J
Jaime
Hi all,
I'm a bit confused on this one. I'm implementing a role-base authentication
schema and from what I've read on different articles, there seems to be two
approaches to this. First on is add code to the Global.asax
Application_AuthenticateRequest to create a GenericPrincipal with the user's
roles simply doing something like HttpContext.Current.User = new
GenericPrincipal( userName, roles ).
Now the second one is creating a FormAuthenticationTicket with all the
parameters for the cookie in the LoginButton_Click member and add the roles
as the userData.
Now my questions is what are the differences between these approaches? ups?
downs?
Thanks
I'm a bit confused on this one. I'm implementing a role-base authentication
schema and from what I've read on different articles, there seems to be two
approaches to this. First on is add code to the Global.asax
Application_AuthenticateRequest to create a GenericPrincipal with the user's
roles simply doing something like HttpContext.Current.User = new
GenericPrincipal( userName, roles ).
Now the second one is creating a FormAuthenticationTicket with all the
parameters for the cookie in the LoginButton_Click member and add the roles
as the userData.
Now my questions is what are the differences between these approaches? ups?
downs?
Thanks