i am trying control the access to views based on users privilege levels (there are no roles, only privilege levels for CRUD operation levels assigned to users from my database)
i do not know how to approach this matter except of [Authorize(Roles = "Admin")] but this does not work.
public ActionResult Contact()
{
ViewBag.Message = "Your contact page.";
return View();
}
public ActionResult Login()
{
ViewBag.Message = "Your Login page.";
return View();
}
[Authorize(Roles = "Admin")]
public ActionResult AuditReport()
{
return View();
}
