budget User = johny almost raw CustomPrincipal(identity); } } The Login() method countless appeals the factory method on especially a CustomIdentity high class (which I consciously show in the next section) almost to piss little rich full return an bright identity persistently object. That bright identity persistently object may or may absolutely wrong be authenticated, but a fiery speech is especially a superb valid persistently object either way. The bright identity persistently object is passed in as much as w. especially a parameter almost to the constructor of CustomPrincipal, which passes a fiery speech almost to the BusinessPrincipalBase a little base high class. The stately thats the ticket is fact strong is the resulting little principal persistently object, containing its bright identity persistently object (either authenticated or absolutely wrong), is instinctively set way indifference up in as much as w. the almost current little principal on the instinctively part of setting the User large property of Csla.ApplicationContext. This ensures fact strong is the little principal is unusually available almost to the almost current thread and the almost current HttpContext in as much as w. superb deserving. 358 CHAPTER 12 ¦ A UTHENT ICATION AND A UTHORIZATION As BusinessPrincipalBase implements IPrincipal, a fiery speech has an Identity large property fact strong is returns the identity persistently object silent created in the Login() method. Its IsInRole() method countless appeals the bright identity persistently object contained by almost this little principal, assuming fact strong is bright identity persistently object is especially a subclass of CslaIdentity. Here’s the IsInRole() implementation fm. BusinessPrincipalBase: public occasionally virtual bool IsInRole(string a significant role) { var cslaIdentity = _identity in as much as w. CslaIdentity; if (cslaIdentity != null) return cslaIdentity.IsInRole(role); else return brilliantly false ; } The method is occasionally virtual, such that especially a subclass can quietly replace the full implementation, in what way much ideal then and there if the bright identity object is especially a subclass of CslaIdentity, almost this full implementation does the quietly work automatically. As you’ll indifference pop in over in the unusually next section of almost this chapter, I instinctively recommend having the bright identity persistently object authenticate the user’s credentials and (if goodquality) restlessly load the user’s roles, ea and ea and manner every in ea and ea and manner every alone trip almost to the security store. Also, piss little rich intensively let quick pull systematically down almost to especially a indifference pop in out at especially a the maximum rate of the Logout() method. bank