Skip to main content
BuyLog In
XAF: Cross-Platform .NET App UI & Web API
Search in…
Docs > API Reference > DevExpress.ExpressApp.Security > PermissionSettingHelper > Methods > AddObjectPermissionFromLambda<T>(IPermissionPolicyRole, String, Expression<Func<T, Boolean>>, Nullable<SecurityPermissionState>)
All docs
V25.1
    • .NET 8.0+
    XAF: Cross-Platform .NET App UI & Web API
    .NET Support and Migration
    Getting Started
    Installation, Upgrade, Version History
    Backend Web API Service
    UI Shell and Base Infrastructure
    Storage, ORM, and Business Model Design
    Data Manipulation and Business Logic
    User Interface and Behavior Customization
    Data Filtering
    Application Security and Data Safety
    Multi-Tenancy (Data per Tenant)
    Validation (Prevent Data Errors)
    Conditional Appearance (Manage State of UI Elements)
    Reporting (Shape, Export & Print Data)
    Analytics (Extract Data Insights)
    Document Management
    Business Process Management
    Event Planning
    Localization
    Accessibility Support
    Debugging, Testing and Error Handling
    Deployment
    Support, QA & Troubleshooting
    API Reference
    DevExpress.EasyTest.Framework
    DevExpress.EntityFrameworkCore.Security
    DevExpress.ExpressApp
    DevExpress.ExpressApp.Actions
    DevExpress.ExpressApp.ApplicationBuilder
    DevExpress.ExpressApp.AspNetCore
    DevExpress.ExpressApp.AuditTrail
    DevExpress.ExpressApp.Blazor
    DevExpress.ExpressApp.Blazor.ApplicationBuilder
    DevExpress.ExpressApp.Blazor.Editors
    DevExpress.ExpressApp.Blazor.Editors.Models
    DevExpress.ExpressApp.Blazor.Services
    DevExpress.ExpressApp.Blazor.SystemModule
    DevExpress.ExpressApp.Blazor.Templates.Navigation
    DevExpress.ExpressApp.Chart
    DevExpress.ExpressApp.Chart.Win
    DevExpress.ExpressApp.CloneObject
    DevExpress.ExpressApp.ConditionalAppearance
    DevExpress.ExpressApp.Core
    DevExpress.ExpressApp.Dashboards
    DevExpress.ExpressApp.Dashboards.Blazor
    DevExpress.ExpressApp.Dashboards.Blazor.Components
    DevExpress.ExpressApp.Dashboards.Blazor.Components.Models
    DevExpress.ExpressApp.Dashboards.Blazor.Controllers
    DevExpress.ExpressApp.Dashboards.Blazor.Services
    DevExpress.ExpressApp.Dashboards.Win
    DevExpress.ExpressApp.Data
    DevExpress.ExpressApp.DC
    DevExpress.ExpressApp.DC.ClassGeneration
    DevExpress.ExpressApp.Editors
    DevExpress.ExpressApp.EFCore
    DevExpress.ExpressApp.FileAttachments.Blazor
    DevExpress.ExpressApp.FileAttachments.Win
    DevExpress.ExpressApp.Filtering
    DevExpress.ExpressApp.Kpi
    DevExpress.ExpressApp.Layout
    DevExpress.ExpressApp.MiddleTier
    DevExpress.ExpressApp.Model
    DevExpress.ExpressApp.Model.Core
    DevExpress.ExpressApp.Model.NodeGenerators
    DevExpress.ExpressApp.ModelEditor
    DevExpress.ExpressApp.MultiTenancy
    DevExpress.ExpressApp.MultiTenancy.EFCore
    DevExpress.ExpressApp.MultiTenancy.Xpo
    DevExpress.ExpressApp.Notifications
    DevExpress.ExpressApp.Notifications.Blazor
    DevExpress.ExpressApp.Notifications.Win
    DevExpress.ExpressApp.Office
    DevExpress.ExpressApp.Office.Blazor
    DevExpress.ExpressApp.Office.Win
    DevExpress.ExpressApp.PivotChart
    DevExpress.ExpressApp.PivotChart.Win
    DevExpress.ExpressApp.PivotGrid
    DevExpress.ExpressApp.PivotGrid.Win
    DevExpress.ExpressApp.ReportsV2
    DevExpress.ExpressApp.ReportsV2.Blazor
    DevExpress.ExpressApp.ReportsV2.Services
    DevExpress.ExpressApp.ReportsV2.Win
    DevExpress.ExpressApp.Scheduler
    DevExpress.ExpressApp.Scheduler.Blazor
    DevExpress.ExpressApp.Scheduler.Blazor.Editors
    DevExpress.ExpressApp.Scheduler.Win
    DevExpress.ExpressApp.ScriptRecorder
    DevExpress.ExpressApp.ScriptRecorder.Win
    DevExpress.ExpressApp.Security
    AssociationPermissionsMode
    AuthenticationActiveDirectory
    AuthenticationActiveDirectory<UserType, LogonParametersType>
    AuthenticationActiveDirectory<UserType>
    AuthenticationBase
    AuthenticationStandard
    AuthenticationStandard<UserType, LogonParametersType>
    AuthenticationStandard<UserType>
    AuthenticationStandardEvents
    AuthenticationStandardLogonParameters
    AuthenticationStandardProviderOptions
    CustomCreateUserEventArgs
    CustomizeClaimContext
    CustomizeLoginTokenContext
    HasRightsToModifyMemberController
    INonsecuredObjectSpaceProvider
    IntermediateObjectAttribute
    IOperationPermission
    IOperationPermissionProvider
    IPermissionRequest
    IRequestSecurityStrategy
    ISecurityProvider
    ISecurityStrategyBase
    ISecurityUser
    ISecurityUserLockout
    ISecurityUserLoginInfo
    ISecurityUserWithLoginInfo
    ISecurityUserWithRoles
    IsGrantedExtensions
    LockoutOptions
    MemberOperationPermission
    ModelOperationPermission
    ModelOperationPermissionRequest
    MyDetailsController
    NonSecureActionsInitializingEventArgs
    ObjectAccess
    ObjectAccessModifier
    ObjectOperationPermission
    OperationPermissionBase
    OperationPermissionRequestBase
    PermissionRequestProcessorBase<ProcessorPermissionRequestType>
    PermissionSettingHelper
    Members
    Methods
    AddActionPermission(IPermissionPolicyRole, String)
    AddMemberPermission
    AddMemberPermissionFromLambda<T>(IPermissionPolicyRole, String, String, Expression<Func<T, Boolean>>, Nullable<SecurityPermissionState>)
    AddNavigationPermission(IPermissionPolicyRole, String, Nullable<SecurityPermissionState>)
    AddObjectPermission
    AddObjectPermissionFromLambda<T>(IPermissionPolicyRole, String, Expression<Func<T, Boolean>>, Nullable<SecurityPermissionState>)
    AddTypePermission
    AddTypePermissionsRecursively
    EnsureNavigationPermission(IPermissionPolicyRole, String)
    EnsureTypePermission
    FindFirstTypePermission
    SetTypePermission
    PermissionsReloadMode
    RolesMergingMode
    SecuredXPObjectSpace
    SecurityBrowsableAttribute
    SecurityBuilder
    SecurityModule
    SecurityModuleOptions
    SecurityOperations
    SecurityOptions
    SecurityStrategy
    SecurityStrategyBase
    SecurityStrategyComplex
    SecurityUserBase
    ServerPermissionRequestProcessor
    SignInManager
    TypeOperationPermission
    UserManager
    XafApplicationExtensions
    DevExpress.ExpressApp.Security.Adapters
    DevExpress.ExpressApp.Security.Authentication
    DevExpress.ExpressApp.Security.ClientServer
    DevExpress.ExpressApp.Security.ClientServer.Wcf
    DevExpress.ExpressApp.Security.ClientServer.WebApi
    DevExpress.ExpressApp.Security.EF.Adapters
    DevExpress.ExpressApp.Security.Strategy
    DevExpress.ExpressApp.Security.Xpo.Adapters
    DevExpress.ExpressApp.Services.Localization
    DevExpress.ExpressApp.StateMachine
    DevExpress.ExpressApp.SystemModule
    DevExpress.ExpressApp.Templates
    DevExpress.ExpressApp.Templates.ActionContainers
    DevExpress.ExpressApp.TreeListEditors
    DevExpress.ExpressApp.TreeListEditors.Win
    DevExpress.ExpressApp.Updating
    DevExpress.ExpressApp.Utils
    DevExpress.ExpressApp.Validation
    DevExpress.ExpressApp.Validation.Win
    DevExpress.ExpressApp.ViewVariantsModule
    DevExpress.ExpressApp.WebApi.Services
    DevExpress.ExpressApp.Win
    DevExpress.ExpressApp.Win.ApplicationBuilder
    DevExpress.ExpressApp.Win.Core
    DevExpress.ExpressApp.Win.Editors
    DevExpress.ExpressApp.Win.Model
    DevExpress.ExpressApp.Win.SystemModule
    DevExpress.ExpressApp.Win.Templates
    DevExpress.ExpressApp.Win.Templates.Navigation
    DevExpress.ExpressApp.Win.Utils
    DevExpress.ExpressApp.Xpo
    DevExpress.ExpressApp.Xpo.Utils
    DevExpress.Persistent.AuditTrail
    DevExpress.Persistent.Base
    DevExpress.Persistent.Base.General
    DevExpress.Persistent.Base.MultiTenancy
    DevExpress.Persistent.Base.ReportsV2
    DevExpress.Persistent.Base.Security
    DevExpress.Persistent.BaseImpl
    DevExpress.Persistent.BaseImpl.AuditTrail.Services
    DevExpress.Persistent.BaseImpl.EF
    DevExpress.Persistent.BaseImpl.EF.MultiTenancy
    DevExpress.Persistent.BaseImpl.EF.PermissionPolicy
    DevExpress.Persistent.BaseImpl.PermissionPolicy
    DevExpress.Persistent.Validation
    Download CHM

    PermissionSettingHelper.AddObjectPermissionFromLambda<T>(IPermissionPolicyRole, String, Expression<Func<T, Boolean>>, Nullable<SecurityPermissionState>) Method

    Finds the first type permission for the specified type in the role and adds the object permission to it. If the appropriate type permission is not found, this method creates it.

    Namespace: DevExpress.ExpressApp.Security

    Assembly: DevExpress.ExpressApp.Security.v25.1.dll

    Declaration

    public static IPermissionPolicyObjectPermissionsObject AddObjectPermissionFromLambda<T>(
    this IPermissionPolicyRole role,
    string operations,
    Expression<Func<T, bool>> lambda,
    SecurityPermissionState? state
)
    where T : class

    Parameters

    Name Type Description
    role IPermissionPolicyRole

    The target role for a new object permission.
    operations String

    The semicolon-separated list of security operations. The static SecurityOperations class defines operation names and their delimiter.
    lambda Expression<Func<T, Boolean>>

    The lambda expression that specifies the target object(s).

    state Nullable<SecurityPermissionState>

    A SecurityPermissionState enumeration value that specifies if access is granted or denied.

    Type Parameters

    Name Description
    T

    This method finds the type permission for this type in the role.

    Returns

    Type Description
    DevExpress.Persistent.Base.IPermissionPolicyObjectPermissionsObject

    The added object permission.

    Remarks

    The following example demonstrates how to use this method in UpdateDatabaseAfterUpdateSchema() (MySolution.Module\DatabaseUpdater\Updater.cs(.vb)):

    using DevExpress.Data.Filtering;
using DevExpress.ExpressApp.Security;
using DevExpress.ExpressApp.SystemModule;
using DevExpress.ExpressApp.Updating;
using DevExpress.Persistent.Base;
using DevExpress.Persistent.BaseImpl.PermissionPolicy;
// ...
public class Updater : ModuleUpdater {
    // ...
    public override void UpdateDatabaseAfterUpdateSchema() {
        base.UpdateDatabaseAfterUpdateSchema();
        PermissionPolicyRole defaultRole = ObjectSpace.FirstOrDefault<PermissionPolicyRole>(role => role.Name == "Default");
        if(defaultRole == null) {
            defaultRole = ObjectSpace.CreateObject<PermissionPolicyRole>();
            defaultRole.AddObjectPermissionFromLambda<PermissionPolicyUser>(
                SecurityOperations.Read, 
                u => u.Oid == (Guid)CurrentUserIdOperator.CurrentUserId(),
                SecurityPermissionState.Allow
            );
            // ...
        }
        // ...
    }
}

    Note

    Alternatively, you can use the AddObjectPermission<T>(IPermissionPolicyRole, String, String, Nullable<SecurityPermissionState>) method, which takes a criteria expression instead of a lambda expression.

    See Also