.NET Framework role-based security is a key technology that is used to authorize a user’s actions in an application. Roles are often used to enforce business rules. For example, a financial application might allow only managers to perform monetary transfers that exceed a particular threshold.
Role-based security consists of the following elements:
Principals and identities
Role-based security checks
Role-based security is implemented with Principal and Identity objects. The identity and role membership of the authenticated caller is exposed through a Principal object, which is attached to the current Web request. You can retrieve the object by using ...