Assembly: Metabase;
The IMetabasePolicy interface contains properties and methods that are used to set repository security policy.
IMetabasePolicy
Access to security policy is returned by the IMetabaseSecurity.Policy property.
Property name | Brief description | |
ABACRules | The ABACRules property returns structure of attribute-based access control. | |
AdmUserTitle | The AdmUserTitle property determines a string to display in the security manager window title for the specified administrator type. | |
AllowCreateUserGrant | The AllowCreateUserGrant property allows for creating two roles while maintaining the security policy. | |
AllowDeferredLoading | The AllowDeferredLoading property determines whether lazy loading of descriptors is used on repository connection. | |
AllowedDocumentFormats | The AllowedDocumentFormats property determines formats of documents that can be loaded and opened in repository. | |
AllowUserQueries | The AllowUserQueries property determines whether the development tools for data export from the platform warehouse will be available. | |
AlwaysPrintDocumentLabel | The AlwaysPrintDocumentLabel property determines whether marking stamp will be displayed regardless of the applied access control method and settings of document marking on export or print. | |
AttributeBasedAccessControl | The AttributeBasedAccessControl property determines whether attribute-based access control method is used to control access to objects. | |
AuditClipboardOperations | The AuditClipboardOperations property determines whether operations of copying to clipboard are logged. | |
AuditPolicy | The AuditPolicy property returns the object that contains access policy to objects and events accounting under them. | |
AuditUserAgent | The AuditUserAgent property determine whether information about browser (User Agent) is logged when working in the web application. | |
AutoLockPeriod | The AutoLockPeriod property determines the period of user inactivity in days, after which user account is locked. | |
AutoRun | The AutoRun property returns the object opened on repository connection. | |
Certificates | The Certificates property returns the collection of security certificates. | |
CheckObjectVerionOnUpdateFromPef | The CheckObjectVerionOnUpdateFromPef property determines if object version is checked during update. | |
CheckUserPassword | The CheckUserPassword property determines whether authorization by platform means is used. | |
CopyToClipboardAllowed | The CopyToClipboardAllowed property determines whether it is possible to copy data to a clipboard and copy a screen. | |
CreateDeferredSubjects | The CreateDeferredSubjects property determines whether users with lazy loading are created. | |
DiscretionaryAccessControl | The DiscretionaryAccessControl property determines whether it is possible to use discretionary access control. | |
EnforceApplicationRole | The EnforceApplicationRole property determines whether it is possible to use application role in security policy. | |
ESKMode | The ESKMode property determines whether it is possible to use compatibility mode to work with domain groups in Oracle DBMS. | |
FailedLogonsCounter_ResetPeriod | The FailedLogonsCounter_ResetPeriod property determines the period (in minutes), after which the counter of failed logons is reset. | |
ForceCleanMemory | The ForceCleanMemory property determines whether to clean the memory and fill it with zeros. | |
IsaPresent | The IsaPresent property returns whether the mode of roles separation between the information security administrator and the application administrator is activated. | |
LockIdentifiersPeriod | The LockIdentifiersPeriod property determines a period, during which it is forbidden to reuse certificates of deleted users. | |
LogonHoursPolicy | The LogonHoursPolicy property returns parameters of access to the platform for the specified security subject. | |
MandatoryAccess | The MandatoryAccess property returns the object that contains mandatory access of the security manager. | |
MandatoryAccessControl | The MandatoryAccessControl property determines whether the mandatory access control method is used. | |
MaxFailedLogons | The MaxFailedLogons property determines the maximum number of failed logons, after which the user is locked. | |
MaxLogonSessions | The MaxLogonSessions property determines the maximum number of concurrent repository logins for the security subject. | |
MetabaseIdentifier | The MetabaseIdentifier property determines a repository identifier. | |
MethodsCombineAlgorithm | The MethodsCombineAlgorithm property determines permission combination algorithm by attribute-based and discretionary access control method. | |
ObjectsAttributes | The ObjectsAttributes property returns attributes of classes and specific types of objects. | |
ObjectsIdFormat | The ObjectsIdFormat property determines identifiers format for repository objects. | |
|
|
|
PasswordPolicy | The PasswordPolicy property returns the object that contains password policy. | |
PredefinedPrivilege | The PredefinedPrivilege property returns parameters of the specified privilege. A privilege is set by means of enumeration. | |
PrintersPolicy | The PrintersPolicy property returns security settings for printers. | |
Privilege | The Privilege property returns privilege parameters by the specified name. | |
PrivilegeCount | The PrivilegeCount property returns the number of privileges available in the security manager. | |
PrivilegeName | The PrivilegeName property returns element privilege by index. | |
ReportStamp | The ReportStamp property determines a stamp type that is used to mark documents. | |
RestrictAdminAccess | The RestrictAdminAccess property determines whether the users having the privilege as the application administrator (creating, deleting users) can open repository objects. | |
RestrictGroupDeletion | The RestrictGroupDeletion property determines whether the deletion of groups is allowed if the group has effective permissions for repository objects. | |
RestrictIsaAccess | The RestrictIsaAccess property determines whether users who have a privilege as ISA (Changing Security Label and Access Control List of Any Object) can open repository objects. | |
RestrictUserDeletion | The RestrictUserDeletion property determines whether the application administrator is prohibited to delete users who have any access permissions on repository objects. | |
RootObject | The RootObject property determines the folder, which will be the root on logging in the repository. | |
Security | The Security property returns security manager parameters. | |
StationsPolicy | The StationsPolicy property returns the list of stations that are denied to enter the current repository. | |
SupportUserPrivateFolder | The SupportUserPrivateFolder property determines whether the mechanism of user personal folders is used. |
|
UserPrivateFolderRoot | The UserPrivateFolderRoot property determines a root folder for user personal folders. |
Method name | Brief description | |
IsObjectsIdFormatValid | The IsObjectsIdFormatValid method checks the string for incorrect data (Cyrillic characters, the first character is number, and so on). If the string is correct, it can be used as identifier format. | |
PromoteToIsaMode | The PromoteToIsaMode method activates a mode of roles separation between the information security administrator and the application administrator. | |
RevertToStandardMode | The RevertToStandardMode method disables the mode of roles separation between the information security administrator and the application administrator. |
See also:
Metabase Assembly Interfaces | General Policy