# -
# Grant access right to a group, perform access check for a user in that group, and obtain the ACL
# -
# Initialize a new ACL
Exec InitNewACL

# Add rayland\actestgroup2 to the local access request list
Set TrusteeName Rayland\actestgroup1
ToggleAccessPerm COM_RIGHTS_EXECUTE
Set TrusteeType TRUSTEE_IS_GROUP 
AddTrustee AccessRequestList

# Call GrantAccessRights
Exec GrantAccessRights

# Change the client's security context
SwitchClientCtx
actest1
rayland

# Reset the current trustee
Set TrusteeName Rayland\actest1
Set TrusteeType TRUSTEE_IS_USER
AddTrustee AccessRequestList

# Call IsAccessPermitted
Exec IsAccessPermitted

# Call IsAccessPermitted again to see if the caching mechanism works
Exec IsAccessPermitted

# Call GetExplicitAccessRights
Exec GetExplicitAccessRights

# Shut down the server
Quit