The primary design goals for the Security Application Block were to make an application more flexible by allowing it to abstract itself away from needing to know where this information is maintained. Each type of data is accompanied by a respective provider that handles the most common tasks associated with that data. For example, AuthenticationProviders exist that let you write an application that determines whether a user can be authenticated without the need for you to know where the authentication information is stored or how the determination of authentication is performed. At the same time as providing this flexibility, the Security Application Block is designed to be as simple as possiblethe only method that you need to learn to authenticate a user is Authenticate. By subscribing to the Provider pattern, yet another benefit is realized. An application is not tied to any specific user store for accessing the necessary information. If user information is moved from one store to another, you don't need to change any application code; you just have to modify the configuration for that application. Relationship to the Authorization and Profile Application BlockMicrosoft released a subset of the features of the Security Application Block as the Authorization and Profile Application Block in January 2004. There are some important differences to keep in mind if you need to migrate from the previous application block to Enterprise Library's Security Application Block.
|