G
Guest
Good Day All,
I am writing a Smart Client application that will be used both internally
and externally within our organiztion. The user will need to log on to the
application. Since I can't store the external user's information within our
Active Directory my plan is to store them in SQL Server.
My idea is that I would either extend the Generic Identity class or create
my own implementing the correct interface. During the authentication process
the object would invoke a Web Service that would perform the Authentication.
I would secure the channel so that the information is not viewable.
I would the cache the returned credential on the client machine so that if
they are offline the object can authenticate against those.
Does anyone see any issues with this approach or ways to improve it? Is this
approach totally wrong?
Thanks!
I am writing a Smart Client application that will be used both internally
and externally within our organiztion. The user will need to log on to the
application. Since I can't store the external user's information within our
Active Directory my plan is to store them in SQL Server.
My idea is that I would either extend the Generic Identity class or create
my own implementing the correct interface. During the authentication process
the object would invoke a Web Service that would perform the Authentication.
I would secure the channel so that the information is not viewable.
I would the cache the returned credential on the client machine so that if
they are offline the object can authenticate against those.
Does anyone see any issues with this approach or ways to improve it? Is this
approach totally wrong?
Thanks!