Last post Sep 06, 2014 09:48 PM by BrockAllen
Sep 06, 2014 09:26 PM|spdev101|LINK
I am using ASP.NET Web API to generate publicly accessible services that can be used by authenticated users. I am using token based authentication (OAuth Bearer tokens). ASP.NET has everything inbuilt. I have the following clarifications
Sep 06, 2014 09:48 PM|BrockAllen|LINK
The protection on the token uses the OWIN host provided protection, which is the ASP.NET machineKey if you're running in IIS. This means if you want a farm environment, you need to set an explicit machineKey element in web.config.