What are some other ways, easier?
Steven Sanderson — Pro ASP.NET MVC 2
Steven Sanderson — Pro ASP.NET MVC 3
In the section where they make the admin area ("Securing the Administration Features"). There are only a few pages of the description, the code can be copied. The meaning is something like this:
\r <forms loginUrl="~/Account/LogOn" timeout="2880">
\r <credentials passwordFormat="Clear">
\r <user name="admin" password="secret" />
\r* This source code was highlighted with Source Code Highlighter.
Username and password are stored in the Web.config (password of course, should be stored in a hash, e.g., SHA1). Then you can use [Authorize] and everything will work for multiple users — I think optimally, no databases.