MutexSecurity.RemoveAccessRuleAll(MutexAccessRule) 方法

  • 參考

定義

命名空間:
System.Security.AccessControl
組件:
System.Threading.AccessControl.dll
組件:
mscorlib.dll
套件:
System.Threading.AccessControl v6.0.0
套件:
System.Threading.AccessControl v7.0.0
套件:
System.Threading.AccessControl v8.0.0
套件:
System.Threading.AccessControl v9.0.0-preview.2.24128.5
來源:
MutexSecurity.cs
來源:
MutexSecurity.cs
來源:
MutexSecurity.cs

搜尋與指定規則具有相同使用者和 AccessControlType (允許或拒絕) 的所有存取控制規則,如果找到的話,便加以移除。

public:
 void RemoveAccessRuleAll(System::Security::AccessControl::MutexAccessRule ^ rule);
public void RemoveAccessRuleAll (System.Security.AccessControl.MutexAccessRule rule);
override this.RemoveAccessRuleAll : System.Security.AccessControl.MutexAccessRule -> unit
Public Sub RemoveAccessRuleAll (rule As MutexAccessRule)

參數

rule
MutexAccessRule

MutexAccessRule,指定要搜尋的使用者和 AccessControlType。 忽略根據此規則指定的任何權限。

例外狀況

ArgumentNullException

rulenull

範例

下列程式碼範例顯示 RemoveAccessRuleAll 方法會移除符合使用者和 的所有規則, AccessControlType 並忽略許可權。

此範例會建立 MutexSecurity 物件、新增規則,以允許和拒絕目前使用者的各種許可權,然後將其他許可權合併到 Allow 規則中。 然後,此範例會建立新的規則,讓目前的使用者能夠取得擁有權,並使用該規則從 MutexSecurity 物件中移除 Allow 規則。

注意

這個範例不會將安全性物件附加至 Mutex 物件。 您可以在 和 Mutex.SetAccessControl 中找到 Mutex.GetAccessControl 附加安全性物件的範例。

using System;
using System.Threading;
using System.Security.AccessControl;
using System.Security.Principal;

public class Example
{
    public static void Main()
    {
        // Create a string representing the current user.
        string user = Environment.UserDomainName + "\\" + 
            Environment.UserName;

        // Create a security object that grants no access.
        MutexSecurity mSec = new MutexSecurity();

        // Add a rule that grants the current user the 
        // right to enter or release the mutex.
        MutexAccessRule rule = new MutexAccessRule(user, 
            MutexRights.Synchronize | MutexRights.Modify, 
            AccessControlType.Allow);
        mSec.AddAccessRule(rule);

        // Add a rule that denies the current user the 
        // right to change permissions on the mutex.
        rule = new MutexAccessRule(user, 
            MutexRights.ChangePermissions, 
            AccessControlType.Deny);
        mSec.AddAccessRule(rule);

        // Display the rules in the security object.
        ShowSecurity(mSec);

        // Add a rule that allows the current user the 
        // right to read permissions on the mutex. This rule
        // is merged with the existing Allow rule.
        rule = new MutexAccessRule(user, 
            MutexRights.ReadPermissions, 
            AccessControlType.Allow);
        mSec.AddAccessRule(rule);

        ShowSecurity(mSec);

        // Create a rule that allows the current user to
        // change the owner of the mutex, and use that rule 
        // to remove the existing allow access rule from 
        // the MutexSecurity object, showing that the user
        // and access type must match, while the rights are
        // ignored.
        Console.WriteLine("Use RemoveAccessRuleAll to remove the Allow rule.");
        rule = new MutexAccessRule(user, 
            MutexRights.TakeOwnership, 
            AccessControlType.Allow);
        mSec.RemoveAccessRuleAll(rule);

        ShowSecurity(mSec);
    }

    private static void ShowSecurity(MutexSecurity security)
    {
        Console.WriteLine("\r\nCurrent access rules:\r\n");

        foreach(MutexAccessRule ar in 
            security.GetAccessRules(true, true, typeof(NTAccount)))
        {
            Console.WriteLine("        User: {0}", ar.IdentityReference);
            Console.WriteLine("        Type: {0}", ar.AccessControlType);
            Console.WriteLine("      Rights: {0}", ar.MutexRights);
            Console.WriteLine();
        }
    }
}

/*This code example produces output similar to following:

Current access rules:

        User: TestDomain\TestUser
        Type: Deny
      Rights: ChangePermissions

        User: TestDomain\TestUser
        Type: Allow
      Rights: Modify, Synchronize


Current access rules:

        User: TestDomain\TestUser
        Type: Deny
      Rights: ChangePermissions

        User: TestDomain\TestUser
        Type: Allow
      Rights: Modify, ReadPermissions, Synchronize

Use RemoveAccessRuleAll to remove the Allow rule.

Current access rules:

        User: TestDomain\TestUser
        Type: Deny
      Rights: ChangePermissions
 */

Imports System.Threading
Imports System.Security.AccessControl
Imports System.Security.Principal

Public Class Example

    Public Shared Sub Main()

        ' Create a string representing the current user.
        Dim user As String = Environment.UserDomainName _ 
            & "\" & Environment.UserName

        ' Create a security object that grants no access.
        Dim mSec As New MutexSecurity()

        ' Add a rule that grants the current user the 
        ' right to enter or release the mutex.
        Dim rule As New MutexAccessRule(user, _
            MutexRights.Synchronize _
            Or MutexRights.Modify, _
            AccessControlType.Allow)
        mSec.AddAccessRule(rule)

        ' Add a rule that denies the current user the 
        ' right to change permissions on the mutex.
        rule = New MutexAccessRule(user, _
            MutexRights.ChangePermissions, _
            AccessControlType.Deny)
        mSec.AddAccessRule(rule)

        ' Display the rules in the security object.
        ShowSecurity(mSec)

        ' Add a rule that allows the current user the 
        ' right to read permissions on the mutex. This rule
        ' is merged with the existing Allow rule.
        rule = New MutexAccessRule(user, _
            MutexRights.ReadPermissions, _
            AccessControlType.Allow)
        mSec.AddAccessRule(rule)

        ShowSecurity(mSec)

        ' Create a rule that allows the current user to
        ' change the owner of the mutex, and use that rule 
        ' to remove the existing allow access rule from 
        ' the MutexSecurity object, showing that the user
        ' and access type must match, while the rights are
        ' ignored.
        Console.WriteLine("Use RemoveAccessRuleAll to remove the Allow rule.")
        rule = New MutexAccessRule(user, _
            MutexRights.TakeOwnership, _
            AccessControlType.Allow)
        mSec.RemoveAccessRuleAll(rule)

        ShowSecurity(mSec)
        
    End Sub 

    Private Shared Sub ShowSecurity(ByVal security As MutexSecurity)
        Console.WriteLine(vbCrLf & "Current access rules:" & vbCrLf)

        For Each ar As MutexAccessRule In _
            security.GetAccessRules(True, True, GetType(NTAccount))

            Console.WriteLine("        User: {0}", ar.IdentityReference)
            Console.WriteLine("        Type: {0}", ar.AccessControlType)
            Console.WriteLine("      Rights: {0}", ar.MutexRights)
            Console.WriteLine()
        Next

    End Sub
End Class 

'This code example produces output similar to following:
'
'Current access rules:
'
'        User: TestDomain\TestUser
'        Type: Deny
'      Rights: ChangePermissions
'
'        User: TestDomain\TestUser
'        Type: Allow
'      Rights: Modify, Synchronize
'
'
'Current access rules:
'
'        User: TestDomain\TestUser
'        Type: Deny
'      Rights: ChangePermissions
'
'        User: TestDomain\TestUser
'        Type: Allow
'      Rights: Modify, ReadPermissions, Synchronize
'
'Use RemoveAccessRuleAll to remove the Allow rule.
'
'Current access rules:
'
'        User: TestDomain\TestUser
'        Type: Deny
'      Rights: ChangePermissions

備註

目前 MutexSecurity 物件會搜尋具有相同使用者和相同 AccessControlTyperule 的規則。 執行此搜尋時,會忽略 所 rule 指定的任何許可權。 如果找不到相符的規則,則不會採取任何動作。

適用於