Claims-based Authorization in Enterprise Frameworks
In .Net development, evaluating AD Group membership has been a conventional approach to enforcing authorization. However, as enterprise applications scale towards sharing logic in reusable frameworks and leveraging federated identity, the AD / role-based approach does not always scale well along with it. As an alternative, we will look at how claims can be used to provide a more granular authorization model that aligns more closer with APIs than with organizational charts while at the same time providing a pathway to cross platform integration.
Mark Bostleman is a software developer based in Toledo, Ohio and is currently an application architect for the Manufacturing Execution Systems team at First Solar, a global leader in solar power solutions. His primary focus has been on Microsoft development tools and technologies since the early 1990s.