In claim based authentication as the name indicates, there is a use of claims, which is a sort of identity of a user, claim can be a username, password, email etc. In claim based authentication we get a default implementation of single sign on feature by which we can access application by getting an authentication from an issuer, and providing the credentials once in the beginning.
In role based authentication we have roles which specify that which user is allowed to access which application.Some times with single sign we implement the role based authentication by which if a user provides the credential in the beginning and tries to access an application which he is not authenticated, then he will be barred from doing so.
与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…