Share via


Windows Azure SDK Trust Policy Reference

[This is preliminary documentation and is subject to change.]

Applications deployed to the Windows® Azure™ fabric operate within a restricted Code Access Security (CAS) environment. The Windows Azure trust policy is a variation on the standard ASP.NET medium trust policy. The differences between the two polices are summarized in the following table.

Permission State ASP.NET medium trust Windows Azure trust

AspNetHosting

Level

Medium

Medium

DnsPermission

Unrestricted

Permitted

Permitted

EnvironmentPermission

Unrestricted

TEMP; TMP; USERNAME; OS; COMPUTERNAME

TEMP;TMP

Read

TEMP; TMP; USERNAME; OS; COMPUTERNAME

TEMP;TMP

Write

TEMP; TMP; USERNAME; OS; COMPUTERNAME

TEMP;TMP

EventLogPermission

Denied

Denied

FileIOPermission

Unrestricted

Denied

Denied

Read

$AppDir$

$AppDir$; Any named local store

Write

$AppDir$

Any named local store

Append

$AppDir$

Any named local store

PathDiscovery

$AppDir$

$AppDir$; Any named local store

IsolatedStorageFilePermission

Unrestricted

Denied

Denied

AssemblyIsolationByUser

Permitted

Denied

Unrestricted UserQuota

Permitted

Denied

OleDbClientPermission

Unrestricted

Denied

Denied

PrintingPermission

Unrestricted

Denied

Denied

DefaultPrinting

Permitted

Denied

ReflectionPermission

Unrestricted

Denied

Denied

RestrictedMemberAccess

Permitted

Permitted

RegistryPermission

Unrestricted

Denied

Denied

SecurityPermission

Unrestricted

Denied

Denied

Assertion

Permitted

Denied

Execution

Permitted

Permitted

ControlThread

Permitted

Permitted

ControlPrinicipal

Permitted

Permitted

RemotingConfiguration

Permitted

Denied

SocketPermission

Unrestricted

Denied

Denied

Connect

Denied

External sites only

TCP

Accept

Denied

Denied

SqlClientPermission

Unrestricted

Permitted

External sites only

WebPermission

Unrestricted

Denied

Denied

Connect

$OriginHost$

External sites only

Accept

Denied

Denied

See Also

Concepts

Windows Azure SDK