Pro ASP.NET web API security: securing ASP.NET web API

摘要

Web application programming interfaces (APIs) represent a major cornerstone of today's web. Most companies use APIs to support their online business processes. Roughly speaking, securing a web API amounts to imposing a number of constraints on the agents that are allowed to use it (authentication) and the operations that they can perform (authorization). This book provides a comprehensive introduction to the features .NET offers to secure web APIs. The book comprises 15 chapters plus an appendix. I found the ordering of the chapters somewhat hard to follow, so in this review, I have grouped the chapters based on related topics.