To secure your Web API, you can use several options. You can use options provided by Azure or you can use your own authentication providers. A best practice is, however, to use the standard authentication options that are available for Azure App Services.
You can use the following services in Azure to secure your Web API:
- Azure Active Directory (Azure AD): Azure AD offers traditional username and password identity management, roles, and permissions management from the cloud. In addition, it offers more enterprise solutions, such as multi-factor authentication, applications monitoring, solution monitoring, and alerting.
- Azure Active Directory Business to Consumer: Azure Active Directory Business to Consumer (B2C) is ...