Re: GenericPrincipal

The genericprincipal is there to use for when you don't want to use
forms or windows authtentication. I want to create a single
genericprincipal object for windows authtenticated users within our
domain and for users comming in through our internet.

Once I have a principal object I can then add roles to the principal
object and use that to authorize my users through the rest of the
application. I only want to get their roles once at the start of their
session. Then use that for authorization throughout the application

Like this
If my.user.isinrole("administrator") then
.....
....
end if

If i use forms authentication for those comming in from the outside I
can use the code above but for users within our domain i would need to
write something like this to handle nt security groups

If my.user.isinrole("OurDomain\ag myapplication administratorsgourp")
then
....
,,
end if

The code shouldn't really care that my administator is external or
internal ..once authenticated the authorization should be the same.

So i want to convert both forms and windows into generic. Then use
the one type of syntax throughout. My issue is that the principal
object should apply for the entire users session. It makes no sense
to have to authorize and authenticate some one on each request. Just
once per session is required.

.