the file and display it.
             using (StreamReader sr = new StreamReader(s))
             {
                 Console.WriteLine(sr.ReadLine());
             }
        }
    }
}

// This code produces the following output.
//
//  Some test data.
Visual C++
using namespace System;
using namespace System::Security;
using namespace System::Security::Permissions;
using namespace System::IO::IsolatedStorage;
using namespace System::IO;

// Notify the CLR to grant this assembly the IsolatedStorage-
// FilePermission. This allows the assembly to work with storage
// files that are isolated by user and assembly.
[assembly: IsolatedStorageFilePermission(
    SecurityAction::RequestMinimum, UsageAllowed =
    IsolatedStorageContainment::AssemblyIsolationByUser)];
int main()
{
    try
    {
        // Attempt to create a storage file that is isolated by
        // user and assembly. IsolatedStorageFilePermission
        // granted to the attribute at the top of this file
        // allows CLR to load this assembly and execution of this
        // statement.
        Stream^ fileCreateStream = gcnew
            IsolatedStorageFileStream(
            "AssemblyData",
            FileMode::Create,
            IsolatedStorageFile::GetUserStoreForAssembly());

        StreamWriter^ streamWriter = gcnew StreamWriter(
            fileCreateStream);
        try
        {
            // Write some data out to the isolated file.

            streamWriter->Write("This is some test data.");
            streamWriter->Close();    
        }
        finally
        {
            delete fileCreateStream;
            delete streamWriter;
        } 
    }
    catch (IOException^ ex)
    {
        Console::WriteLine(ex->Message);
    }

    try
    {
        Stream^ fileOpenStream =
            gcnew IsolatedStorageFileStream(
            "AssemblyData",
            FileMode::Open,
            IsolatedStorageFile::GetUserStoreForAssembly());
        // Attempt to open the file that was previously created.

        StreamReader^ streamReader = gcnew StreamReader(
            fileOpenStream);
        try
        { 
            // Read the data from the file and display it.

            Console::WriteLine(streamReader->ReadLine());
            streamReader->Close();
        }
        finally
        {
            delete fileOpenStream;
            delete streamReader;
        }
    }
    catch (FileNotFoundException^ ex)
    {
        Console::WriteLine(ex->Message);
    }
    catch (IOException^ ex)
    {
        Console::WriteLine(ex->Message);
    }
}

// This code produces the following output.
//
//  This is some test data.

Windows Vista, Windows XP SP2, Windows XP Media Center Edition, Windows XP Professional x64 Edition, Windows XP Starter Edition, Windows Server 2003, Windows Server 2000 SP4, Windows Millennium Edition, Windows 98, Windows CE, Windows Mobile for Smartphone, Windows Mobile for Pocket PC, Xbox 360

The .NET Framework and .NET Compact Framework do not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.

.NET Framework

Supported in: 3.5, 3.0, 2.0, 1.1, 1.0

.NET Compact Framework

Supported in: 3.5, 2.0

XNA Framework

Supported in: 2.0, 1.0
Page view tracker