NGWS SDK Documentation  

This is preliminary documentation and subject to change.
To comment on this topic, please send us email at ngwssdk@microsoft.com. Thanks!

Writing Security Configuration Files

For this release, a security configuration file can be created that can set security policy machine wide. This file is an XML file that contains several attributes that can control the security settings of the application. This section describes each of the attributes in the security configuration file.

Sample security.cfg

The following is a portion of the default security.cfg file that ships with the NGWS runtime. This file can be found in %windir%\system32.

<Configuration>
   <Security>
      <Policy>
         <PolicyLevel class="System.Security.Policy.PolicyLevel">
            <NamedPermissionSets>
               <PermissionSet class="System.Security.NamedPermissionSet">
                  <Permission class="System.Security.Permissions.ClientStoragePermission">
                     <Unrestricted/>
                     <VersionTag>XMLNotationV1</VersionTag>
                  </Permission>
                  <Permission class="System.Security.Permissions.EnvironmentPermission">
                     <Read>USERNAME TEMP</Read>
                     <VersionTag>XMLNotationV1</VersionTag>
                  </Permission>
                  <Permission class="System.Security.Permissions.ReflectionPermission">
                     <Unrestricted/>
                     <VersionTag>XMLNotationV1</VersionTag>
                  </Permission>
                  <Permission class="System.Security.Permissions.SecurityPermission">
                     <Assertion/>
                     <Execution/>
                     <VersionTag>XMLNotationV1</VersionTag>
                  </Permission>
                  <Permission class="System.Security.Permissions.UIPermission">
                     <Unrestricted/>
                     <VersionTag>XMLNotationV1</VersionTag>
                  </Permission>
                  <Name>LocalIntranet</Name>
               </PermissionSet>