O'Reilly logo

C#® Developer's Guide to ASP.NET, XML, and ADO.NET by Chris Kinsman, Jeffrey P. McManus

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Impersonation

Impersonation is the capability for the ASP.NET process to run in the context of a particular user identity. It is said to “impersonate” the logged-in user and is capable of using the logged-in user's identity to act on the user's behalf.

By default, Impersonation is not enabled in ASP.NET. You might initially doubt this because if you look at the User.Identity.Name property with Windows authentication enabled, it will be set to the logged-in user. This, however, is not the identity that the ASP.NET application is using to access resources. The identity that is shown here is used during URL authorization and file authorization, but will not be used as the identity when calling other base class functionality.

Determining Identity ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required