Re: ASP.NET 2.0 Authentication pattern

From: Brock Allen (ballen_at_NOSPAMdevelop.com)
Date: 06/09/05

• Next message: Steve Kallal: "Re: Use IsInRole method with Domain and Username, but without pass"
• Previous message: Joe Kaplan \(MVP - ADSI\): "Re: Use IsInRole method with Domain and Username, but without password"
• In reply to: Paps: "ASP.NET 2.0 Authentication pattern"
• Next in thread: Dominick Baier [DevelopMentor]: "Re: ASP.NET 2.0 Authentication pattern"
• Reply: Dominick Baier [DevelopMentor]: "Re: ASP.NET 2.0 Authentication pattern"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Wed, 08 Jun 2005 16:07:08 -0700

> Usually my authentication pattern in 1.x was:
> ...
> - create custom IIdentity for additional user information

This is where the thinking is different in ASP.NET 2.0 (at least by default).
You need to think about authentication as a seperate "silo" of functionality
than profile data for your users. The provider architecture handles these
discrete areas and makes explicit boundaries for the functionality. Membership
Providers are for managing authentication information which is different
than the Profile Provider which is geared for user data which is different
than the Role Provider which manages role mappings. Also, for each of these
they may actually store their respective data in entirely different data
stores (SqlServer, vs. AD, vs. an XML document vs. whatever). What they all
have in common is User.Identity.Name.

So where you used to think about all of these various bits of data jammed
into one big table, now the model leans toward seperating each one of these
areas out into its own provider and backing data store. This, while different
and possibly a hassle, provides the most flexibility. Flexibility comes at
a cost.

-Brock
DevelopMentor
http://staff.develop.com/ballen

---

• Next message: Steve Kallal: "Re: Use IsInRole method with Domain and Username, but without pass"
• Previous message: Joe Kaplan \(MVP - ADSI\): "Re: Use IsInRole method with Domain and Username, but without password"
• In reply to: Paps: "ASP.NET 2.0 Authentication pattern"
• Next in thread: Dominick Baier [DevelopMentor]: "Re: ASP.NET 2.0 Authentication pattern"
• Reply: Dominick Baier [DevelopMentor]: "Re: ASP.NET 2.0 Authentication pattern"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Web Site Configuration for remote users ... My site uses Accounts, Roles etc and I'd like to rip out my custom ... A proper method to distribute this to my provider (a .net hosting ... Authentication ... Also, on a brand new WS2003 machine, the Config site is there, but ... (microsoft.public.dotnet.framework.aspnet.security) Re: Defining Groups with AD users ... For ASP.NET authentication and role based authorization, ... you can configure the membership to use AD ... membership provider and Rolemanager to use SQL server provider. ... Microsoft MSDN Online Support Lead ... (microsoft.public.dotnet.framework.aspnet.security) Re: [fw-wiz] Radius access from provider to internal MS ISA Server ... > Our network-engineers are planing a vpn. ... > a selected local internet provider. ... > without an additional radiusproxy in our dmz. ... I prefer to keep internal and external authentication realms different, ... (Firewall-Wizards) Re: Custom IIdentity class - how to set it? ... am i correct then in thinking that this event will be raised multiple times ... So then the user information would be ... >> GenericIdentity) to contain lots of extra useful information to be ... >> to be controlling all of the authentication using custom forms ... (microsoft.public.dotnet.framework.aspnet) Re: Defining Groups with AD users ... For ASP.NET authentication and role based authorization, ... you can configure the membership to use AD ... membership provider and Rolemanager to use SQL server provider. ... Microsoft MSDN Online Support Lead ... (microsoft.public.dotnet.framework.aspnet.security)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(17)