SecurityAction SecurityAction SecurityAction SecurityAction Enum

Definition

Specifica le azioni relative alla sicurezza che possono essere eseguite con la sicurezza dichiarativa. Specifies the security actions that can be performed using declarative security.

public enum class SecurityAction
[System.Runtime.InteropServices.ComVisible(true)]
[System.Obsolete("CAS support is not available with Silverlight applications.")]
[Serializable]
public enum SecurityAction
type SecurityAction = 
Public Enum SecurityAction
Inheritance
SecurityActionSecurityActionSecurityActionSecurityAction
Attributes
ComVisibleAttribute ObsoleteAttribute SerializableAttribute

Fields

Assert Assert Assert Assert 3

Il codice chiamante consente di accedere alla risorsa identificata dall'oggetto di autorizzazione corrente, anche se i primi chiamanti dello stack non sono autorizzati ad accedere alla risorsa (vedere Uso del metodo Assert). The calling code can access the resource identified by the current permission object, even if callers higher in the stack have not been granted permission to access the resource (see Using the Assert Method).

Demand Demand Demand Demand 2

A tutti i chiamanti nella parte superiore dello stack di chiamate deve essere concessa l'autorizzazione specificata dall'oggetto di autorizzazione corrente. All callers higher in the call stack are required to have been granted the permission specified by the current permission object.

Deny Deny Deny Deny 4

Ai chiamanti non viene consentito di accedere alla risorsa specificata dall'oggetto di autorizzazione corrente, anche se sono autorizzati ad accedere alla risorsa (vedere Uso del metodo Deny). The ability to access the resource specified by the current permission object is denied to callers, even if they have been granted permission to access it (see Using the Deny Method).

InheritanceDemand InheritanceDemand InheritanceDemand InheritanceDemand 7

Alla classe derivata che eredita la classe o con cui un metodo viene sottoposto a override deve essere concessa l'autorizzazione specificata. The derived class inheriting the class or overriding a method is required to have been granted the specified permission..

LinkDemand LinkDemand LinkDemand LinkDemand 6

È necessario concedere al chiamante diretto l'autorizzazione specificata. The immediate caller is required to have been granted the specified permission. Non usare nell'oggetto .NET Framework 4.NET Framework 4. Do not use in the .NET Framework 4.NET Framework 4. Per un'attendibilità totale, usare invece SecurityCriticalAttribute; per un'attendibilità parziale, usare Demand. For full trust, use SecurityCriticalAttribute instead; for partial trust, use Demand.

PermitOnly PermitOnly PermitOnly PermitOnly 5

È possibile accedere solo alle risorse specificate dall'oggetto di autorizzazione, anche se al codice è stata concessa l'autorizzazione per accedere ad altre risorse. Only the resources specified by this permission object can be accessed, even if the code has been granted permission to access other resources.

RequestMinimum RequestMinimum RequestMinimum RequestMinimum 8

Richiesta delle autorizzazioni minime necessarie per l'esecuzione del codice. The request for the minimum permissions required for code to run. Questa azione può essere usata solo nell'ambito dell'assembly. This action can only be used within the scope of the assembly.

RequestOptional RequestOptional RequestOptional RequestOptional 9

Richiesta di autorizzazioni aggiuntive facoltative (non necessarie per l'esecuzione). The request for additional permissions that are optional (not required to run). Con questa richiesta viene implicitamente rifiutata ogni altra autorizzazione che non sia stata esplicitamente richiesta. This request implicitly refuses all other permissions not specifically requested. Questa azione può essere usata solo nell'ambito dell'assembly. This action can only be used within the scope of the assembly.

RequestRefuse RequestRefuse RequestRefuse RequestRefuse 10

Richiesta per impedire che al codice chiamante vengano concesse autorizzazioni utilizzabili in modo improprio. The request that permissions that might be misused will not be granted to the calling code. Questa azione può essere usata solo nell'ambito dell'assembly. This action can only be used within the scope of the assembly.

Examples

In questo esempio mostra come inviare una notifica il runtime di cui dispone solo di codice in metodi chiamati IsolatedStoragePermissione viene inoltre illustrato come scrivere e leggere dallo spazio di memorizzazione isolato.This example shows how to notify the CLR that code in called methods has only IsolatedStoragePermission, and also demonstrates how to write and read from isolated storage.

using namespace System;
using namespace System::Security;
using namespace System::Security::Permissions;
using namespace System::IO::IsolatedStorage;
using namespace System::IO;


static void WriteIsolatedStorage()
{
    try
    {
        // Attempt to create a storage file that is isolated by
        // user and assembly. IsolatedStorageFilePermission
        // granted to the attribute at the top of this file
        // allows CLR to load this assembly and execution of this
        // statement.
        Stream^ fileCreateStream = gcnew
            IsolatedStorageFileStream(
            "AssemblyData",
            FileMode::Create,
            IsolatedStorageFile::GetUserStoreForAssembly());

        StreamWriter^ streamWriter = gcnew StreamWriter(
            fileCreateStream);
        try
        {
            // Write some data out to the isolated file.

            streamWriter->Write("This is some test data.");
            streamWriter->Close();	
        }
        finally
        {
            delete fileCreateStream;
            delete streamWriter;
        } 
    }
    catch (IOException^ ex)
    {
        Console::WriteLine(ex->Message);
    }

    try
    {
        Stream^ fileOpenStream =
            gcnew IsolatedStorageFileStream(
            "AssemblyData",
            FileMode::Open,
            IsolatedStorageFile::GetUserStoreForAssembly());
        // Attempt to open the file that was previously created.

        StreamReader^ streamReader = gcnew StreamReader(
            fileOpenStream);
        try
        { 
            // Read the data from the file and display it.

            Console::WriteLine(streamReader->ReadLine());
            streamReader->Close();
        }
        finally
        {
            delete fileOpenStream;
            delete streamReader;
        }
    }
    catch (FileNotFoundException^ ex)
    {
        Console::WriteLine(ex->Message);
    }
    catch (IOException^ ex)
    {
        Console::WriteLine(ex->Message);
    }
}
// Notify the CLR to only grant IsolatedStorageFilePermission to called methods. 
// This restricts the called methods to working only with storage files that are isolated 
// by user and assembly.
[IsolatedStorageFilePermission(SecurityAction::PermitOnly, UsageAllowed = IsolatedStorageContainment::AssemblyIsolationByUser)]
int main()
{
	WriteIsolatedStorage();
}

// This code produces the following output.
//
//  This is some test data.
using System;
using System.Security.Permissions;
using System.IO.IsolatedStorage;
using System.IO;

// Notify the CLR to only grant IsolatedStorageFilePermission to called methods. 
// This restricts the called methods to working only with storage files that are isolated 
// by user and assembly.
[IsolatedStorageFilePermission(SecurityAction.PermitOnly, UsageAllowed = IsolatedStorageContainment.AssemblyIsolationByUser)]
public sealed class App
{
    static void Main()
    {
        WriteIsolatedStorage();

    }
    private static void WriteIsolatedStorage()
    {
        // Attempt to create a storage file that is isolated by user and assembly.
        // IsolatedStorageFilePermission granted to the attribute at the top of this file 
        // allows CLR to load this assembly and execution of this statement.
        using (Stream s = new IsolatedStorageFileStream("AssemblyData", FileMode.Create, IsolatedStorageFile.GetUserStoreForAssembly()))
        {

            // Write some data out to the isolated file.
            using (StreamWriter sw = new StreamWriter(s))
            {
                sw.Write("This is some test data.");
            }
        }

        // Attempt to open the file that was previously created.
        using (Stream s = new IsolatedStorageFileStream("AssemblyData", FileMode.Open, IsolatedStorageFile.GetUserStoreForAssembly()))
        {
            // Read the data from the file and display it.
            using (StreamReader sr = new StreamReader(s))
            {
                Console.WriteLine(sr.ReadLine());
            }
        }
    }
}

// This code produces the following output.
//
//  Some test data.
Option Strict On
Imports System
Imports System.Security.Permissions
Imports System.IO.IsolatedStorage
Imports System.IO


' Notify the CLR to only grant IsolatedStorageFilePermission to called methods. 
' This restricts the called methods to working only with storage files that are isolated 
' by user and assembly.
<IsolatedStorageFilePermission(SecurityAction.PermitOnly, UsageAllowed:=IsolatedStorageContainment.AssemblyIsolationByUser)> _
Public NotInheritable Class App

    Shared Sub Main()
        WriteIsolatedStorage()
    End Sub 'Main
    Shared Sub WriteIsolatedStorage()
        ' Attempt to create a storage file that is isolated by user and assembly.
        ' IsolatedStorageFilePermission granted to the attribute at the top of this file 
        ' allows CLR to load this assembly and execution of this statement.
        Dim s As New IsolatedStorageFileStream("AssemblyData", FileMode.Create, IsolatedStorageFile.GetUserStoreForAssembly())
        Try

            ' Write some data out to the isolated file.
            Dim sw As New StreamWriter(s)
            Try
                sw.Write("This is some test data.")
            Finally
                sw.Dispose()
            End Try
        Finally
            s.Dispose()
        End Try

        ' Attempt to open the file that was previously created.
        Dim t As New IsolatedStorageFileStream("AssemblyData", FileMode.Open, IsolatedStorageFile.GetUserStoreForAssembly())
        Try
            ' Read the data from the file and display it.
            Dim sr As New StreamReader(t)
            Try
                Console.WriteLine(sr.ReadLine())
            Finally
                sr.Dispose()
            End Try
        Finally
            t.Dispose()
        End Try

    End Sub
End Class 'App

' This code produces the following output.
'
'  Some test data.

Remarks

La tabella seguente descrive il tempo impiegato ogni azione di sicurezza sul posto e le destinazioni che supporta.The following table describes the time that each security action takes place and the targets that it supports.

Importante

Nel .NET Framework 4.NET Framework 4, supporto del runtime è stato rimosso per applicare le richieste di autorizzazione Deny, RequestMinimum, RequestOptional e RequestRefuse.In the .NET Framework 4.NET Framework 4, runtime support has been removed for enforcing the Deny, RequestMinimum, RequestOptional, and RequestRefuse permission requests. Queste richieste non devono essere usate nel codice basato su .NET Framework 4.NET Framework 4 o versione successiva.These requests should not be used in code that is based on .NET Framework 4.NET Framework 4 or later. Per altre informazioni su questa e altre modifiche, vedere modifiche della sicurezza.For more information about this and other changes, see Security Changes.

È consigliabile non usare LinkDemand nella .NET Framework 4.NET Framework 4.You should not use LinkDemand in the .NET Framework 4.NET Framework 4. Usare invece i SecurityCriticalAttribute per limitare l'utilizzo delle applicazioni completamente attendibili o usare Demand per limitare i chiamanti parzialmente attendibili.Instead, use the SecurityCriticalAttribute to restrict usage to fully trusted applications, or use Demand to restrict partially trusted callers.

Dichiarazione di azione di sicurezzaDeclaration of security action Ora dell'azioneTime of action Destinazioni supportateTargets supported
LinkDemand (non utilizzare il .NET Framework 4.NET Framework 4)LinkDemand (do not use in the .NET Framework 4.NET Framework 4) Compilazione just-in-timeJust-in-time compilation Classe, metodoClass, method
InheritanceDemand Tempo di caricamentoLoad time Classe, metodoClass, method
Demand Fase di esecuzioneRun time Classe, metodoClass, method
Assert Fase di esecuzioneRun time Classe, metodoClass, method
Deny (obsoleto nel .NET Framework 4.NET Framework 4)Deny (obsolete in the .NET Framework 4.NET Framework 4) Fase di esecuzioneRun time Classe, metodoClass, method
PermitOnly Fase di esecuzioneRun time Classe, metodoClass, method
RequestMinimum (obsoleto nel .NET Framework 4.NET Framework 4)RequestMinimum (obsolete in the .NET Framework 4.NET Framework 4) Concedere tempoGrant time AssemblyAssembly
RequestOptional (obsoleto nel .NET Framework 4.NET Framework 4)RequestOptional (obsolete in the .NET Framework 4.NET Framework 4) Concedere tempoGrant time AssemblyAssembly
RequestRefuse (obsoleto nel .NET Framework 4.NET Framework 4)RequestRefuse (obsolete in the .NET Framework 4.NET Framework 4) Concedere tempoGrant time AssemblyAssembly

Per altre informazioni sulle destinazioni degli attributi, vedere Attribute.For additional information about attribute targets, see Attribute.

Applies to