Deny 方法 (DatabasePermissionSet, String[], Boolean)
拒絕指定之被授與者在資料庫上的指定權限集,以及該被授與者授與其他使用者的指定權限集。
命名空間: Microsoft.SqlServer.Management.Smo
組件: Microsoft.SqlServer.Smo (在 Microsoft.SqlServer.Smo.dll 中)
語法
'宣告
Public Sub Deny ( _
permission As DatabasePermissionSet, _
granteeNames As String(), _
cascade As Boolean _
)
'用途
Dim instance As Database
Dim permission As DatabasePermissionSet
Dim granteeNames As String()
Dim cascade As Boolean
instance.Deny(permission, granteeNames, _
cascade)
public void Deny(
DatabasePermissionSet permission,
string[] granteeNames,
bool cascade
)
public:
void Deny(
DatabasePermissionSet^ permission,
array<String^>^ granteeNames,
bool cascade
)
member Deny :
permission:DatabasePermissionSet *
granteeNames:string[] *
cascade:bool -> unit
public function Deny(
permission : DatabasePermissionSet,
granteeNames : String[],
cascade : boolean
)
參數
- permission
型別:Microsoft.SqlServer.Management.Smo. . :: . .DatabasePermissionSet
指定權限集的 DatabasePermissionSet 物件值。
- granteeNames
型別:array<System. . :: . .String> [] () [] []
String 陣列,這個陣列會指定要拒絕指定權限集的被授與者清單。
- cascade
型別:System. . :: . .Boolean
Boolean 屬性,這個屬性會指定是否也要針對使用者 (亦即,被授與者授與指定權限集的對象) 拒絕存取資料庫的指定權限集。
如果為 True,則針對被授與者以及被授與者授與指定權限集的使用者拒絕指定的權限集。如果為 False,則僅針對被授與者拒絕指定的權限集。
範例
The example shows how to use the Deny method with server permissions. The method is used in the same way with database permissions.
VB
'Connect to the local, default instance of SQL Server.
Dim svr As Server
svr = New Server()
'Define a ServerPermissionSet that contains permission to Create Endpoint and Alter Any Endpoint.
Dim sps As ServerPermissionSet
sps = New ServerPermissionSet(ServerPermission.CreateEndpoint)
sps.Add(ServerPermission.AlterAnyEndpoint)
'This sample assumes that the grantee already has permission to Create Endpoints.
'Enumerate and display the server permissions in the set for the grantee specified in the vGrantee string variable.
Dim spis As ServerPermissionInfo()
spis = svr.EnumServerPermissions(vGrantee, sps)
Dim spi As ServerPermissionInfo
Console.WriteLine("=================Before revoke===========================")
For Each spi In spis
Console.WriteLine(spi.Grantee & " has " & spi.PermissionType.ToString & " permission.")
Next
Console.WriteLine(" ")
'Remove a permission from the set.
sps.Remove(ServerPermission.CreateEndpoint)
'Revoke the create endpoint permission from the grantee.
svr.Revoke(sps, vGrantee)
'Enumerate and display the server permissions in the set for the grantee specified in the vGrantee string variable.
spis = svr.EnumServerPermissions(vGrantee, sps)
Console.WriteLine("=================After revoke============================")
For Each spi In spis
Console.WriteLine(spi.Grantee & " has " & spi.PermissionType.ToString & " permission.")
Next
Console.WriteLine(" ")
'Grant the Create Endpoint permission to the grantee.
svr.Grant(sps, vGrantee)
'Enumerate and display the server permissions in the set for the grantee specified in the vGrantee string variable.
spis = svr.EnumServerPermissions(vGrantee, sps)
Console.WriteLine("=================After grant=============================")
For Each spi In spis
Console.WriteLine(spi.Grantee & " has " & spi.PermissionType.ToString & " permission.")
Next
Console.WriteLine("")
PowerShell
$srv = new-Object Microsoft.SqlServer.Management.Smo.Server("(local)")
$arg = [Microsoft.SqlServer.Management.Smo.ServerPermission]::CreateEndpoint
$sps = new-object Microsoft.SqlServer.Management.Smo.ServerPermissionSet([Microsoft.SqlServer.Management.Smo.ServerPermission]::CreateEndpoint)
$sps.Add([Microsoft.SqlServer.Management.Smo.ServerPermission]::AlterAnyEndpoint)
$spis = $srv.EnumServerPermissions("vGrantee", $sps)
Write-Host "=================Before revoke==========================="
Foreach ($spi In $spis)
{
Write-Host $spi.Grantee "has" $spi.PermissionType " permission."
}
Write-Host " "
$sps.Remove([Microsoft.SqlServer.Management.Smo.ServerPermission]::CreateEndpoint)