Jul 28, 2020 01:59 PM|MarcusAtMars|LINK
Thanks for you help, mgebhard. I got everything working, but security does still concern me. Doing it without identity creates a cookie, and you say that identity uses the same cookie (I also found in the docs where it states that, too). However, what is
stopping someone from hijacking the session or spoofing the cookie? Can't the cookie also be copied and used again?
Security has to be top-notch with this app, and I just want the absolute best security .net core offers.