*/
    int GROUP_SECURITY_INFO = 0x2;

    /**
     * Flag indicating that discretionary access control list (DACL) information is requested or being set.
     */
    int DACL_SECURITY_INFO = 0x4;

    /**
     * Flag indicating that system access control list (SACL) information is requested or being set.
     */
    int SACL_SECURITY_INFO = 0x8;

    /**

     *
     * @param server the server name to connect to
     * @param access the desired access rights
     * @param policyHandle the policy handle to be populated
     */
    public MsrpcLsarOpenPolicy2(final String server, final int access, final LsaPolicyHandle policyHandle) {
        super(server, new lsarpc.LsarObjectAttributes(), access, policyHandle);
        object_attributes.length = 24;

    // flags is NOT the same as flags member

    SmbComOpenAndX(final String fileName, final int access, final int flags, final ServerMessageBlock andx) {
        super(andx);
        this.path = fileName;
        command = SMB_COM_OPEN_ANDX;

        desiredAccess = access & 0x3;
        if (desiredAccess == 0x3) {
            desiredAccess = 0x2; /* Mmm, I thought 0x03 was RDWR */
        }

### List of Amazon S3 Bucket APIs not supported on MinIO

- BucketACL (Use [bucket policies](https://docs.min.io/community/minio-object-store/administration/identity-access-management/policy-based-access-control.html) instead)
- BucketCORS (CORS enabled by default on all buckets for all HTTP verbs, you can optionally restrict the CORS domains)

    /**
     * Gets the last modified time.
     *
     * @return the last modified time in milliseconds since epoch
     */
    long lastModified();

    /**
     * Gets the last access time.
     *
     * @return the last access time in milliseconds since epoch
     */
    long lastAccess();

    /**
     * Gets the file size.
     *
     * @return the file size in bytes
     */
    long length();

    }

    @Test
    @DisplayName("Test desired access setter")
    void testSetDesiredAccess() {
        request = new Smb2CreateRequest(mockConfig, "test.txt");

        int access = 0x12345678;
        request.setDesiredAccess(access);

        byte[] buffer = new byte[1024];
        request.writeBytesWireFormat(buffer, 0);

        // Read desired access from buffer (offset 24-27 after 8 bytes reserved)

    @Test
    public void test_corsHeaderConstants() {
        assertEquals("Access-Control-Allow-Origin", CorsHandler.ACCESS_CONTROL_ALLOW_ORIGIN);
        assertEquals("Access-Control-Allow-Headers", CorsHandler.ACCESS_CONTROL_ALLOW_HEADERS);
        assertEquals("Access-Control-Allow-Methods", CorsHandler.ACCESS_CONTROL_ALLOW_METHODS);
        assertEquals("Access-Control-Allow-Private-Network", CorsHandler.ACCESS_CONTROL_ALLOW_PRIVATE_NETWORK);

     * @param policyHandle the policy handle for this domain
     * @param access the desired access rights
     * @param sid the security identifier of the domain
     * @throws IOException if an I/O error occurs during handle creation
     */
    public SamrDomainHandle(final DcerpcHandle handle, final SamrPolicyHandle policyHandle, final int access, final rpc.sid_t sid)
            throws IOException {
        this.handle = handle;

	case syscall.O_WRONLY:
		access = syscall.GENERIC_WRITE
	case syscall.O_RDWR:
		fallthrough
	case syscall.O_RDWR | syscall.O_CREAT:
		fallthrough
	case syscall.O_WRONLY | syscall.O_CREAT:
		access = syscall.GENERIC_READ | syscall.GENERIC_WRITE
	case syscall.O_WRONLY | syscall.O_CREAT | syscall.O_APPEND:
		access = syscall.FILE_APPEND_DATA
	default:
		return nil, fmt.Errorf("Unsupported flag (%d)", flag)
	}

## API Request Parameters

### LDAPUsername

Is AD/LDAP username to login. Application must ask user for this value to successfully obtain rotating access credentials from AssumeRoleWithLDAPIdentity.