Using the ISecurableObject interface

Submitted by Tristan on Tue, 06/30/2009 - 16:42

SharePoint provides an interface called ISecurableObject. This interface is implemented by the SharePoint SPList, SPListItem, and SPWeb classes.

Four methods are provided:

  • BreakRoleInheritance()  - detaches the item's RoleAssignments from that of its parent, allowing you to give a resource its own Access Control List permissions; and
  • CheckPermissions() - checks if a user can execute a particular action against the object, throwing an exception if not allowed; and
  • DoesUserHavePermissions() - checks if a user can execute a particular action against the object, returning true or false; and
  • ResetRoleInheritance() - 'reattaches' the item's permissions to that of its parents, effectively resetting and throwing away any custom permissions applied to the object.

In addition to these methods, a number of public properties are provided. The most useful are these:

  • RoleAssignments - provides a RoleAssignmentCollection detailing which Principals have been assigned which Roles on the resource.
  • FirstUniqueAncestor - determines which of the resource's parent objects is the first to have role inheritance broken.

 

Most Popular

Using Office Outlook 2010 with Lotus Notes backend connector (DAMO) on Windows 7.
5 weeks 8 hours ago
Introduction to Claims-based Authentication in SharePoint 2010 in plain English
19 weeks 6 days ago
Using the People Picker Editor picker control
36 weeks 6 days ago
Firewall rules and protocol usage
39 weeks 6 days ago
Security Guidance
44 weeks 2 days ago
Access Control with SharePoint Groups
41 weeks 6 days ago
Authentication options
34 weeks 5 days ago
Section 508 Compliance with SharePoint
33 weeks 12 hours ago