Have a personal or library account? Click to login
ASP.NET Web API Security Essentials Cover

ASP.NET Web API Security Essentials

Take the security of your ASP.NET Web API to the next level using some of the most amazing security techniques around

Publisher:Packt Publishing Limited
By: Rajesh Gunasundaram  
Paid access
|Dec 2015
Product purchase options

Take the security of your ASP.NET Web API to the next level using some of the most amazing security techniques around

Key Features

  • This book has been completely updated for ASP.NET Web API 2.0 including the new features of ASP.NET Web API such as Cross-Origin Resource Sharing (CORS) and OWIN self-hosting
  • Learn various techniques to secure ASP.NET Web API, including basic authentication using authentication filters, forms, Windows Authentication, external authentication services, and integrating ASP.NET’s Identity system
  • An easy-to-follow guide to enable SSL, prevent Cross-Site Request Forgery (CSRF) attacks, and enable CORS in ASP.NET Web API

Book Description

This book incorporates the new features of ASP.NET Web API 2 that will help you to secure an ASP.NET Web API and make a well-informed decision when choosing the right security mechanism for your security requirements.
We start by showing you how to set up a browser client to utilize ASP.NET Web API services. We then cover ASP.NET Web API’s security architecture, authentication, and authorization to help you secure a web API from unauthorized users. Next, you will learn how to use SSL with ASP.NET Web API, including using SSL client certificates, and integrate the ASP.NET Identity system with ASP.NET Web API.
We’ll show you how to secure a web API using OAuth2 to authenticate against a membership database using OWIN middleware. You will be able to use local logins to send authenticated requests using OAuth2. We also explain how to secure a web API using forms authentication and how users can log in with their Windows credentials using integrated Windows authentication. You will come to understand the need for external authentication services to enable OAuth/OpenID and social media authentication. We’ll then help you implement anti-Cross-Site Request Forgery (CSRF) measures in ASP.NET Web API.
Finally, you will discover how to enable Cross-Origin Resource Sharing (CORS) in your web API application.

What you will learn

  • Secure your web API by enabling Secured Socket Layer (SSL)
  • Manage your application's user accounts by integrating ASP.NET's Identity system
  • Ensure the security of your web API by implementing basic authentication
  • Implement forms and Windows authentication to secure your web API
  • Use external authentication such as Facebook and Twitter to authenticate a request to a web API
  • Protect your web API from CSRF attacks
  • Enable CORS in your web API to explicitly allow some cross-origin requests while rejecting others
  • Fortify your web API using OAuth2

Who this book is for

This book is intended for anyone who has previous knowledge of developing ASP.NET Web API applications. Good working knowledge and experience with C# and.NET Framework are prerequisites for this book.

Table of Contents

  1. Setting up a Browser Client
  2. Enabling SSL for ASP.NET Web API Enabling SSL for ASP.NET Web API
  3. Integrating ASP.NET Identity System with Web API
  4. Securing a Web API Using OAuth2
  5. Enabling Basic Authentication using Authentication Filter in Web API
  6. Securing a Web API using Forms and Windows Authentication
  7. Using External Authentication Services with ASP.NET Web API
  8. Avoiding Cross-Site Request Forgery or CSRF Attacks in Web API
  9. Enabling Cross-Origin Resource Sharing (CORS) in ASP.NET Web API
PDF ISBN: 978-1-78588-322-4
Publisher: Packt Publishing Limited
Copyright owner: © 2015 Packt Publishing Limited
Publication date: 2015
Language: English
Pages: 152
Related subjects:
Computer sciences,
Computer sciences, other

People also read

Mastering ASP.NET Web API
Book

Mastering ASP.NET Web API

Pattankar, Mithun
Web API Development with ASP.NET Core 8
Book

Web API Development with ASP.NET Core 8

Yan, Xiaodi
ASP.NET Core 9 Web API Cookbook
Book
Coming soon

ASP.NET Core 9 Web API Cookbook

Avedon, Luke, Cabrera, Garry
Programming APIs with C# and .NET
Book

Programming APIs with C# and .NET

Liberty, Jesse, Dluzen, Joseph
ASP.NET Core 5 Secure Coding Cookbook
Book

ASP.NET Core 5 Secure Coding Cookbook

Canlas, Roman, Price, Ed
Hands-On RESTful Web Services with ASP.NET Core 3
Book

Hands-On RESTful Web Services with ASP.NET Core 3

Resca, Samuele
Building RESTful Web Services with .NET Core
Book

Building RESTful Web Services with .NET Core

Bhattacharya, Sharbani, Aroraa, Gaurav, Dash, Tadit
Minimal APIs in ASP.NET 9
Book

Minimal APIs in ASP.NET 9

Proud, Nick
API Security for White Hat Hackers
Book

API Security for White Hat Hackers

Staveley, Confidence, Romeo, Christopher
Pentesting APIs
Book

Pentesting APIs

Harley, Maurício