Authorization is possible only when the user is authenticated with proper login credentials. Authorization determines whether an identity should be granted access to part of the website or a resource. Authorization is divided in to two ways,
1. File authorization
2. URL authorization
1. File authorization: File authorization determines whether a user should have access to the file. File authorization is performed by the FileAuthorizationModule.
2. URL authorization: URL authorization can be used to allow or deny access to different parts of an application for specific users or roles. URL authorization is performed by the UrlAuthorizationModule.