principal
An identity that can be authenticated by the Diffusion™ server
or by a client.
A principal can be a user or client. After a principal has been authenticated, it can be assigned roles that enable it to access actions or resources.