protected void Application_AuthenticateRequest() { // check if the user management controller is the target controller for this request if (UserManagementController.IsTargeted()) { // Do any custom authorization checks here (e.g. Roles.IsUserInRole("Admin")) UserManagementController.IsRequestAuthorized = true; } }