What is the best Web API Authentication practice

0 votes

Which one is the best authentication approach for an Web API, considering that the data security is essential and the ASP.NET application runs on Azure?

Aug 6, 2018 in Azure by cloudie_crank
 • 1,610 points 563 views

1 answer to this question.

0 votes

Talking about the best practice, consider the below scenario:

When dealing with authentication and securing your Web API I recommend you follow the guidelines set by Dominick Baier. There might be no better expert on ASP.NET identity management in the world.

You can find his blog at http://leastprivilege.com/ and a great Web API Identity package at Nuget, Thinktecture.IdentityModel - http://nuget.org/packages/Thinktecture.IdentityModel As with most of the good open source libraries, since all the functionality is available for your for free, there is no need to reinvent the wheel.

This is a top-to-bottom identity & access control library for .NET 4.0/WIF and .NET 4.5 (including support for MVC and Web API).

If you want to learn more about securing your Web API, you should also watch this video http://vimeo.com/43603474 - Dominick's talk from NDC Oslo 2012.

answered Aug 7, 2018 by null_void
 • 3,220 points

Related Questions In Azure

0 votes
1 answer

How to add a body to a HttpWebRequest that is being used with the Azure Service management API?

The following code should help: byte[] buf = ...READ MORE

answered Apr 3, 2019 in Azure by Prerna
 • 1,960 points 2,050 views
0 votes
0 answers

What is the use of cloud service configuration file (.cscfg) in azure?

What is the use of cloud service ...READ MORE

Sep 30, 2019 in Azure by Pratibha
 • 3,690 points 928 views
0 votes
1 answer

What is the limit on the number of integration runtimes?

There is no hard limit on the ...READ MORE

answered Jan 2, 2020 in Azure by Sirajul
 • 59,230 points 2,206 views
0 votes
1 answer

What is the purpose of Azure active directory? Why do we need it?

Azure Active Directory (Azure AD) is Microsoft’s ...READ MORE

answered Jan 13, 2020 in Azure by Sirajul
 • 59,230 points
edited Jun 27, 2023 by Khan Sarfaraz 824 views
0 votes
1 answer

What is azure web role?

Web role is basically an Azure Cloud ...READ MORE

answered Jan 21, 2020 in Azure by Sirajul
 • 59,230 points
edited Oct 7, 2021 by Sarfaraz 1,150 views
0 votes
1 answer

How different is Web job from Worker role?

Some of the basic yet valid differences ...READ MORE

answered May 11, 2018 in Azure by club_seesharp
 • 3,450 points 1,123 views
0 votes
1 answer

Error: Install-Module : The term 'Install-Module' is not recognized as the name of a cmdlet

Since you are using the lower version ...READ MORE

answered Jun 20, 2018 in Azure by null_void
 • 3,220 points 3,655 views
0 votes
1 answer

The model backing the '--Context' context has changed since the database was created - but db is new production database

Hey, I came across the same error in ...READ MORE

answered Jun 26, 2018 in Azure by club_seesharp
 • 3,450 points 1,875 views
0 votes
1 answer

Is there a logical difference between WebApp and API app in Azure?

Basically there was only minute differences between ...READ MORE

answered Apr 27, 2018 in Azure by null_void
 • 3,220 points 935 views
0 votes
1 answer

Where is the storage account name and access keys on the portal?

In the image under the connection string ...READ MORE

answered May 22, 2018 in Azure by null_void
 • 3,220 points 495 views
webinar REGISTER FOR FREE WEBINAR X
REGISTER NOW
webinar_success Thank you for registering Join Edureka Meetup community for 100+ Free Webinars each month JOIN MEETUP GROUP
"PMP®","PMI®", "PMI-ACP®" and "PMBOK®" are registered marks of the Project Management Institute, Inc. MongoDB®, Mongo and the leaf logo are the registered trademarks of MongoDB, Inc.