2.2.4.2.2.21 Permission
The Permission complex type represents a set of permissions assigned to a Role.
-
<xsd:complexType name="Permission"> <xsd:sequence> <!--These elements are common to each MajorObject--> <xsd:element name="Name" type="xsd:string" /> <xsd:element name="ID" type="xsd:string" minOccurs="0" /> <xsd:element name="CreatedTimestamp" type="xsd:dateTime" minOccurs="0" /> <xsd:element name="LastSchemaUpdate" type="xsd:dateTime" minOccurs="0" /> <xsd:element name="Description" type="xsd:string" minOccurs="0" /> <xsd:element name="Annotations" minOccurs="0" > <xsd:complexType> <xsd:sequence> <xsd:element name="Annotation" type="Annotation" minOccurs="0" maxOccurs="unbounded" /> </xsd:sequence> </xsd:complexType> </xsd:element> <!--Extended elements for Permission object--> <xsd:element name="RoleID" type="xsd:string"/> <xsd:element name="Process" type="xsd:boolean" minOccurs="0"/> <xsd:element name="ReadDefinition" minOccurs="0"> <xsd:simpleType> <xsd:restriction base="xsd:string" > <xsd:enumeration value="None" /> <xsd:enumeration value="Basic" /> <xsd:enumeration value="Allowed" /> </xsd:restriction> </xsd:simpleType> </xsd:element> <xsd:element name="Read" minOccurs="0"> <xsd:simpleType> <xsd:restriction base="xsd:string" > <xsd:enumeration value="None" /> <xsd:enumeration value="Allowed" /> </xsd:restriction> </xsd:simpleType> </xsd:element> <xsd:element name="Write" minOccurs="0"> <xsd:simpleType> <xsd:restriction base="xsd:string" > <xsd:enumeration value="None" /> <xsd:enumeration value="Allowed" /> </xsd:restriction> </xsd:simpleType> </xsd:element> </xsd:sequence> </xsd:complexType>
The following table describes the elements that are included in the XSD schema for Permission. Those elements common to all major objects are described in section 2.2.4.2.2.1.
Element |
Read-Only |
Default value |
Description |
---|---|---|---|
RoleID |
|
[Required] |
The ID of the Role for which permissions are being defined. |
Process |
|
False |
When true, specifies that the role has permission to process the object; otherwise, false. |
ReadDefinition |
|
"None" for all objects (except Dimension where default is value of Read property) |
A string that specifies whether the role has permission to read the XML definition of the object or any of its contained objects using DISCOVER_XML_METADATA. "None" implies no access to object definition. "Basic" implies limited access to object definition. "Allowed" implies full access to object definition. |
Read |
|
"None" |
A string that specifies whether the role has permission to read metadata or data from the object or any of its contained objects. "None" implies no read access to object metadata or data.<112> "Allowed" implies full read access to object metadata or data. |
Write |
|
"None" |
A string that specifies whether the role has permission to write to the object or any of its contained objects. DatabasePermission, DataSourcePermission, and MiningStructurePermission cannot have Write="Allowed". Write cannot be set to "Allowed" unless Read is also set to "Allowed". "None" implies no write access to object metadata or data. "Allowed" implies full write access to object metadata or data. |