Skip to main content
BuyLog In
XAF: Cross-Platform .NET App UI & Web API
Search in…
Docs > Concepts > Security System > Security Permissions Caching
A newer version of this page is available. .
All docs
V19.2
.NET Framework 4.5.2+
eXpressApp Framework
Fundamentals
Getting Started
Concepts
Application Solution Components
Business Model Design
Application Model
UI Construction
Controllers and Actions
Data Manipulation and Business Logic
Security System
Passwords in the Security System
Client-Side Security (2-Tier Architecture)
Authentication
Predefined Users, Roles and Permissions
Middle Tier Security - WCF Service
Run the Application Server as a Windows Service
Security Permissions Caching
Permissions for Associated Objects
Merging of Permissions Defined in Different Roles
Permission Policies
Customize the Logon Window
Localization
System Module
Extra Modules
Debugging, Testing and Error Handling
Filtering
Application Life Cycle
Design-Time Features
Deployment
Task-Based Help
Frequently Asked Questions (FAQ)
API Reference
Download CHM

Security Permissions Caching

  • 2 minutes to read

The Security System uses Security Adapters to process and cache security permission requests. Each Security Adapter has the corresponding Security Adapter Provider used internally to register the Adapter. The following assemblies contain platform-dependent Adapters and their Providers.

  • XPO - DevExpress.ExpressApp.Security.Xpo.v19.2.dll
  • Entity Framework - DevExpress.ExpressApp.Security.EF.v19.2.dll

These assemblies provides you with the RegisterXPOAdapterProviders and RegisterEFAdapterProviders methods that extend the SecurityStrategy class. Use these methods to enable/disable Security Adapters instead of accessing them directly.

This topic describes how to determine a way an application with SecurityStrategyComplex caches permissions.

Enable the Security Adapter

The Solution Wizard adds the following platform-dependent code to enable the Security Adapter in new XAF projects.

  • eXpress Persistent Objects

    using DevExpress.ExpressApp.Security;
// ...
security.RegisterXPOAdapterProviders();

  • Entity Framework

    using DevExpress.ExpressApp.Security;
// ...
security.RegisterEFAdapterProviders();

This code is added to the following places depending on the application’s platform.

Platform

File

Place

WinForms

Program.cs (Program.vb)

the application’s Main method, before the WinApplication.Start call

ASP.NET

Global.asax.cs (Global.asax.vb)

the application’s Application_Start method, before the WebApplication.Start call

Mobile

MobileApplication.cs (MobileApplication.vb)

the application’s constructor

Set the Permissions Reload Mode

You can specify how Security Adapters reload security permissions. To do this, set the SecurityStrategyComplex‘s PermissionsReloadMode property to the PermissionsReloadMode enumeration value. The default mode is NoCache. In this mode, the cache is created for each Session (in XPO) and DBContext (in EF). Switch to the CacheOnFirstAccess mode to load and cache permissions when secured data is accessed for the first time and use these permissions until a user is logged off. This mode allows you to reduce the number of database requests when working with secured data.