IMetabasePolicy

Assembly: Metabase;

Description

The IMetabasePolicy interface contains properties and methods that are used to set repository security policy.

Inheritance Hierarchy

IMetabasePolicy

Comments

Access to security policy is returned by the IMetabaseSecurity.Policy property.

Properties

  Property name Brief description
ABACRules The ABACRules property returns structure of attribute-based access control.
AdmUserTitle The AdmUserTitle property determines a string to display in the security manager window title for the specified administrator type.
AllowCreateUserGrant The AllowCreateUserGrant property allows for creating two roles while maintaining the security policy.
AllowDeferredLoading The AllowDeferredLoading property determines whether lazy loading of descriptors is used on repository connection.
AllowedDocumentFormats The AllowedDocumentFormats property determines formats of documents that can be loaded and opened in repository.
AllowUserQueries The AllowUserQueries property determines whether the development tools for data export from the platform warehouse will be available.
AlwaysPrintDocumentLabel The AlwaysPrintDocumentLabel property determines whether marking stamp will be displayed regardless of the applied access control method and settings of document marking on export or print.
AttributeBasedAccessControl The AttributeBasedAccessControl property determines whether attribute-based access control method is used to control access to objects.
AuditClipboardOperations The AuditClipboardOperations property determines whether operations of copying to clipboard are logged.
AuditPolicy The AuditPolicy property returns the object that contains access policy to objects and events accounting under them.
AuditUserAgent The AuditUserAgent property determine whether information about browser (User Agent) is logged when working in the web application.
AutoLockPeriod The AutoLockPeriod property determines the period of user inactivity in days, after which user account is locked.
AutoRun The AutoRun property returns the object opened on repository connection.
Certificates The Certificates property returns the collection of security certificates.
CheckObjectVerionOnUpdateFromPef The CheckObjectVerionOnUpdateFromPef property determines if object version is checked during update.
CheckUserPassword The CheckUserPassword property determines whether authorization by platform means is used.
CopyToClipboardAllowed The CopyToClipboardAllowed property determines whether it is possible to copy data to a clipboard and copy a screen.
CreateDeferredSubjects The CreateDeferredSubjects property determines whether users with lazy loading are created.
DiscretionaryAccessControl The DiscretionaryAccessControl property determines whether it is possible to use discretionary access control.
EnforceApplicationRole The EnforceApplicationRole property determines whether it is possible to use application role in security policy.
ESKMode The ESKMode property determines whether it is possible to use compatibility mode to work with domain groups in Oracle DBMS.
FailedLogonsCounter_ResetPeriod The FailedLogonsCounter_ResetPeriod property determines the period (in minutes), after which the counter of failed logons is reset.
ForceCleanMemory The ForceCleanMemory property determines whether to clean the memory and fill it with zeros.
IsaPresent The IsaPresent property returns whether the mode of roles separation between the information security administrator and the application administrator is activated.
LockIdentifiersPeriod The LockIdentifiersPeriod property determines a period, during which it is forbidden to reuse certificates of deleted users.
LogonHoursPolicy The LogonHoursPolicy property returns parameters of access to the platform for the specified security subject.
MandatoryAccess The MandatoryAccess property returns the object that contains mandatory access of the security manager.
MandatoryAccessControl The MandatoryAccessControl property determines whether the mandatory access control method is used.
MaxFailedLogons The MaxFailedLogons property determines the maximum number of failed logons, after which the user is locked.
MaxLogonSessions The MaxLogonSessions property determines the maximum number of concurrent repository logins for the security subject.
MetabaseIdentifier The MetabaseIdentifier property determines a repository identifier.
MethodsCombineAlgorithm The MethodsCombineAlgorithm property determines permission combination algorithm by attribute-based and discretionary access control method.
ObjectsAttributes The ObjectsAttributes property returns attributes of classes and specific types of objects.
ObjectsIdFormat The ObjectsIdFormat property determines identifiers format for repository objects.

 

 

PasswordPolicy The PasswordPolicy property returns the object that contains password policy.
PredefinedPrivilege The PredefinedPrivilege property returns parameters of the specified privilege. A privilege is set by means of enumeration.
PrintersPolicy The PrintersPolicy property returns security settings for printers.
Privilege The Privilege property returns privilege parameters by the specified name.
PrivilegeCount The PrivilegeCount property returns the number of privileges available in the security manager.
PrivilegeName The PrivilegeName property returns element privilege by index.
ReportStamp The ReportStamp property determines a stamp type that is used to mark documents.
RestrictAdminAccess The RestrictAdminAccess property determines whether the users having the privilege as the application administrator (creating, deleting users) can open repository objects.
RestrictGroupDeletion The RestrictGroupDeletion property determines whether the deletion of groups is allowed if the group has effective permissions for repository objects.
RestrictIsaAccess The RestrictIsaAccess property determines whether users who have a privilege as ISA (Changing Security Label and Access Control List of Any Object) can open repository objects.
RestrictUserDeletion The RestrictUserDeletion property determines whether the application administrator is prohibited to delete users who have any access permissions on repository objects.
RootObject The RootObject property determines the folder, which will be the root on logging in the repository.
Security The Security property returns security manager parameters.
StationsPolicy The StationsPolicy property returns the list of stations that are denied to enter the current repository.
SupportUserPrivateFolder

The SupportUserPrivateFolder property determines whether the mechanism of user personal folders is used.

UserPrivateFolderRoot The UserPrivateFolderRoot property determines a root folder for user personal folders.

Methods

  Method name Brief description
IsObjectsIdFormatValid The IsObjectsIdFormatValid method checks the string for incorrect data (Cyrillic characters, the first character is number, and so on). If the string is correct, it can be used as identifier format.
PromoteToIsaMode The PromoteToIsaMode method activates a mode of roles separation between the information security administrator and the application administrator.
RevertToStandardMode The RevertToStandardMode method disables the mode of roles separation between the information security administrator and the application administrator.

See also:

Metabase Assembly Interfaces | General Policy