Security Call Context Information

Role-based security is built on a general mechanism that enables you to retrieve security information regarding all upstream callers in the chain of calls to your component. This information is available only when you have component-level role checking enabled. For details about how to set component-level security, see Setting a Security Level for Access Checks.

You can use the ISecurityCallContext interface to access security call context information programmatically. For a description, see Programmatic Component Security.

Security call context is passed along every time a security boundary is crossed. For calls between components within an application, which reside within the same security boundary, no call context information is passed. For calls between processes or between applications within a process, call context information flows along.

This facility is particularly useful if you wish to do detailed auditing and logging. You can retrieve and record security information for every upstream caller.

Designing Roles Effectively

Security Boundaries

Security Context Property

Using Roles for Client Authorization