What is really a Principal in .NET?
A principal is an abstract thing that encapsulates an identity and a role, and thus it's the security context under which the code is running. This can be a Windows identity (i.e. a Windows or Active Directory user account) and a Windows "role", a.k.a. "group", or it can be an identity/role that is independent of Windows users and roles but is still available across multiple applications. Thirdly, it can also be a custom notion of an identity and role that is defined solely within your application.
The security context is not a static thing; it can be changed by adjusting the principal's role and therefore affording greater or fewer privileges to the identity (user) and the application running under the security context.
Here is a good place to start for learning more about this: https://msdn.microsoft.com/en-us/library/z164t8hs.aspx
The description says it, the principal is the identity plus roles.
It is actually something as simple as
public interface IPrincipal
{
IIdentity Identity { get; }
bool IsInRole( string role );
}
The idea to abstract it was very important. Although there were originally only few implementations (including WindowsPrincipal
, RolePrincipal
and GenericPrincipal
) later other implementatiins were introduced (the ClaimsPrincipal
for example). And much of the legacy code can be seamlessly upgraded to new implementations, with all benefits but without changing anything else.
When authorizing access to a resource or the ability to run some code, it is not sufficient merely to know which user is authorizing the action, but under what role they are authorizing it.
Think of this as being roughly equivalent to when you elevate a shell: the shell is now running under a different principal (with more privileges), even though the identity of the principal is still the same (your user account).
The IIdentity
type is focused around issues of authentication, i.e. establishing that an identity known to the system actually belongs to an agent that wants to act under that identity. This is a necessary prerequisite for authorizing anything, but is not the whole story.