Appendix . How To: Create GenericPrincipal Objects with Forms Authentication

Applications that use Forms authentication will often want to use the GenericPrincipal class (in conjunction with the FormsIdentity class), to create a non-Windows specific authorization scheme, independent of a Windows domain.

For example, an application may:

Use Forms authentication to obtain user credentials (user name and password).
Validate the supplied credentials against a data store; for example, a database or Microsoft® Active Directory® directory service.
Create GenericPrincipal and FormsIdentity objects based on values retrieved from the data store. These may include a user’s role membership details.
Use these objects to make authorization decisions.

This How To ...

Get Building Secure Microsoft® ASP.NET Applications now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Building Secure Microsoft® ASP.NET Applications by Microsoft Corporation

Appendix . How To: Create GenericPrincipal Objects with Forms Authentication

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly