W
Warm.Beer
Hi there,
We are upgrading an ASP classic application to ASP.NET 2.0, and
currently have a permission set of about 200 distict permissions.
I am thinking of using the Membership provider to map each permission
to a named Role, so we can explicitly or declaritively check for a
given permission within the relevant business logic code.
My question then, is 200 Roles attached to a Principal object going to
be too much of an overhead, especially if we are storing the role list
in an encrypted cookie?
What other alternatives should we look at, e.g. store the Roles list in
cache with the SessionId as a lookup key (our total number of users is
small, i.e. <1000).
Thanks in advance,
Brett
We are upgrading an ASP classic application to ASP.NET 2.0, and
currently have a permission set of about 200 distict permissions.
I am thinking of using the Membership provider to map each permission
to a named Role, so we can explicitly or declaritively check for a
given permission within the relevant business logic code.
My question then, is 200 Roles attached to a Principal object going to
be too much of an overhead, especially if we are storing the role list
in an encrypted cookie?
What other alternatives should we look at, e.g. store the Roles list in
cache with the SessionId as a lookup key (our total number of users is
small, i.e. <1000).
Thanks in advance,
Brett