HttpContext.Current.User.Principal vs WindowsIdentity.GetCurrent()

前端未结

关注

 1  1977

What\'s the difference in an asp.NET environment with Windows Authentication and Identity Impersonation turned on, between HttpContext.Current.User.Principal and WindowsIdentity

相关标签:

1条回答

一整个雨季

2021-02-08 05:53
According to this forum on WindowsIdentity.GetCurrent().Name vs. User.Identity.Name:
- User.Identity.Name represents the identity passed from IIS.
- WindowsIdentity.GetCurrent().Name is the identity under which the thread is running.
Depending on your app's authentication settings in IIS, they will return different values:
```
| Anonymous | Impersonate | User.Identity.Name | WindowsIndentiy.GetCurrent()  |
|-----------|-------------|--------------------|-------------------------------|
| Yes       | True        | Empty String       | IUSR_<machineName>            |
| Yes       | False       | Empty String       | NT Authority\Network Service  |
| No        | True        | domain\user        | domain\user                   |
| No        | False       | domain\user        | NT Authority\Network Service  |
```
Legend:
- Where domain\user will show up as:
  - domain\user for Active Directory
  - machineName\userName for local account
- Where NT Authority\Network Service will show up as:
  - NT Authority\Network Service for Windows Server or ASP.NET
  - machineName\ASPNET_WP for Windows XP
0 讨论(0)
发布评论:

提交评论
- 加载中...