ePass1000 C/C++ API Reference Manual Version 2.0

EPAS_ACCESSINFO

The EPAS_ACCESSINFO structure is used to get and set the Global Access Control of the token.

typedef struct{
    unsigned char ucMaxPinRetries;      // maximum USER PIN authentication failures
    unsigned char ucCurPinCounter;      // currently allowed USER PIN authentication failures
    unsigned char ucFlags;              // reserved, MUST be zero
    unsigned char ucReserved1;          // reserved, MUST be zero
    unsigned char ucCreateAccess;       // dir(or file)'s creation rights
    unsigned char ucDeleteAccess;       // dir(or file)'s deletion rights
    unsigned char ucReserved2[10];      // reserved, MUST be zero
}EPAS_ACCESSINFO,*PEPAS_ACCESSINFO;

Member

ucMaxPinRetries
This member defines the allowed times of USER PIN verification failure.
ucCurPinCounter
This member defines the remain allowed USER PIN authentication failures count. Upon each USER PIN authentication failure, this value is decremented. When this value reaches zero, USER PIN verification will be locked until the ePass1000 internal USER PIN counter register is reset. To unlock the USER PIN, use the epas_ChangeCode function. The value of the counter is reset to the value defined by ucMaxPinRetries.
ucFlags
This member is reserved for future use and must be zero.
ucReserved1
This member is reserved for future use and must be zero.
ucCreateAccess
This member defined the file and directory create access privilege for the file system.. It can be one of the following values:
Attribute Description
EPAS_ACCESS_ANYONE Create files or directories are always allowed. Ignore the Security State of the device.
EPAS_ACCESS_USER Create files or directories are permitted in the User State or the SO State.
EPAS_ACCESS_OFFICER Create file or directories are permitted in the SO State.
EPAS_ACCESS_NONE Create files or directories are forbidden. Ignore the Security State of the device.
ucDeleteAccess
This member defined the file and directory delete access privilege for the file system. It can be one of the following values:
Attribute Description
EPAS_ACCESS_ANYONE Delete files or directories are always allowed. Ignore the Security State of the device.
EPAS_ACCESS_USER Delete files or directories are permitted in the User State or the SO State.
EPAS_ACCESS_OFFICER Delete file or directories are permitted in the SO State.
EPAS_ACCESS_NONE Delete files or directories are forbidden. Ignore the Security State of the device.
ucReserved2
This member is reserved for future use and must be zero.

Remarks

SO PIN authorization implies USER PIN authorization.

Modification of the Global Access Control requires SO PIN authorization.

To retrieve the Global Access Control use the epas_GetProperty function. To set the Global Access Control, use the epas_SetProperty function. To unlock the USER PIN, use the epas_ChangeCode function.

Application should zero initialize this structure before invoke any functions.

See Also

EPAS_VERSIONINFO, EPAS_SYSINFO, EPAS_FILEINFO, EPAS_DIRINFO