Platform SDK: Exchange 2000 Server

Security in a Sink

[This is preliminary documentation and subject to change.]

Event sinks run under the security context of the Store Event User (default user). Synchronous events can obtain an OLE DB session object from the IExStoreEventInfo interface passed to the method handling the event in your sink. This will provide a session logged on as the user who caused the event to occur. This means that the event sink will have access to the event item, the mailbox or public folder in which the event occurred, and any items in the MDB in which the event occurred for which the logon has access. Note that logons exist within sessions and therefore cannot have access to more than one store. Therefore a synchronous sink handling an item in a public folder will not have access to the mailbox of the user who caused the event.

OnTimer and OnSystemMessage events have neither context nor scope. This means that these events are not granted access to any mailbox or event item.

See the following subtopics for changing your security context:

Impersonation Within a Sink

COM+ Applications