protected override bool AuthorizeCore(HttpContextBase httpContext) { bool authorize = false; using (oversiiEntities db = new oversiiEntities()) { UserRepository UM = new UserRepository(); foreach (var roles in userAssignedRoles) { authorize = UM.IsUserInRole(httpContext.User.Identity.Name, roles); if (authorize) return authorize; } } return authorize; }