Claim based authorization checks are declarative - the developer embeds them within their code, against a controller or an action 192.168.l.254 within a controller, specifying claims which the current user must possess, and optionally the value the claim must hold to access the requested resource.Claims are a set of information stored in a key – value pair form. Claims are used to store information about user like full name, phone number, email address.... and the most important thing is that you can use claims as a replacement of roles, that you can transfer the roles to be a claim for a user