IHostSecurityManager::OpenThreadToken Method

Opens the discretionary access token associated with the currently executing thread.

Syntax

HRESULT OpenThreadToken (  
    [in]  DWORD    dwDesiredAccess,
    [in]  BOOL     bOpenAsSelf,
    [out] HANDLE   *phThreadToken  
);  

Parameters

dwDesiredAccess
[in] A mask of access values that specify the requested types of access to the thread token. These values are defined in the Win32 OpenThreadToken function. The requested access types are reconciled against the token's discretionary access control list (DACL) to determine which types of access to grant or deny.

bOpenAsSelf
[in] true to specify that the access check should be made using the security context of the process for the calling thread; false to specify that the access check should be performed using the security context for the calling thread itself. If the thread is impersonating a client, the security context can be that of a client process.

phThreadToken
[out] A pointer to the newly opened access token.

Return Value

HRESULT Description
S_OK OpenThreadToken returned successfully.
HOST_E_CLRNOTAVAILABLE The common language runtime (CLR) has not been loaded into a process, or the CLR is in a state in which it cannot run managed code or process the call successfully.
HOST_E_TIMEOUT The call timed out.
HOST_E_NOT_OWNER The caller does not own the lock.
HOST_E_ABANDONED An event was canceled while a blocked thread or fiber was waiting on it.
E_FAIL An unknown catastrophic failure occurred. When a method returns E_FAIL, the CLR is no longer usable within the process. Subsequent calls to hosting methods return HOST_E_CLRNOTAVAILABLE.

Remarks

IHostSecurityManager::OpenThreadToken behaves similarly to the corresponding Win32 function of the same name, except that the Win32 function allows the caller to pass in a handle to an arbitrary thread, while IHostSecurityManager::OpenThreadToken opens only the token associated with the calling thread.

The HANDLE type is not COM-compliant, that is, its size is specific to the operating system, and it requires custom marshalling. Thus, this token is for use only within the process, between the CLR and the host.

Requirements

Platforms: See System Requirements.

Header: MSCorEE.h

Library: Included as a resource in MSCorEE.dll

.NET Framework Versions: Available since 2.0

See also