What is the best method for user authorisation/authentication in ASP.NET MVC?
I see there are really two approaches:
- Use the built-in ASP.NET authorisation system.
- Use a custom system with my own User, Permission, UserGroup tables etc.
I'd prefer the second option, because User is part of my domain model (and I have zero experience with ASP.NET's built-in stuff), but I'd really like to hear what people have been doing in this area.