It is very common to find scenarios in which we want SignalR services to be consumed only by users who have been authenticated by the system. This affects how we build our applications, because at every possible entry point to the server, we have to check that the requestor is authorized to access, and from the client side we also have to make the credentials reach the other end.

SignalR does not include any mechanism to authenticate clients, because this is something that depends on the application and the platform. For example, in a web application, authentication will normally ...