Pete B [mailto:[EMAIL PROTECTED]] wrote:
> I'll be using Forms Authentication, so I think I see what your saying. > > I can change the Thread::CurrentPrincipal in, say, the > FormsAuthentication_OnAuthenticate event. Then my user could > be accessed from my windows service or from ASP.NET by > checking Thread::CurrentPrincipal, and I'd be good to go ( > I'll do my homework on SecurityAttribute and the > ControlPrincipal flag). > > This makes sense, right? You got it. If anyone else has any opinions on the matter I'd love to hear them too so please chime in. Keith Brown are you listening? ;) From my understanding on the .NET and ASP.NET security models, this is the best I can think of to avoid having to sniff the context and pull the principal in different ways. HTH, Drew You can read messages from the DOTNET archive, unsubscribe from DOTNET, or subscribe to other DevelopMentor lists at http://discuss.develop.com.
