Skip to main content
BuyLog In
XAF: Cross-Platform .NET App UI & Web API
Search in…
Docs > API Reference > DevExpress.ExpressApp.Security > SecurityStrategy > Members
All docs
V24.1
.NET 6.0+
XAF: Cross-Platform .NET App UI & Web API
Getting Started
Installation, Upgrade, Version History
Backend Web API Service
UI Shell and Base Infrastructure
Storage, ORM, and Business Model Design
Data Manipulation and Business Logic
User Interface and Behavior Customization
Data Filtering
Application Security and Data Safety
Multi-Tenancy (Data per Tenant)
Validation (Prevent Data Errors)
Conditional Appearance (Manage State of UI Elements)
Reporting (Shape, Export & Print Data)
Analytics (Extract Data Insights)
Document Management
Business Process Management
Event Planning
Localization
Accessibility Support
Debugging, Testing and Error Handling
Deployment
Support, QA & Troubleshooting
API Reference
DevExpress.EasyTest.Framework
DevExpress.EntityFrameworkCore.Security
DevExpress.ExpressApp
DevExpress.ExpressApp.Actions
DevExpress.ExpressApp.ApplicationBuilder
DevExpress.ExpressApp.AspNetCore
DevExpress.ExpressApp.AuditTrail
DevExpress.ExpressApp.Blazor
DevExpress.ExpressApp.Blazor.ApplicationBuilder
DevExpress.ExpressApp.Blazor.Editors
DevExpress.ExpressApp.Blazor.Editors.Grid
DevExpress.ExpressApp.Blazor.Editors.Models
DevExpress.ExpressApp.Blazor.Services
DevExpress.ExpressApp.Blazor.SystemModule
DevExpress.ExpressApp.Blazor.Templates.Navigation
DevExpress.ExpressApp.Chart
DevExpress.ExpressApp.Chart.Win
DevExpress.ExpressApp.CloneObject
DevExpress.ExpressApp.ConditionalAppearance
DevExpress.ExpressApp.Core
DevExpress.ExpressApp.Dashboards
DevExpress.ExpressApp.Dashboards.Blazor
DevExpress.ExpressApp.Dashboards.Blazor.Components
DevExpress.ExpressApp.Dashboards.Blazor.Components.Models
DevExpress.ExpressApp.Dashboards.Blazor.Controllers
DevExpress.ExpressApp.Dashboards.Blazor.Services
DevExpress.ExpressApp.Dashboards.Win
DevExpress.ExpressApp.Data
DevExpress.ExpressApp.DC
DevExpress.ExpressApp.DC.ClassGeneration
DevExpress.ExpressApp.Editors
DevExpress.ExpressApp.EFCore
DevExpress.ExpressApp.FileAttachments.Blazor
DevExpress.ExpressApp.FileAttachments.Win
DevExpress.ExpressApp.Filtering
DevExpress.ExpressApp.Kpi
DevExpress.ExpressApp.Layout
DevExpress.ExpressApp.MiddleTier
DevExpress.ExpressApp.Model
DevExpress.ExpressApp.Model.Core
DevExpress.ExpressApp.Model.NodeGenerators
DevExpress.ExpressApp.ModelEditor
DevExpress.ExpressApp.Notifications
DevExpress.ExpressApp.Notifications.Blazor
DevExpress.ExpressApp.Notifications.Win
DevExpress.ExpressApp.Office
DevExpress.ExpressApp.Office.Blazor
DevExpress.ExpressApp.Office.Win
DevExpress.ExpressApp.PivotChart
DevExpress.ExpressApp.PivotChart.Win
DevExpress.ExpressApp.PivotGrid
DevExpress.ExpressApp.PivotGrid.Win
DevExpress.ExpressApp.ReportsV2
DevExpress.ExpressApp.ReportsV2.Blazor
DevExpress.ExpressApp.ReportsV2.Services
DevExpress.ExpressApp.ReportsV2.Win
DevExpress.ExpressApp.Scheduler
DevExpress.ExpressApp.Scheduler.Blazor
DevExpress.ExpressApp.Scheduler.Blazor.Editors
DevExpress.ExpressApp.Scheduler.Win
DevExpress.ExpressApp.ScriptRecorder
DevExpress.ExpressApp.ScriptRecorder.Win
DevExpress.ExpressApp.Security
AssociationPermissionsMode
AuthenticationActiveDirectory
AuthenticationActiveDirectory<UserType, LogonParametersType>
AuthenticationActiveDirectory<UserType>
AuthenticationBase
AuthenticationStandard
AuthenticationStandard<UserType, LogonParametersType>
AuthenticationStandard<UserType>
AuthenticationStandardEvents
AuthenticationStandardLogonParameters
AuthenticationStandardProviderOptions
CustomCreateUserEventArgs
CustomizeClaimContext
CustomizeLoginTokenContext
HasRightsToModifyMemberController
INonsecuredObjectSpaceProvider
IntermediateObjectAttribute
IOperationPermission
IOperationPermissionProvider
IPermissionRequest
ISecurityProvider
ISecurityStrategyBase
ISecurityUser
ISecurityUserLockout
ISecurityUserLoginInfo
ISecurityUserWithLoginInfo
ISecurityUserWithRoles
IsGrantedExtensions
LockoutOptions
MemberOperationPermission
ModelOperationPermission
ModelOperationPermissionRequest
MyDetailsController
NonSecureActionsInitializingEventArgs
ObjectAccess
ObjectAccessModifier
ObjectOperationPermission
OperationPermissionBase
OperationPermissionRequestBase
PermissionRequestProcessorBase<ProcessorPermissionRequestType>
PermissionSettingHelper
PermissionsReloadMode
RolesMergingMode
SecuredXPObjectSpace
SecurityBrowsableAttribute
SecurityBuilder
SecurityModule
SecurityModuleOptions
SecurityOperations
SecurityOptions
SecurityStrategy
Members
Constructors
Fields
Properties
Methods
Events
SecurityStrategyBase
SecurityStrategyComplex
SecurityUserBase
ServerPermissionRequestProcessor
SignInManager
TypeOperationPermission
UserManager
XafApplicationExtensions
DevExpress.ExpressApp.Security.Adapters
DevExpress.ExpressApp.Security.Authentication
DevExpress.ExpressApp.Security.ClientServer
DevExpress.ExpressApp.Security.ClientServer.Wcf
DevExpress.ExpressApp.Security.ClientServer.WebApi
DevExpress.ExpressApp.Security.EF.Adapters
DevExpress.ExpressApp.Security.Strategy
DevExpress.ExpressApp.Security.Xpo.Adapters
DevExpress.ExpressApp.Services.Localization
DevExpress.ExpressApp.StateMachine
DevExpress.ExpressApp.SystemModule
DevExpress.ExpressApp.Templates
DevExpress.ExpressApp.Templates.ActionContainers
DevExpress.ExpressApp.TreeListEditors
DevExpress.ExpressApp.TreeListEditors.Win
DevExpress.ExpressApp.Updating
DevExpress.ExpressApp.Utils
DevExpress.ExpressApp.Validation
DevExpress.ExpressApp.Validation.Win
DevExpress.ExpressApp.ViewVariantsModule
DevExpress.ExpressApp.WebApi.Services
DevExpress.ExpressApp.Win
DevExpress.ExpressApp.Win.ApplicationBuilder
DevExpress.ExpressApp.Win.Core
DevExpress.ExpressApp.Win.Editors
DevExpress.ExpressApp.Win.Model
DevExpress.ExpressApp.Win.SystemModule
DevExpress.ExpressApp.Win.Templates
DevExpress.ExpressApp.Win.Templates.Navigation
DevExpress.ExpressApp.Win.Utils
DevExpress.ExpressApp.Xpo
DevExpress.ExpressApp.Xpo.Utils
DevExpress.Persistent.AuditTrail
DevExpress.Persistent.Base
DevExpress.Persistent.Base.General
DevExpress.Persistent.Base.ReportsV2
DevExpress.Persistent.Base.Security
DevExpress.Persistent.BaseImpl
DevExpress.Persistent.BaseImpl.AuditTrail.Services
DevExpress.Persistent.BaseImpl.EF
DevExpress.Persistent.BaseImpl.EF.PermissionPolicy
DevExpress.Persistent.BaseImpl.PermissionPolicy
DevExpress.Persistent.Validation
Download CHM

SecurityStrategy Members

An abstract base class for Security Strategies.

Constructors

Name Description
SecurityStrategy() Initializes a new instance of the SecurityStrategy class.
SecurityStrategy(ITypesInfo) Initializes a new instance of the SecurityStrategy class with specified settings.
SecurityStrategy(Type, AuthenticationBase, ITypesInfo) Initializes a new instance of the SecurityStrategy class with specified settings.

Fields

Name Description
AdditionalSecuredTypes static Specifies the list of additional types to be secured (for example, non-persistent object types).
AdministratorRoleName static Specifies the name of the administrator role.
TraceSwitchName Gets the name of a TraceSwitch used by SecurityStrategy.

Properties

Name Description
AdapterFacade For internal use. Inherited from SecurityStrategyBase.
AllowAnonymousAccess Specifies if users can access all secured data anonymously before they log in.
AnonymousAllowedTypes Specifies types that users can access anonymously before they log in.
AssociationPermissionsMode Specifies the mode of processing security permissions for associations.
Authentication Specifies the Authentication type used in your application. Inherited from SecurityStrategyBase.
CanRaiseEvents protected Gets a value indicating whether the component can raise an event. Inherited from Component.
Container Gets the IContainer that contains the Component. Inherited from Component.
DelayPermissionDictionaryLoading static For internal use.
DesignMode protected Gets a value that indicates whether the Component is currently in design mode. Inherited from Component.
EnableSecurityForActions static For internal use.
Events protected Gets the list of event handlers that are attached to this Component. Inherited from Component.
IsAuthenticated For internal use. Inherited from SecurityStrategyBase.
IsLogoffEnabled For internal use. Inherited from SecurityStrategyBase.
LogonObjectSpace For internal use. Inherited from SecurityStrategyBase.
LogonParameters For internal use. Inherited from SecurityStrategyBase.
NeedLogonParameters For internal use. Inherited from SecurityStrategyBase.
ObjectSpaces For internal use. Inherited from SecurityStrategyBase.
PermissionsReloadMode Specifies the mode of reloading the security permissions used by Security Adapters.
RolesMergingMode Specifies how the Security System determines if a user can perform a specific operation when this user has multiple roles with different permission sets.
SaveUserObjectOnPasswordChanging Specifies whether or not changes in a Detail View should be saved when the ResetPassword or ChangeMyPassword Action is executed.
SecuredNonPersistentTypes static Obsolete. This property is now obsolete. Use the SecurityStrategy.AdditionalSecuredTypes property instead.
Site Gets or sets the ISite of the Component. Inherited from Component.
SupportNavigationPermissionsForTypes Specifies whether or not the navigation permissions are supported for types.
TraceLevel static Specifies the trace level for logs.
TypesInfo For internal use. Inherited from SecurityStrategyBase.
UseOptimizedPermissionRequestProcessor For internal use.
UsePermissionRequestProcessor For internal use.
User Returns the current user object. Inherited from SecurityStrategyBase.
UserId An identifier of the current user.
UserName Gets the current user name.
UserType Specifies the type of user that is supported by the security strategy.

Methods

Name Description
ClearRequestCache(IObjectSpace)
ClearSecuredLogonParameters() For internal use. Inherited from SecurityStrategyBase.
CreateSelectDataSecurity()
CreateSelectDataSecurity(IObjectSpace)
Dispose() Releases all resources used by the Component. Inherited from Component.
Equals(Object, Object) static Determines whether the specified object instances are considered equal. Inherited from Object.
Equals(Object) Determines whether the specified object is equal to the current object. Inherited from Object.
GetBusinessClasses() Returns a list of persistent types that are used within the current security strategy.
GetHashCode() Serves as the default hash function. Inherited from Object.
GetLifetimeService() Retrieves the current lifetime service object that controls the lifetime policy for this instance. Inherited from MarshalByRefObject.
GetModuleType() For internal use. Inherited from SecurityStrategyBase.
GetSecuredActions()
GetSecuredTypes(ITypesInfo) static Returns a list of business classes that can be secured.
GetService(Type) protected Returns an object that represents a service provided by the Component or by its Container. Inherited from Component.
GetType() Gets the Type of the current instance. Inherited from Object.
InitializeLifetimeService() Obtains a lifetime service object to control the lifetime policy for this instance. Inherited from MarshalByRefObject.
IsGranted(IPermissionRequest, IPermissionPolicyRole) Checks whether the specified role allows a user to make an operation.
IsGranted(IPermissionRequest, IPermissionPolicyUser) Checks whether the specified operation is allowed for the target user.
IsGranted(IPermissionRequest) Checks whether the specified operation is allowed.
IsGranted(IList<IPermissionRequest>) Checks whether the specified operations are allowed.
IsSecuredAction(String)
IsSecuredType(Type, ITypesInfo) static Checks if the specified type can be secured.
Logoff() Logs the current user off.
Logon(IObjectSpace) Authenticates a user in the application. Inherited from SecurityStrategyBase.
Logon(Object) Intended for internal use and should not be called from your code. Use another overload of this method that takes an IObjectSpace parameter instead.
MemberwiseClone() protected Creates a shallow copy of the current Object. Inherited from Object.
MemberwiseClone(Boolean) protected Creates a shallow copy of the current MarshalByRefObject object. Inherited from MarshalByRefObject.
ReferenceEquals(Object, Object) static Determines whether the specified Object instances are the same instance. Inherited from Object.
ToString() Returns a String containing the name of the Component, if any. This method should not be overridden. Inherited from Component.

Events

Name Description
Changed For internal use. Inherited from SecurityStrategyBase.
CustomizeRequestProcessors Occurs after Permission Request Processors are registered.
Disposed Occurs when the component is disposed by a call to the Dispose() method. Inherited from Component.
LoggingOff For internal use. Inherited from SecurityStrategyBase.
LoggingOn For internal use. Inherited from SecurityStrategyBase.
See Also