Web Server

Securing Web APIs in ASP.NET Core


3:00pm - 4:15pm

Level: Intermediate

Brock Allen

Application Security Architect

Traditional security for web applications involves cookies, but web APIs have a fundamentally different security model. In fact, there are security vulnerabilities when using cookies for web APIs. So what's the solution? Token-based authentication with OAuth2. Come to this session to learn about the issues, how to get and use tokens, and how ASP.NET Core helps protect your web APIs.

You will learn:

  • How to protect web APIs with token-based security
  • About the benefits of OAuth2
  • How to use middleware to protect web APIs