Authorization filters are run before the other kinds of action filters. They ensure that action methods can be invoked only by authenticated and authorized users.
The “System.Web.Mvc.AuthorizeAttribute” is a default authorization filter included with ASP.NET MVC. It is used to restrict access by callers to an action method.
View original post 405 more words