In Chapter 5, Creating Applications Using AngularJS, Entity Framework, and ASP.NET Web API, we created the ASP.NET Web API. However, anybody can access our web API if they know the URL. In this section, we will secure our web API. In order to use the ASP.NET Web API, the user must have permission to access the requested data. To implement security in the ASP.NET Web API, we created a table in the Northwind database.
You need to follow these steps to create a table: