Pro ASP.NET Web API Security: Securing ASP.NET Web API (Expert's Voice in .NET)
| Author | : | |
| Rating | : | 4.42 (577 Votes) |
| Asin | : | 1430257822 |
| Format Type | : | paperback |
| Number of Pages | : | 416 Pages |
| Publish Date | : | 2016-09-17 |
| Language | : | English |
DESCRIPTION:
Maximilian Alexander said Pure gold. This book is absolutely amazing and extremely well written and impressive in how much it covers. If you're not too familiar with web security, this book does a great job explaining the concepts and the reasoning behind modern web security from the ground up. Badri maintains a conversation as the book progresses from the basic of HTTP to token-based api security. The code samples are sure classic in many future projects not only because of how digestable they are but also based on the surrounding explanation. There. "Great for anyone who wants to be more informed about securing anything that runs over HTTP" according to Kirk. This is a fantastic and thorough book, which was exactly what I wanted.Far and away, my favorite part about this book is the depth to which it explains the technologies that underlie both ASP.NET Web API (namely HTTP) and security, for example X.509 certificates, Federation services, hashing, digital signing and encryption. At every step of the way real code is presented to either use the facilities described or to implement the services in question (even though the implementations are sometimes just for illustrat. "Very well written and lots of good examples" according to Evan Larsen. I bought this book not expecting much because I wasn't sure what the title meant by Security. Since Security could mean so many things.But I am about two thirds of the way through the book and I am very satisfied with this purchase. This is one of the best computer books I have read in quite some time. Its very well written and covers all the popular authentication scenarios you could run into when developing an application that uses .NET WEB API.Basic Auth, Digest, Windows Auth, WS-Trust, OAuth, and more.It gives
These SOAP-less security techniques are the focus of this book.. You will quickly find that the WCF security protocols you’re familiar with from .NET are less suitable than they once were in this new environment, proving themselves cumbersome and limited in terms of the standards they can work with.Fortunately, ASP.NET Web API provides a simple, robust security solution of its own that fits neatly within the ASP.NET MVC programming model and secures your code without the need for SOAP, meaning that there is no limit to the range of devices that it can work with – if it can understand HTTP, then it can be secured by Web API. ASP.NET Web API is a key part of ASP.NET MVC 4 and the platform of choice for building RESTful services that can be accessed by a wide range of devices. Everything from JavaScript libraries to RIA plugins, RFID readers to smart phones can consume your services using platform-agnostic HTTP.With such wide accessibility, securing your code effectively needs to be a top priority