Traditional security for web applications involves cookies, but web APIs have a fundamentally different security model. In fact, there are security vulnerabilities when using cookies for web APIs. So what's the solution? Token-based authentication with OAuth2. Come to this session to learn about the issues, how to get and use tokens, and how ASP.NET Core helps protect your web APIs.
You will learn:
- How to protect web APIs with token-based security
- About the benefits of OAuth2
- How to use middleware to protect web APIs