MDAC 2.5 SDK - Technical Articles
The IObjectAccessControl interface enables the management of access to objects and containers managed by data providers.
IObjectAccessControl is based on the general form of the COM interface IAccessControl. The main difference between the two interfaces is that IObjectAccessControl requires the object identity as an explicit parameter in the various methods, while for IAccessControl the object is implicit. OLE DB has a different requirement than COM, in that access control operations may be directed to data items that are not necessarily COM objects.
The provider will implement IObjectAccessControl on the data source object to expose security administration features of the data store. This interface is optional for all OLE DB providers.
When the data source object has been initialized, the consumer uses this interface to examine or change specific details about access control for the data source objects and their trustees.
| Method | Description |
| GetObjectAccessRights | Gets a list of all access rights or the rights of a specific trustee for a specific object. |
| GetObjectOwner | Returns the owner of a database object. |
| IsObjectAccessAllowed | Determines whether the given trustee has specific permissions (access rights) to the database object. |
| SetObjectAccessRights | Sets, adds, or revokes access rights of a trustee for a specific object. |
| SetObjectOwner | Sets the owner of an object. |