3.1.4.104 SetAccessControlEntries

  • Article

This operation is used to set an access control list (ACL) to the specified MetadataObject. The protocol server MUST delete all ACEs of the specified MetadataObject for the specified Setting, and then adds the specified ACEs to the specified MetadataObject.

The following is the WSDL port type specification of the SetAccessControlEntries WSDL operation.

 <wsdl:operation name="SetAccessControlEntries" xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/">
   <wsdl:input wsaw:Action="http://www.microsoft.com/Office/2009/BusinessDataCatalog/BusinessDataCatalogSharedService/SetAccessControlEntries" message="tns:BusinessDataCatalogSharedService_SetAccessControlEntries_InputMessage" xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"/>
   <wsdl:output wsaw:Action="http://www.microsoft.com/Office/2009/BusinessDataCatalog/BusinessDataCatalogSharedService/SetAccessControlEntriesResponse" message="tns:BusinessDataCatalogSharedService_SetAccessControlEntries_OutputMessage" xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"/>
   <wsdl:fault wsaw:Action="http://www.microsoft.com/Office/2009/BusinessDataCatalog/BusinessDataCatalogSharedService/SetAccessControlEntriesArgumentExceptionFault" name="ArgumentExceptionFault" message="tns:BusinessDataCatalogSharedService_SetAccessControlEntries_ArgumentExceptionFault_FaultMessage" xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"/>
   <wsdl:fault wsaw:Action="http://www.microsoft.com/Office/2009/BusinessDataCatalog/BusinessDataCatalogSharedService/SetAccessControlEntriesArgumentNullExceptionFault" name="ArgumentNullExceptionFault" message="tns:BusinessDataCatalogSharedService_SetAccessControlEntries_ArgumentNullExceptionFault_FaultMessage" xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"/>
   <wsdl:fault wsaw:Action="http://www.microsoft.com/Office/2009/BusinessDataCatalog/BusinessDataCatalogSharedService/SetAccessControlEntriesArgumentOutOfRangeExceptionFault" name="ArgumentOutOfRangeExceptionFault" message="tns:BusinessDataCatalogSharedService_SetAccessControlEntries_ArgumentOutOfRangeExceptionFault_FaultMessage" xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"/>
   <wsdl:fault wsaw:Action="http://www.microsoft.com/Office/2009/BusinessDataCatalog/BusinessDataCatalogSharedService/SetAccessControlEntriesBdcExceptionStateFault" name="BdcExceptionStateFault" message="tns:BusinessDataCatalogSharedService_SetAccessControlEntries_BdcExceptionStateFault_FaultMessage" xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"/>
   <wsdl:fault wsaw:Action="http://www.microsoft.com/Office/2009/BusinessDataCatalog/BusinessDataCatalogSharedService/SetAccessControlEntriesInvalidOperationExceptionFault" name="InvalidOperationExceptionFault" message="tns:BusinessDataCatalogSharedService_SetAccessControlEntries_InvalidOperationExceptionFault_FaultMessage" xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"/>
   <wsdl:fault wsaw:Action="http://www.microsoft.com/Office/2009/BusinessDataCatalog/BusinessDataCatalogSharedService/SetAccessControlEntriesMetadataExceptionStateFault" name="MetadataExceptionStateFault" message="tns:BusinessDataCatalogSharedService_SetAccessControlEntries_MetadataExceptionStateFault_FaultMessage" xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"/>
 </wsdl:operation>

The protocol client sends a BusinessDataCatalogSharedService_SetAccessControlEntries_InputMessage request message, and the protocol server MUST respond with a BusinessDataCatalogSharedService_SetAccessControlEntries_OutputMessage response message, unless any one of the conditions in the following table is met.

If any one of the conditions in the following table is met, the protocol server MUST instead respond  with a SOAP fault containing the corresponding error complex type, serialized as specified in section 2.2.4. If more than one error condition is encountered, the protocol server MUST respond with at exactly one error complex type, determined in an implementation-specific manner.

Error complex type

Condition

AccessDeniedExceptionState (section 2.2.4.3)

The security principal (2) in whose context the protocol client is operating is not authorized to set permissions on the specified MetadataObject.

ArgumentOutOfRangeException (section 2.2.4.9)

The MetadataObjectId for the specified MetadataObject is set to zero.

InvalidOperationException (section 2.2.4.38)

One of the following conditions applies:

  • At least one of the specified ACEs contains an invalid value for principalName element.

  • The specified ACEs do not contain an ACE with "SetPermissions" permission, or contain an ACE that specify anonymous user to have permissions other than "Execute".