Identity is the new and better answer to the Membership Provider in the ASP.NET space. A coworker was telling me about claims today. He said they are kind of nebulous and thus they provide lots of room for you to roll your own antipattern. The half of an email address after the @ could be a claim and so could a date or a geographic region as defined by IP sniffing. He suggested that in the new model one now longer logs in and wanders that app as a user but instead on the other side of the log in a bag of claims is collected from differing sources to stand in for a user as an identity. There could be separate upfront lookups for roles and for permissions which are also types of claims and which would be used to decide, for example, if one can see what's at a particular MVC route or if one gets the boot. Some links:
No comments:
Post a Comment