Role-based access control (RBAC) vs. Claims-based access control (CBAC) in ASP.NET MVC

I will try to explain the Role/Claim/Permission-based Access Control concept in layman’s terms. The code snippet I will present here, are pseudocode, may or may not compile. What are Roles? Roles can be thought of as Job Titles. Like “Sales Manager”, “Marketing Manager”, “Admin” etc. What are the claims? Claims can be broader than a … Read more