i have two questions
1)user is already logged in if i want to restrict access of a specific user i use authorize attrbute on actionresult but if user is logged in what is the use of it.we can use User.IsInRole to restrict.this creates unusual login attempt.how to handle this
2)if my application is a multiuser appliction i want to restrict access some users to some pages but login page should not display to them as they are already logged in.
i guess both questions hve same meaning