AUTHZ_SECURITY_ATTRIBUTE_OPERATION enumeration

The AUTHZ_SECURITY_ATTRIBUTE_OPERATION enumeration indicates the type of modification to be made to security attributes by a call to the AuthzModifySecurityAttributes function.

Syntax


typedef enum  { 
  AUTHZ_SECURITY_ATTRIBUTE_OPERATION_NONE         = 0,
  AUTHZ_SECURITY_ATTRIBUTE_OPERATION_REPLACE_ALL,
  AUTHZ_SECURITY_ATTRIBUTE_OPERATION_ADD,
  AUTHZ_SECURITY_ATTRIBUTE_OPERATION_DELETE,
  AUTHZ_SECURITY_ATTRIBUTE_OPERATION_REPLACE
} AUTHZ_SECURITY_ATTRIBUTE_OPERATION, *PAUTHZ_SECURITY_ATTRIBUTE_OPERATION;

Constants

AUTHZ_SECURITY_ATTRIBUTE_OPERATION_NONE

Do not perform any modification.

AUTHZ_SECURITY_ATTRIBUTE_OPERATION_REPLACE_ALL

Delete all existing security attributes and their values in the token and replace them with the specified attributes and values.

If no new attributes are specified, all existing attributes and values are deleted.

This operation must be the only operation specified and can be specified only once in a single call to AuthzModifySecurityAttributes. If the operation is not specified as the first in the list of operations, the call to AuthzModifySecurityAttributes fails. If the operation is specified as the first in the array of operations performed, the rest of the operations are ignored.

AUTHZ_SECURITY_ATTRIBUTE_OPERATION_ADD

Add a new attribute or a new value to an existing attribute.

If the value specified for any attribute already exists for that attribute, the call to AuthzModifySecurityAttributes fails.

AUTHZ_SECURITY_ATTRIBUTE_OPERATION_DELETE

Delete the specified values of the specified attributes. If an attribute is specified without a value, that attribute is deleted.

If this operation results in an attribute that does not contain any values, that attribute is deleted.

If a value is specified that does not match an existing attribute, no modifications are performed and the call to AuthzModifySecurityAttributes fails.

AUTHZ_SECURITY_ATTRIBUTE_OPERATION_REPLACE

The existing values of the specified security attributes are replaced by the specified new values.

If any of the specified attributes does not already exist, they are added.

When no value is specified for an attribute, that attribute is deleted. Otherwise, the operation is simply ignored and no failure is reported.

Requirements

Minimum supported client

Windows 7 [desktop apps only]

Minimum supported server

Windows Server 2008 R2 [desktop apps only]

Header

Authz.h

See also

AuthzModifySecurityAttributes

 

 

Community Additions

ADD
Show:
© 2014 Microsoft