A persistence store, also known as the Instance Store, is a SQL Server database repository that Windows Server AppFabric uses to preserve workflow instances, enabling durable/long running Workflow scenarios in .NET 4.0. In order to secure Windows Server AppFabric deployment, it is paramount to secure its persistence store as it contains business critical workflow information.
Note
Although Windows Server AppFabric allows the use of custom persistence providers (see Chapter 5, More Windows Server AppFabric Hosting Features for more details) this recipe will solely focus on the default SQL Server implementation of a persistence provider.
Windows Server AppFabric relies on Microsoft SQL Server's security model to secure the persistence database. Implementation-wise access to the persistence store is secured via the following five SQL Server roles:
InstanceStoreUsers
InstanceStoreObservers
WorkflowAdministrators
WorkflowActivationUsers
WorkflowManagementServiceUsers...