public class AuthorizationPrivilegeFilter : ActionFilterAttribute { public override void OnActionExecuting(ActionExecutingContext filterContext) { var req = filterContext.HttpContext.Request; string Token = Convert.ToString(req.RequestContext.RouteData.Values["id"]); var auth = req.Headers["Authorization"]; var deviceid = req.Headers["DeviceId"]; } } i am using session for strong some data