CHAPTER 5
Identity Management
In this chapter, I cover an important aspect of securing an application: identity management. The term has a broader meaning but our focus is limited to how a subject or an entity gets authenticated and how the actions an entity attempts to perform are authorized by an application in the context of the .NET Framework.
An entity, which can be a human being, an organization, a hardware device, or application software, makes a request to access a resource. A resource can be a web service, a web site, a web page in a web site or even a UI element in a web page, depending on the context of the application. Unless the ...
Get Pro ASP.NET Web API Security: Securing ASP.NET Web API now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.