Oct 17, 2019 10:20 AM|mgebhard|LINK
What is the difference between running an OAuth server or the JWT token example you provided.
OAuth is a protocol. Use OAuth when you want to create a Single Sign On (SSO) solution that supports many different types of clients using industry standard security best practices. The
following link was in the docs now moved to GIT but it show how to configure the OAuth Server API for different clients.
The JWT example illustrates the OAuth Password Grant flow by manually building a JWT and showing how to configure middleware to wire up the standard MVC [Authorize] attribute. This is the same flow you've configured in your previous thread using the OAuth
I understand it works, but I'm confused when to use each implementation.
From my perspective, it seems you are asking the same question over and over and not reading the links or doing any research. OAuth is vast subject with a fairly steep learning curve depending on your experience in building secure applications. OAuth is
not a subject you can learn from a forum response. You actually have to spend time learning. I prefer the RFCs; https://tools.ietf.org/html/rfc6749