NGWS SDK Documentation  

This is preliminary documentation and subject to change.
To comment on this topic, please send us email at ngwssdk@microsoft.com. Thanks!

Requesting permissions

The most basic use of permissions is to simply request the permissions necessary to run the code. For a typical application this means requesting permissions for all protected resources or operations possible during use. Many applications will simply request the default permissions for the Internet or for the local intranet – and program within that model of security limitations – rather than even need to know about individual permissions.

Of course security policy will decide if the code actually gets the requested permissions granted or not. Applications request (a) the minimum set of permissions they need, (b) additional permissions to be optionally granted per policy, (c) permissions that never should be granted. If the code is allowed to run it will be guaranteed to have the minimum permissions, possibly some of the optional permissions, and never any of the refused permissions.