How is the AuthorizationStoreRoleProvider different from Authorization Manager APIs?

From Guidance Share

Revision as of 05:45, 16 October 2006; Admin (Talk | contribs)
(diff) ←Older revision | Current revision | Newer revision→ (diff)
Jump to: navigation, search

J.D. Meier, Prashant Bansode, Alex Mackman

Answer

AuthorizationStoreRoleProvider only exposes a subset of Authorization Manager's (AzMan) functionality. For example, you cannot use Authorization Manager's authorization business logic, such as tasks and operations. You can use AuthorizationStoreRoleProvider only for role membership checks. The benefit of using AuthorizationStoreRoleProvider is that it provides a consistent set of APIs for role authorization. Also at development time any role store can be used and then in production it can be deployed with an AzMan policy store without affecting the code. If you need to use the business logic capability of AzMan you will need to use the Authorization Manager APIs directly through p/invoke.

More Information

For more information on using Authorization Manager, see “How To: Use Authorization Manager (AzMan) in ASP.NET 2.0” at http://msdn.microsoft.com/library/en-us/dnpag2/html/PAGHT000019.asp

Personal tools