locked
Web api and token configuration RRS feed

  • Question

  • User264732274 posted

    suppose i have web api project where request will come from client but i like to know how could i authenticate user ?

    in asp.net we provide user id and pwd and then asp.net validate it against db and return a auth cookie but i heard web api use token.

    so tell me what i need to configure as a result web api return token to user after validate. what to do as a result token should pass every time for all next subsequent call.

    what is the concept of access token and refresh token.........how to implement it by code.

    if https is not used then anyone can steal token and use it from their end.....so how to provide security for web api.

    please discuss all points. thanks

    Monday, September 7, 2015 7:15 AM

Answers

All replies